Route Origin Authorization
$ rpki-client -vvf rsync.fiti.net.cn/repo/fiti-sub002/0/AS143477.roa
File: AS143477.roa (raw, json)
Hash identifier: fGFLWsTjJk8U8iAFOXCPbat3Z5oEslF8NSDkq0vXPJ8=
Subject key identifier: 87:3D:14:AD:C4:5F:FE:81:A8:25:2C:F2:ED:84:7D:83:81:7F:35:AF
Certificate issuer: /CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Certificate serial: 462E96BBE035E6E6A484AE943BC12979AC28E401
Authority key identifier: 57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
Authority info access: rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject info access: rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143477.roa
Signing time: Fri 22 May 2026 06:58:46 +0000
ROA not before: Fri 22 May 2026 06:53:46 +0000
ROA not after: Fri 21 May 2027 06:58:46 +0000
asID: 143477
IP address blocks: 240a:a33b::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:2e:96:bb:e0:35:e6:e6:a4:84:ae:94:3b:c1:29:79:ac:28:e4:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Validity
Not Before: May 22 06:53:46 2026 GMT
Not After : May 21 06:58:46 2027 GMT
Subject: CN=873D14ADC45FFE81A8252CF2ED847D83817F35AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ae:1f:b0:f4:16:c4:70:c8:10:c2:05:6a:ce:
6b:c6:44:07:13:b9:96:35:3d:20:4d:b2:60:79:fb:
11:fe:64:55:e1:6a:be:43:26:40:12:ae:c8:bd:0d:
e3:08:80:46:0a:a4:c8:23:a5:39:3a:42:55:47:f6:
43:2d:a5:b2:25:25:5b:03:cb:7a:de:70:e9:4c:67:
7d:1b:f4:b3:16:46:ec:4d:4f:ac:f1:5e:0a:66:9e:
82:cb:5b:31:05:6b:df:a2:56:82:ca:cd:00:c1:33:
0c:84:5d:69:54:88:0c:c8:18:70:64:dd:5b:fb:76:
4b:52:5e:6f:68:79:f2:df:9f:83:f7:52:bc:d3:ad:
37:00:81:a7:e4:67:86:2f:8f:51:6a:7f:34:03:2e:
d6:a8:6d:44:77:3d:b0:d0:92:ff:05:9c:a3:a8:94:
b6:94:ef:72:df:79:4d:6e:89:ae:09:16:8e:27:ca:
a3:df:23:3c:61:ba:47:f6:73:98:30:4c:d0:bd:e2:
11:2f:4c:a4:72:05:50:e2:39:1f:5e:70:c1:ca:69:
c1:b4:f7:0a:7c:1c:18:c1:ed:79:97:fe:47:9b:75:
3c:84:5e:51:e7:03:37:19:df:39:7d:78:56:b0:3f:
15:08:1f:6f:39:ae:91:95:fd:54:e2:dc:3b:c8:c7:
64:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3D:14:AD:C4:5F:FE:81:A8:25:2C:F2:ED:84:7D:83:81:7F:35:AF
X509v3 Authority Key Identifier:
keyid:57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/57B973F8727F1165368D1DA3F1858FD7660A4960.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143477.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240a:a33b::/32
Signature Algorithm: sha256WithRSAEncryption
42:0b:2a:b3:68:59:6c:51:24:b3:e5:36:f6:fa:ff:94:f9:a1:
c2:66:a3:a2:ef:53:d4:b3:cd:f1:d1:eb:68:6e:54:98:88:30:
33:1d:63:f5:f4:2d:93:ea:b0:d6:59:bd:c8:67:3b:1d:e9:ff:
eb:45:e6:93:5b:28:7a:d3:6c:14:76:4f:a9:b2:c2:f7:f1:c1:
76:0f:f5:da:50:08:1f:36:6f:82:b8:51:05:79:87:71:54:1e:
82:41:45:c5:b2:49:b6:62:fb:a6:10:67:47:ed:ab:90:49:d7:
ea:90:42:a2:e0:f0:8a:99:cb:13:62:47:dc:61:1e:39:fa:a7:
58:44:42:4b:a4:64:46:cb:9a:61:d7:93:1f:6f:16:b1:89:65:
53:2b:b0:73:79:a9:e8:06:f2:62:b2:c5:d6:76:23:74:e1:20:
26:f6:79:5d:22:b2:9f:2f:84:5d:d3:71:61:02:91:fe:31:50:
f5:6a:31:29:1e:c6:ee:ad:46:d1:ea:e0:0e:8c:5a:06:da:35:
54:38:13:40:be:ca:46:d7:c4:4f:77:3b:ef:89:45:ac:d8:8e:
54:50:f6:97:77:dd:6a:63:3b:e6:bd:14:dc:92:40:39:97:df:
32:ff:98:d6:1e:e8:6b:d7:12:0c:43:42:b5:2b:25:76:ec:b8:
e5:41:31:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:39:25 2026 by rpki-client