Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/oIKQwb3OHi76nND22w4nE7XA3oc.roa
File: oIKQwb3OHi76nND22w4nE7XA3oc.roa (raw, json)
Hash identifier: ZkqXfqoX9XYCoYLdKPi4am+eXlwtX4zpjBMr/dw6CE0=
Subject key identifier: A0:82:90:C1:BD:CE:1E:2E:FA:9C:D0:F6:DB:0E:27:13:B5:C0:DE:87
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0E2E
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/oIKQwb3OHi76nND22w4nE7XA3oc.roa
Signing time: Thu 28 Mar 2024 18:52:27 +0000
ROA not before: Thu 28 Mar 2024 18:52:27 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3630 (0xe2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 28 18:52:27 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A08290C1BDCE1E2EFA9CD0F6DB0E2713B5C0DE87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fc:a8:78:0f:1c:59:58:6e:64:a1:84:ce:25:
26:13:1e:21:f8:1c:ef:22:ef:db:bd:82:cc:b2:3e:
29:b7:64:b8:84:6e:f5:27:3a:0f:15:dc:c5:aa:e4:
c7:c4:30:f2:e8:b7:ba:b7:b0:8d:de:e1:a5:dc:28:
c1:82:28:64:40:29:d9:ec:50:c3:0f:37:69:29:bf:
7f:66:2b:e9:16:c1:d4:07:36:9c:9e:81:9b:f0:68:
bf:1f:3a:b0:e4:82:4e:71:6b:4d:60:45:e4:c6:a7:
92:5b:62:9c:8b:3c:ac:09:fe:ae:d3:de:16:a8:ba:
34:bb:c4:a9:3a:d1:f4:3a:61:0a:fe:52:d4:06:68:
66:60:96:b6:1a:bc:e0:1e:21:ff:f2:ad:d3:06:3b:
6d:b7:ef:76:1b:15:8e:e0:26:e8:2d:e8:2f:d1:4b:
d7:61:d9:d8:b2:b5:ff:fd:0c:19:89:3a:28:de:d1:
fb:c1:8b:80:e8:51:2c:c0:aa:d0:66:bf:fe:3c:49:
85:4d:3c:ab:8f:0c:6d:f6:52:d2:38:b9:5a:28:de:
2f:56:15:87:95:b5:00:8e:0d:62:be:21:85:86:c8:
a3:93:f4:e1:16:e3:a2:c7:9b:6f:a5:d5:5d:c0:c0:
25:c3:c2:43:99:e5:e1:2f:63:de:2b:b3:b9:10:7c:
41:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:82:90:C1:BD:CE:1E:2E:FA:9C:D0:F6:DB:0E:27:13:B5:C0:DE:87
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/oIKQwb3OHi76nND22w4nE7XA3oc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b6:47:f0:9c:3d:c3:67:1a:4d:db:a1:3e:7e:35:cb:b6:96:2b:
27:4e:9e:48:33:7e:d5:6e:55:74:7e:a7:da:f7:63:91:ef:3c:
17:84:3c:79:9d:b7:a0:3b:3b:2c:c6:1e:04:1e:4d:1a:e4:54:
e4:8f:11:9b:9b:c6:9a:8a:4c:83:a5:0e:ae:df:fb:df:fa:85:
92:b9:43:98:bf:69:99:b8:b5:38:b1:08:52:33:5a:d9:84:92:
27:ff:bd:dc:45:a9:90:b4:61:19:57:d4:bc:ff:14:a7:89:0f:
4e:b6:d0:1a:a9:4b:27:d3:ae:5b:25:28:77:44:89:9a:e6:17:
b6:77:97:e5:ac:4e:64:25:38:c9:c6:de:b2:86:4b:4d:f8:a1:
23:ee:a3:de:4e:88:ca:a9:2c:9e:aa:d7:4c:35:7d:dc:8c:58:
e4:5c:fe:21:74:34:13:75:8b:75:5e:ad:4c:31:14:f3:0d:e6:
f0:cf:ec:7f:8b:52:ca:95:2d:51:00:93:de:7b:8d:34:55:45:
2d:08:cb:fa:a6:3c:71:be:59:e3:dc:e4:36:fe:9d:e2:5b:eb:
13:51:e2:e4:4b:87:f5:37:63:e3:b9:6f:1a:18:aa:86:31:55:
f5:e2:0b:f8:a2:c3:d0:b3:2e:c5:99:f8:03:fc:fd:09:bb:4c:
cd:54:63:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:39:32 2025 by rpki-client