Route Origin Authorization
$ rpki-client -vvf rsync.fiti.net.cn/repo/fiti-sub002/0/AS144320.roa
File: AS144320.roa (raw, json)
Hash identifier: YfEjaA2NYQxMgAsj/y7u6bHqDPk0dHbhFfvcMCAI7E4=
Subject key identifier: CD:4C:5D:FC:B0:8E:00:C4:AD:0C:5B:DB:50:8C:D6:35:BB:BF:E3:70
Certificate issuer: /CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Certificate serial: 3C20B730CDC600CC29F92B201559DAB8C5D923BE
Authority key identifier: 57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
Authority info access: rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject info access: rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS144320.roa
Signing time: Fri 22 May 2026 04:08:03 +0000
ROA not before: Fri 22 May 2026 04:03:03 +0000
ROA not after: Fri 21 May 2027 04:08:03 +0000
asID: 144320
IP address blocks: 240a:a686::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:20:b7:30:cd:c6:00:cc:29:f9:2b:20:15:59:da:b8:c5:d9:23:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57B973F8727F1165368D1DA3F1858FD7660A4960
Validity
Not Before: May 22 04:03:03 2026 GMT
Not After : May 21 04:08:03 2027 GMT
Subject: CN=CD4C5DFCB08E00C4AD0C5BDB508CD635BBBFE370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:44:fa:f2:35:44:a8:f8:de:85:90:c8:77:
83:2e:0e:47:e0:ba:3a:81:88:8b:5b:38:db:15:ce:
37:43:f5:06:ce:08:e5:51:de:de:aa:fc:2b:fb:b6:
36:db:81:62:54:a2:8c:d5:d8:3e:30:36:44:0f:0a:
1a:47:43:0c:26:db:47:52:3f:39:8f:a5:59:c7:dd:
30:0f:6b:f3:a6:0c:fb:31:14:7f:7a:42:5a:a8:06:
fb:dc:c1:96:c3:b1:bd:df:b2:cf:6a:0f:3c:04:d8:
43:61:37:41:38:b1:b7:a4:2b:2d:40:12:b4:0f:e1:
98:eb:69:80:a5:66:2a:bb:47:b0:0e:47:61:16:35:
7a:4f:c0:18:d5:6e:44:39:fb:f8:ab:c1:e9:90:29:
d1:63:31:2a:e7:42:4d:d4:a9:e9:52:8b:7f:2a:ee:
ae:07:72:27:f4:20:0b:a1:f6:dd:76:ba:8c:27:3d:
85:01:6b:6e:4e:9b:30:1f:57:a2:6b:dd:f0:36:28:
5b:f5:eb:c4:b7:f5:43:da:ab:a2:89:8c:3f:94:df:
8f:5d:cf:76:7d:64:3b:c7:e1:4f:e3:82:c2:57:d5:
bc:15:00:45:a7:0e:3c:bf:1a:2c:5e:99:4f:e8:92:
c6:0a:3c:af:e2:5e:f3:75:44:cf:db:ba:fa:c4:e1:
75:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4C:5D:FC:B0:8E:00:C4:AD:0C:5B:DB:50:8C:D6:35:BB:BF:E3:70
X509v3 Authority Key Identifier:
keyid:57:B9:73:F8:72:7F:11:65:36:8D:1D:A3:F1:85:8F:D7:66:0A:49:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/57B973F8727F1165368D1DA3F1858FD7660A4960.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cernet.net/repo/cernet/0/57B973F8727F1165368D1DA3F1858FD7660A4960.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.fiti.net.cn/repo/fiti-sub002/0/AS144320.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240a:a686::/32
Signature Algorithm: sha256WithRSAEncryption
42:2b:cc:43:6d:ac:0a:9d:df:72:9e:12:96:e9:cb:9f:bf:27:
40:8a:47:c8:15:ae:c4:9c:67:7a:3b:f1:5f:fd:f8:01:a9:31:
24:d1:6a:88:b4:f0:3f:41:18:cb:18:ef:7a:f7:dc:0c:a8:68:
e1:4c:4d:79:96:c4:1d:a3:f4:e4:04:fc:1e:c7:c5:12:8a:c8:
74:3b:b4:ff:8d:2f:e1:eb:40:39:1e:27:82:d6:6b:e2:8c:ec:
f3:85:5e:50:cf:aa:22:f2:01:cc:b9:a1:00:04:8e:80:e1:19:
93:73:f7:d5:9a:a1:d4:07:be:d3:33:c4:41:10:c2:1f:92:e9:
e9:3a:ca:a3:4c:77:92:43:e9:11:f9:bd:66:e9:af:1f:93:cd:
7c:d9:b2:9c:be:8f:86:3f:d7:e6:f9:13:de:75:63:01:c8:76:
2f:ab:5d:6f:4d:1c:90:b5:a5:03:7b:b1:8c:4d:9e:92:49:20:
c0:e0:2b:70:76:ca:47:9a:e0:fb:a9:70:c4:7d:68:6d:9e:62:
3c:b3:b0:30:84:55:8f:78:9f:70:52:f1:3c:ad:93:71:a6:70:
50:ec:64:b9:87:e7:8e:e7:f5:39:dc:37:0d:73:53:fd:53:0f:
81:dc:81:9f:56:13:13:53:0b:63:ed:d8:16:52:27:fa:9c:a1:
e4:73:f1:7c
-----BEGIN CERTIFICATE-----
MIIEuTCCA6GgAwIBAgIUPCC3MM3GAMwp+SsgFVnauMXZI74wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdCOTczRjg3MjdGMTE2NTM2OEQxREEzRjE4NThGRDc2
NjBBNDk2MDAeFw0yNjA1MjIwNDAzMDNaFw0yNzA1MjEwNDA4MDNaMDMxMTAvBgNV
BAMTKENENEM1REZDQjA4RTAwQzRBRDBDNUJEQjUwOENENjM1QkJCRkUzNzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC540T68jVEqPjehZDId4MuDkfg
ujqBiItbONsVzjdD9QbOCOVR3t6q/Cv7tjbbgWJUoozV2D4wNkQPChpHQwwm20dS
PzmPpVnH3TAPa/OmDPsxFH96QlqoBvvcwZbDsb3fss9qDzwE2ENhN0E4sbekKy1A
ErQP4ZjraYClZiq7R7AOR2EWNXpPwBjVbkQ5+/irwemQKdFjMSrnQk3UqelSi38q
7q4Hcif0IAuh9t12uownPYUBa25OmzAfV6Jr3fA2KFv168S39UPaq6KJjD+U349d
z3Z9ZDvH4U/jgsJX1bwVAEWnDjy/GixemU/oksYKPK/iXvN1RM/buvrE4XVbAgMB
AAGjggHDMIIBvzAdBgNVHQ4EFgQUzUxd/LCOAMStDFvbUIzWNbu/43AwHwYDVR0j
BBgwFoAUV7lz+HJ/EWU2jR2j8YWP12YKSWAwDgYDVR0PAQH/BAQDAgeAMGoGA1Ud
HwRjMGEwX6BdoFuGWXJzeW5jOi8vcnN5bmMuZml0aS5uZXQuY24vcmVwby9maXRp
LXN1YjAwMi8wLzU3Qjk3M0Y4NzI3RjExNjUzNjhEMURBM0YxODU4RkQ3NjYwQTQ5
NjAuY3JsMG4GCCsGAQUFBwEBBGIwYDBeBggrBgEFBQcwAoZScnN5bmM6Ly9ycGtp
LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC81N0I5NzNGODcyN0YxMTY1MzY4RDFE
QTNGMTg1OEZENzY2MEE0OTYwLmNlcjBVBggrBgEFBQcBCwRJMEcwRQYIKwYBBQUH
MAuGOXJzeW5jOi8vcnN5bmMuZml0aS5uZXQuY24vcmVwby9maXRpLXN1YjAwMi8w
L0FTMTQ0MzIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF
BwEHAQH/BBEwDzANBAIAAjAHAwUAJAqmhjANBgkqhkiG9w0BAQsFAAOCAQEAQivM
Q22sCp3fcp4SlunLn78nQIpHyBWuxJxnejvxX/34AakxJNFqiLTwP0EYyxjvevfc
DKho4UxNeZbEHaP05AT8HsfFEorIdDu0/40v4etAOR4ngtZr4ozs84VeUM+qIvIB
zLmhAASOgOEZk3P31Zqh1Ae+0zPEQRDCH5Lp6TrKo0x3kkPpEfm9ZumvH5PNfNmy
nL6Phj/X5vkT3nVjAch2L6tdb00ckLWlA3uxjE2ekkkgwOArcHbKR5rg+6lwxH1o
bZ5iPLOwMIRVj3ifcFLxPK2TcaZwUOxkuYfnjuf1Odw3DXNT/VMPgdyBn1YTE1ML
Y+3YFlIn+pyh5HPxfA==
-----END CERTIFICATE-----
Generated at Wed Jun 17 10:28:06 2026 by rpki-client