Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/1MJXkjdhz5LmAgBdlkJB3GxroDw.roa
File: 1MJXkjdhz5LmAgBdlkJB3GxroDw.roa (raw, json)
Hash identifier: TFdUo+nLQrMteYD86ailcgXHdmTlxLUUPjgkWjA0sws=
Subject key identifier: D4:C2:57:92:37:61:CF:92:E6:02:00:5D:96:42:41:DC:6C:6B:A0:3C
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 080A
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/1MJXkjdhz5LmAgBdlkJB3GxroDw.roa
Signing time: Thu 29 Jun 2023 03:15:39 +0000
ROA not before: Thu 29 Jun 2023 03:15:39 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 7018
IP address blocks: 112.75.96.0/22 maxlen: 24
112.75.108.0/22 maxlen: 24
112.75.120.0/22 maxlen: 24
112.75.124.0/22 maxlen: 24
112.75.132.0/22 maxlen: 24
112.75.140.0/22 maxlen: 24
112.75.148.0/22 maxlen: 24
112.75.156.0/22 maxlen: 24
112.75.164.0/22 maxlen: 24
112.75.172.0/22 maxlen: 24
112.75.180.0/22 maxlen: 24
112.75.188.0/22 maxlen: 24
112.75.196.0/22 maxlen: 24
112.75.204.0/22 maxlen: 24
112.75.212.0/22 maxlen: 24
112.75.220.0/22 maxlen: 24
112.75.228.0/22 maxlen: 24
112.75.236.0/22 maxlen: 24
112.75.244.0/22 maxlen: 24
112.75.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2058 (0x80a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Jun 29 03:15:39 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=D4C257923761CF92E602005D964241DC6C6BA03C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:65:2c:b7:a5:8e:2c:d3:8c:5e:3f:85:d2:bf:
37:88:b3:dd:b3:ad:e9:c3:00:97:fa:77:cc:3c:9f:
32:e7:6a:6d:b5:e1:a0:55:ae:34:15:8b:62:f9:05:
cc:d5:c7:55:0a:44:19:d7:eb:e9:3c:90:6d:e5:aa:
92:12:e5:dc:50:96:e1:8e:c0:34:00:47:1c:e9:ae:
7f:89:22:fd:18:40:e8:29:5a:0b:3c:e8:c8:70:06:
1b:39:62:11:b2:ee:e9:93:d8:69:38:40:dc:ef:6e:
2e:55:42:84:0f:fb:a6:6b:ec:3f:f1:75:3b:0a:87:
da:61:ca:5a:eb:da:a0:7c:c4:b0:1f:d8:85:5c:31:
02:46:e9:0d:04:95:95:b4:2a:74:5c:6d:a9:88:b6:
06:dd:72:1a:50:a6:b9:39:30:20:55:c9:b8:7c:42:
3b:fe:02:e1:54:03:22:29:e2:de:2e:b7:dc:9c:d7:
81:df:a3:d0:04:fe:cd:18:0b:30:c7:de:58:54:06:
18:95:f9:ca:e8:0f:56:1a:2d:b8:6d:30:97:aa:b3:
3c:01:18:52:ad:2b:a3:c4:9f:52:54:74:8d:b3:13:
bb:27:2a:c2:0c:79:73:c1:07:88:41:55:69:4c:e0:
1b:b3:75:7b:f5:98:a1:18:b8:4a:c1:87:44:c9:92:
1a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C2:57:92:37:61:CF:92:E6:02:00:5D:96:42:41:DC:6C:6B:A0:3C
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/1MJXkjdhz5LmAgBdlkJB3GxroDw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.96.0/22
112.75.108.0/22
112.75.120.0/21
112.75.132.0/22
112.75.140.0/22
112.75.148.0/22
112.75.156.0/22
112.75.164.0/22
112.75.172.0/22
112.75.180.0/22
112.75.188.0/22
112.75.196.0/22
112.75.204.0/22
112.75.212.0/22
112.75.220.0/22
112.75.228.0/22
112.75.236.0/22
112.75.244.0/22
112.75.252.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:9d:43:e5:f3:2e:76:e9:2e:76:cd:b4:25:03:d8:5a:86:94:
43:b4:d0:86:a7:c3:b6:68:47:9a:ea:dd:7e:e8:b3:11:72:84:
b7:57:af:54:5a:ec:47:5f:7e:97:45:a9:85:de:e9:e1:06:bb:
2b:5b:b3:25:d3:5d:76:a0:6d:82:83:f2:21:46:3b:b2:d9:09:
4e:e1:7a:e2:18:0e:a3:b7:e3:30:a8:fd:c6:41:66:e0:92:75:
cb:35:6f:99:8b:b1:bd:ce:62:39:a8:3a:b8:f6:f0:b6:2e:62:
3c:d6:1b:48:af:e9:ef:8b:40:70:05:99:f2:2a:7e:bb:8c:c0:
24:df:d2:10:91:bb:ab:2a:a8:78:c5:9a:52:e2:c7:77:9c:6e:
2c:34:e2:52:cf:b2:28:74:48:db:6d:ba:c5:4c:ad:3f:1d:1f:
df:05:93:34:d9:61:db:96:52:18:68:37:87:06:ad:b4:21:3f:
40:91:b2:c7:d8:26:75:e1:7c:8e:eb:84:b8:da:7e:fb:bd:43:
65:a1:10:da:99:d8:6d:35:e7:8d:a3:81:33:6b:05:ba:d7:f3:
c3:4e:e8:7b:7e:39:5c:a3:7b:39:8b:f0:f4:9a:a3:df:68:ed:
1d:f5:60:fb:bb:a0:a2:db:e3:6b:19:a2:07:72:ce:df:54:16:
15:1b:ac:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:18 2023 by rpki-client on console-ams.rpki-client.org