Route Origin Authorization
$ rpki-client -vvf rsync.fiti.net.cn/repo/fiti-sub002/0/AS143369.roa
File: AS143369.roa (raw, json)
Hash identifier: hYRZiK5lTmMklehxozPrWVprzyYptZmnlJg6hAUTdrw=
Subject key identifier: D0:C0:AE:30:BA:78:7F:0F:EF:CB:B0:6B:6A:D7:B1:4A:83:4D:9D:B7
Certificate issuer: /CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Certificate serial: 056F6E4C89E58BBF1D432B51F16AD2C412EDAB3F
Authority key identifier: 57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
Authority info access: rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject info access: rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143369.roa
Signing time: Fri 22 May 2026 06:05:14 +0000
ROA not before: Fri 22 May 2026 06:00:14 +0000
ROA not after: Fri 21 May 2027 06:05:14 +0000
asID: 143369
IP address blocks: 240a:a2cf::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:6f:6e:4c:89:e5:8b:bf:1d:43:2b:51:f1:6a:d2:c4:12:ed:ab:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Validity
Not Before: May 22 06:00:14 2026 GMT
Not After : May 21 06:05:14 2027 GMT
Subject: CN=D0C0AE30BA787F0FEFCBB06B6AD7B14A834D9DB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3b:84:39:52:9f:90:86:63:84:b7:a7:cc:c1:
c1:33:71:60:69:a4:8e:ba:4b:25:ce:30:59:92:95:
60:07:7b:33:96:2f:c5:cf:ba:6e:9a:55:eb:88:7a:
bf:ad:a6:34:ca:f6:90:c0:c1:1a:c4:ff:63:b5:b6:
cb:ab:21:38:11:88:69:28:f5:d2:d0:20:98:ec:b7:
79:28:d3:5d:33:42:70:47:d9:37:1c:a8:28:b8:67:
c2:77:c7:6c:b0:93:69:2b:36:f1:ea:6b:3c:3d:06:
91:01:c1:c4:68:56:ff:39:af:ce:5f:45:ad:8c:d0:
07:08:ae:8f:46:58:ff:a4:74:c4:43:fa:b9:3a:14:
e8:20:7a:b8:2b:c8:28:c2:37:b8:07:68:56:1f:c8:
dd:1c:33:d1:0a:77:aa:26:3a:1a:58:17:44:eb:f0:
ae:44:e4:5c:96:17:7b:b1:79:c1:b9:75:ab:b2:fe:
1e:f5:2a:8a:11:70:3b:50:0f:ba:07:df:85:d6:60:
96:73:19:4b:dd:d7:9c:80:4f:61:43:72:a4:60:5b:
32:32:cd:84:3a:49:69:49:1a:f0:a9:b1:92:8b:91:
bc:69:af:c6:0b:1d:70:19:d8:c2:bc:b1:4b:6d:d7:
a3:49:cf:d5:4e:e1:62:91:4c:f6:e0:bd:63:ea:30:
00:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C0:AE:30:BA:78:7F:0F:EF:CB:B0:6B:6A:D7:B1:4A:83:4D:9D:B7
X509v3 Authority Key Identifier:
keyid:57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/57B973F8727F1165368D1DA3F1858FD7660A4960.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143369.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240a:a2cf::/32
Signature Algorithm: sha256WithRSAEncryption
b6:e1:bf:c6:c2:de:7d:0b:f4:51:48:5b:5f:14:da:01:f9:90:
d6:bc:b4:9a:d5:b1:be:3a:6e:01:50:ee:5a:b3:dc:d2:9e:a8:
9e:35:62:31:19:17:b7:27:4e:05:c6:ef:b5:93:84:53:01:14:
4f:3d:75:13:7e:c6:de:29:71:34:f4:c3:48:a7:93:f6:dd:15:
c2:9d:3e:cd:3f:99:17:f8:4c:a5:b1:c3:cb:96:1c:ee:f9:62:
bc:d9:fa:51:82:f4:80:2d:23:3a:56:92:62:1b:73:95:20:3b:
ee:35:68:a9:be:af:b7:de:43:02:86:5a:9b:12:b8:f7:64:e7:
a7:02:43:6a:a9:45:a6:27:ec:be:74:d6:83:90:51:6f:14:b8:
0a:13:27:13:60:41:5c:c9:ba:29:ad:18:d8:3e:97:55:84:e2:
36:aa:e4:5b:3d:eb:d1:93:ca:d7:9d:4b:f7:03:8f:bc:67:24:
20:e9:6d:4d:95:14:3d:35:54:3b:ea:ad:23:f6:d8:17:ef:7e:
b7:ed:31:84:02:3b:dd:5e:be:d0:f3:6e:51:7a:d9:b4:6a:05:
3a:2e:fe:b1:86:df:71:9e:a6:61:9e:51:ff:0f:d5:db:5f:31:
64:0f:46:62:8b:b7:af:6c:30:d1:fd:0f:76:c3:6e:54:e7:ed:
b6:54:59:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 10:26:03 2026 by rpki-client