Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/oXH7FtRqK6pFabuV5z92dtRs7U4.roa
File: oXH7FtRqK6pFabuV5z92dtRs7U4.roa (raw, json)
Hash identifier: VnUq7bSVApH+G4pQa6cgLYJPj0UFUTBKyCjKRZ7kMCs=
Subject key identifier: A1:71:FB:16:D4:6A:2B:AA:45:69:BB:95:E7:3F:76:76:D4:6C:ED:4E
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1458
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/oXH7FtRqK6pFabuV5z92dtRs7U4.roa
Signing time: Sun 14 Apr 2024 05:23:19 +0000
ROA not before: Sun 14 Apr 2024 05:23:19 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5208 (0x1458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 14 05:23:19 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A171FB16D46A2BAA4569BB95E73F7676D46CED4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:20:dc:24:fa:9f:14:43:98:6d:b8:64:c2:8f:
67:b5:36:d0:6f:6a:bd:51:99:77:a4:9c:2b:01:d7:
1f:ec:79:99:2c:d5:8d:6e:06:4c:77:80:76:24:55:
f3:14:a6:e2:b6:26:05:f9:b9:0e:e2:5e:39:f9:97:
d7:33:b1:36:19:99:22:be:62:9b:bf:93:6d:21:88:
bd:68:90:8e:4f:ad:c8:e0:c4:68:eb:dd:b1:a1:7a:
cc:c0:07:4a:60:5f:4c:ff:cf:51:1a:be:53:92:11:
ac:6b:04:51:56:75:5a:18:5f:f2:9c:0a:86:7d:e3:
d5:b5:93:08:d7:a7:84:6b:f2:5d:ce:7a:1b:f8:08:
36:87:a4:65:b5:b2:cd:c4:35:e4:f7:3b:d9:29:39:
81:ae:e0:20:71:c5:b5:97:3e:ce:17:77:89:cc:21:
de:6f:0b:b7:9a:44:48:f9:6e:af:0a:a0:eb:ce:bc:
c6:6f:50:0c:07:1f:c0:ff:0b:9e:72:aa:30:01:fb:
eb:05:cb:87:ab:a7:26:45:a7:42:fc:08:60:16:52:
8b:24:87:0f:d8:5f:67:bb:79:a7:59:15:ab:36:32:
4b:97:66:31:99:aa:67:d1:af:75:cc:c1:f8:aa:53:
cd:3c:7a:5f:cd:28:95:3a:9b:2b:da:c9:86:3b:b0:
c0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:71:FB:16:D4:6A:2B:AA:45:69:BB:95:E7:3F:76:76:D4:6C:ED:4E
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/oXH7FtRqK6pFabuV5z92dtRs7U4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
71:94:36:a5:14:de:25:08:81:61:0a:83:c3:23:70:46:71:5d:
02:d6:57:bc:67:21:86:fc:1e:86:5e:c1:6a:19:c7:32:6d:37:
06:fe:35:45:e6:dd:4c:29:0d:49:8a:d7:d9:6d:8f:03:f8:e1:
9b:66:2c:e0:b9:86:66:88:4f:0a:37:f9:e4:2c:84:3a:6a:e6:
01:50:9f:d2:b9:f0:2e:ed:10:58:07:53:64:34:21:e4:a6:cf:
44:60:ed:c2:f8:6a:0b:26:f5:fc:c1:1d:47:71:a4:3a:2c:f5:
36:89:a9:80:64:58:df:ef:d6:bb:e6:ff:95:b4:cf:ba:5d:f4:
29:d9:8e:73:8f:05:cf:ae:be:53:d5:dd:c3:2b:b4:9d:c9:34:
07:8f:2c:f3:ee:a0:93:da:9a:56:e1:57:47:38:ca:88:36:be:
b7:62:91:88:47:19:ca:12:5b:b3:87:0b:83:ba:0d:cf:76:9c:
cb:29:78:17:ed:2f:ee:a1:39:1e:5b:a9:7e:1b:f5:d1:a6:f9:
b5:a3:c1:e9:84:7c:cd:67:c8:88:49:b3:69:f5:5f:63:1f:79:
a3:19:0d:ff:8f:2d:e6:ae:59:32:dc:8b:15:a2:37:99:3d:8c:
2d:f6:b6:41:50:28:cd:25:07:2a:43:41:18:b5:68:d5:13:f9:
7b:ca:8f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:36:57 2025 by rpki-client