Route Origin Authorization
$ rpki-client -vvf rsync.fiti.net.cn/repo/fiti-sub002/0/AS143720.roa
File: AS143720.roa (raw, json)
Hash identifier: PZmdYggJ2zPjttP/ZhfECOcbEYL4IApImndYHuyUm6M=
Subject key identifier: 85:DC:43:61:A9:CC:89:96:4E:E2:7F:3A:55:C6:0D:FF:2C:C2:5E:46
Certificate issuer: /CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Certificate serial: 2E7FEBE15897762F906DCC9AE38B47FC3BC1EF23
Authority key identifier: 57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
Authority info access: rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject info access: rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143720.roa
Signing time: Fri 22 May 2026 07:08:43 +0000
ROA not before: Fri 22 May 2026 07:03:43 +0000
ROA not after: Fri 21 May 2027 07:08:43 +0000
asID: 143720
IP address blocks: 240a:a42e::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:7f:eb:e1:58:97:76:2f:90:6d:cc:9a:e3:8b:47:fc:3b:c1:ef:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Validity
Not Before: May 22 07:03:43 2026 GMT
Not After : May 21 07:08:43 2027 GMT
Subject: CN=85DC4361A9CC89964EE27F3A55C60DFF2CC25E46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9d:c0:0c:4f:63:df:23:d3:d9:14:3e:bc:f3:
0d:c9:c8:d7:2c:a9:4b:56:08:43:bd:3f:e3:a7:dd:
38:93:7a:fb:d9:0f:8c:5d:5c:51:d4:d5:f4:ed:6a:
3d:8c:1a:ce:70:f8:ae:44:ea:bd:dc:3a:8d:c9:4b:
80:9a:ca:ff:bb:a6:bf:e6:15:10:01:2b:23:41:7b:
fa:e6:5a:3e:c4:8e:40:aa:73:98:4b:37:29:28:bb:
e2:30:51:ce:03:38:fb:ec:e9:72:22:d7:cd:8a:bb:
ac:e2:d6:7e:b9:f3:bf:42:d4:02:21:80:0b:e9:7b:
16:8d:68:e4:4c:dc:f8:98:dd:ec:e2:b9:ad:13:b8:
7e:c4:8e:34:3c:db:85:11:4c:a2:19:4f:2c:d4:0b:
a8:2c:b2:72:4c:84:f4:9f:5e:df:d2:78:4c:dc:a3:
ab:b8:11:3b:82:07:5f:85:6e:c2:cc:b9:f6:0a:6c:
79:1e:98:b4:96:e3:b7:db:f7:5b:5d:a5:7f:d5:f0:
0c:bc:06:02:2a:6e:ca:50:68:35:97:0e:30:75:f1:
0c:77:f3:fc:bb:66:56:a6:4f:0b:7c:f7:88:e8:36:
51:61:fe:f8:c9:eb:65:53:71:51:af:ff:36:80:11:
24:ac:63:28:9d:8c:b3:95:31:cf:cc:da:20:8c:e2:
1b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DC:43:61:A9:CC:89:96:4E:E2:7F:3A:55:C6:0D:FF:2C:C2:5E:46
X509v3 Authority Key Identifier:
keyid:57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/57B973F8727F1165368D1DA3F1858FD7660A4960.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS143720.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240a:a42e::/32
Signature Algorithm: sha256WithRSAEncryption
1f:d7:70:db:6f:97:8e:60:48:a9:6f:78:e9:f3:9c:e3:61:34:
ca:04:8f:e6:59:e0:76:fa:92:bd:94:6d:83:2d:21:a2:9f:bc:
0e:44:64:e0:21:eb:5a:19:23:96:cf:51:f1:40:a6:74:3a:66:
e6:ef:27:f6:8f:01:b2:a5:ed:f9:67:36:71:7d:10:96:70:d1:
d5:30:8a:91:8a:7a:2d:c6:29:fb:c2:43:b9:fd:39:04:d5:db:
c4:c5:7e:80:02:13:f8:9f:24:8b:d8:9d:03:7f:d2:96:76:58:
30:4f:02:d6:5b:a4:90:17:0a:ae:d2:5e:eb:f7:53:8b:71:65:
e2:75:02:5c:c1:be:a7:8f:2f:9e:03:e9:ca:ce:f8:c5:e7:6b:
39:33:3f:e2:db:f5:16:fe:bb:3c:c7:9e:bf:73:8c:e6:c8:dc:
90:3a:d5:6a:ca:20:f8:9d:09:ca:ac:b8:9f:f5:08:ff:bc:b5:
64:cf:d3:6a:a0:ea:18:54:13:1c:99:36:a4:16:03:b8:0b:5f:
c7:10:81:ad:43:9b:3d:ff:b9:d3:a5:45:83:9f:1d:bf:2f:a0:
b8:a8:2b:f2:92:47:c6:68:b3:dd:4c:c3:66:f4:84:df:e8:da:
f7:92:72:11:01:7f:3e:f3:76:bc:a2:a5:28:2e:b3:61:99:39:
18:0e:b9:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 09:41:23 2026 by rpki-client