Route Origin Authorization
$ rpki-client -vvf rsync.fiti.net.cn/repo/fiti-sub002/0/AS143684.roa
File: AS143684.roa (raw, json)
Hash identifier: CFt8GibLmPQT9ENaoBitfkCnQri8hv4CF2mETnL6eVg=
Subject key identifier: 6D:0A:B7:2F:55:D1:79:75:F6:4C:2A:C5:C9:BF:CC:45:AD:51:1F:B1
Certificate issuer: /CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Certificate serial: 07367E1B149F9318B35AB742A621409E8A8C370D
Authority key identifier: 57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
Authority info access: rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject info access: rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143684.roa
Signing time: Tue 26 May 2026 06:30:43 +0000
ROA not before: Tue 26 May 2026 06:25:43 +0000
ROA not after: Tue 25 May 2027 06:30:43 +0000
asID: 143684
IP address blocks: 240a:a40a::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:36:7e:1b:14:9f:93:18:b3:5a:b7:42:a6:21:40:9e:8a:8c:37:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Validity
Not Before: May 26 06:25:43 2026 GMT
Not After : May 25 06:30:43 2027 GMT
Subject: CN=6D0AB72F55D17975F64C2AC5C9BFCC45AD511FB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:41:37:12:74:fb:9d:86:6d:2f:55:9f:a3:ec:
f9:ef:78:19:99:56:3d:0c:f4:de:2a:bd:0c:e9:26:
67:18:bd:e7:dd:5a:53:3d:44:85:23:20:76:31:5f:
3c:89:4a:8e:81:af:15:e6:6b:e4:21:28:8b:f6:60:
fc:60:d1:89:1b:f1:54:73:12:d1:ad:5a:59:06:cd:
9e:31:85:1c:5a:38:b1:3c:e7:db:8e:03:b9:a6:a3:
3a:9f:a9:d1:82:1b:36:d2:12:e9:ac:cc:f7:b1:d0:
67:66:e2:58:69:83:ae:c3:12:ed:9a:8f:74:6f:fa:
79:3d:4d:47:41:3f:a8:3a:ec:3b:d2:37:7d:a2:c8:
15:1c:d7:29:3c:b4:8d:da:5c:8a:1d:b7:3d:ad:9e:
9d:3b:0c:67:c1:49:e5:6f:39:b2:d9:d8:7d:c4:cc:
9e:9d:39:6a:18:62:07:c8:02:3f:7c:96:bd:1b:2e:
74:84:3d:4a:07:72:fc:7f:b8:19:fb:52:74:fd:60:
ec:14:0f:93:09:e1:95:98:17:cd:ae:95:da:a1:4e:
b4:d8:72:ad:c9:23:e6:71:24:a3:40:5f:f5:c8:f5:
9d:00:7d:80:04:6f:fa:3d:21:bf:1d:12:57:af:0a:
97:ca:df:1a:3f:dd:98:ba:84:75:4b:71:60:c2:20:
71:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:0A:B7:2F:55:D1:79:75:F6:4C:2A:C5:C9:BF:CC:45:AD:51:1F:B1
X509v3 Authority Key Identifier:
keyid:57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/57B973F8727F1165368D1DA3F1858FD7660A4960.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143684.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240a:a40a::/32
Signature Algorithm: sha256WithRSAEncryption
70:c9:3b:ee:60:01:a0:1e:f4:7e:a2:4e:17:96:92:bf:1b:29:
2c:55:0b:d3:18:3b:f5:b3:4e:47:89:e9:57:b2:63:f3:9d:57:
82:9e:c5:e7:36:a5:3a:bb:97:d7:2f:a0:ea:f3:34:b5:75:4f:
2a:63:e5:42:0d:f5:c8:7d:d6:1e:09:dd:ba:9e:cf:9d:50:d8:
a6:0b:bf:d3:37:15:e8:92:95:59:c3:04:51:66:a5:0c:2f:46:
32:7d:50:10:21:65:00:7a:32:97:96:ca:76:ba:3a:61:10:3b:
6b:c3:f5:78:45:97:79:29:9c:d4:6d:0a:6c:a1:9b:df:ee:1e:
a9:cd:61:a1:64:e3:1d:7f:d8:5b:bd:9f:a0:3a:65:c4:e5:87:
9d:87:f7:f9:71:3c:09:2d:e9:27:57:f0:8b:72:eb:5b:96:ee:
94:21:bf:2b:a6:8d:b8:22:c0:c0:26:2d:5c:d0:e2:10:4b:69:
fc:11:fb:a2:8e:fc:ec:3c:10:45:ff:7d:3e:19:6a:6d:81:11:
09:9a:e2:de:27:e6:ba:8f:34:49:8e:e9:42:60:00:4e:59:9d:
36:cc:b9:07:db:00:9b:65:ac:61:2f:8b:89:31:05:2c:a9:6d:
c0:37:6b:43:e6:0b:52:20:cc:f4:ad:44:3a:99:d9:af:33:6c:
1b:ff:bc:15
-----BEGIN CERTIFICATE-----
MIIEuTCCA6GgAwIBAgIUBzZ+GxSfkxizWrdCpiFAnoqMNw0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdCOTczRjg3MjdGMTE2NTM2OEQxREEzRjE4NThGRDc2
NjBBNDk2MDAeFw0yNjA1MjYwNjI1NDNaFw0yNzA1MjUwNjMwNDNaMDMxMTAvBgNV
BAMTKDZEMEFCNzJGNTVEMTc5NzVGNjRDMkFDNUM5QkZDQzQ1QUQ1MTFGQjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfQTcSdPudhm0vVZ+j7PnveBmZ
Vj0M9N4qvQzpJmcYvefdWlM9RIUjIHYxXzyJSo6BrxXma+QhKIv2YPxg0Ykb8VRz
EtGtWlkGzZ4xhRxaOLE859uOA7mmozqfqdGCGzbSEumszPex0Gdm4lhpg67DEu2a
j3Rv+nk9TUdBP6g67DvSN32iyBUc1yk8tI3aXIodtz2tnp07DGfBSeVvObLZ2H3E
zJ6dOWoYYgfIAj98lr0bLnSEPUoHcvx/uBn7UnT9YOwUD5MJ4ZWYF82uldqhTrTY
cq3JI+ZxJKNAX/XI9Z0AfYAEb/o9Ib8dElevCpfK3xo/3Zi6hHVLcWDCIHE3AgMB
AAGjggHDMIIBvzAdBgNVHQ4EFgQUbQq3L1XReXX2TCrFyb/MRa1RH7EwHwYDVR0j
BBgwFoAUV7lz+HJ/EWU2jR2j8YWP12YKSWAwDgYDVR0PAQH/BAQDAgeAMGoGA1Ud
HwRjMGEwX6BdoFuGWXJzeW5jOi8vcnN5bmMuZml0aS5uZXQuY24vcmVwby9maXRp
LXN1YjAwMi8wLzU3Qjk3M0Y4NzI3RjExNjUzNjhEMURBM0YxODU4RkQ3NjYwQTQ5
NjAuY3JsMG4GCCsGAQUFBwEBBGIwYDBeBggrBgEFBQcwAoZScnN5bmM6Ly9ycGtp
LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC81N0I5NzNGODcyN0YxMTY1MzY4RDFE
QTNGMTg1OEZENzY2MEE0OTYwLmNlcjBVBggrBgEFBQcBCwRJMEcwRQYIKwYBBQUH
MAuGOXJzeW5jOi8vcnN5bmMuZml0aS5uZXQuY24vcmVwby9maXRpLXN1YjAwMi8w
L0FTMTQzNjg0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF
BwEHAQH/BBEwDzANBAIAAjAHAwUAJAqkCjANBgkqhkiG9w0BAQsFAAOCAQEAcMk7
7mABoB70fqJOF5aSvxspLFUL0xg79bNOR4npV7Jj851Xgp7F5zalOruX1y+g6vM0
tXVPKmPlQg31yH3WHgndup7PnVDYpgu/0zcV6JKVWcMEUWalDC9GMn1QECFlAHoy
l5bKdro6YRA7a8P1eEWXeSmc1G0KbKGb3+4eqc1hoWTjHX/YW72foDplxOWHnYf3
+XE8CS3pJ1fwi3LrW5bulCG/K6aNuCLAwCYtXNDiEEtp/BH7oo787DwQRf99Phlq
bYERCZri3ifmuo80SY7pQmAATlmdNsy5B9sAm2WsYS+LiTEFLKltwDdrQ+YLUiDM
9K1EOpnZrzNsG/+8FQ==
-----END CERTIFICATE-----
Generated at Wed Jun 17 09:40:02 2026 by rpki-client