Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/8yTjms-1MtDzlsEwwo3T0apnC5k.roa
File: 8yTjms-1MtDzlsEwwo3T0apnC5k.roa (raw, json)
Hash identifier: kCTsOSHTUIkLddw6BcAhp7CEi7k9TxqoeauWwOE9OOY=
Subject key identifier: F3:24:E3:9A:CF:B5:32:D0:F3:96:C1:30:C2:8D:D3:D1:AA:67:0B:99
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0EA0
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/8yTjms-1MtDzlsEwwo3T0apnC5k.roa
Signing time: Fri 29 Mar 2024 23:22:31 +0000
ROA not before: Fri 29 Mar 2024 23:22:31 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3744 (0xea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 29 23:22:31 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F324E39ACFB532D0F396C130C28DD3D1AA670B99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:40:ad:ef:df:43:ef:4b:38:4c:46:df:48:
0f:d4:f7:d4:83:73:68:89:af:ab:d5:64:b6:6e:77:
f4:92:70:da:a7:77:34:b9:c8:ff:ca:9c:fe:11:d8:
00:ea:a1:d4:1b:08:4f:05:86:92:28:7d:2b:30:ff:
51:18:40:a5:2e:5d:87:fc:46:80:4a:f4:86:66:1e:
54:f9:75:8c:a9:63:6d:64:3a:ff:9a:db:a8:9b:27:
c2:91:80:13:86:9a:23:ad:7b:56:81:c2:44:ce:00:
84:7a:d5:c6:68:31:be:f6:80:a5:a7:83:64:c9:f3:
d3:9d:e4:6d:8c:a3:fc:1d:b2:70:6e:ac:0c:f8:1a:
63:41:c8:41:8d:ba:81:af:81:6b:a7:28:6a:75:c5:
40:0c:8b:0f:8b:24:7c:ac:cf:64:c1:c1:b1:35:e9:
12:3b:15:07:0a:a4:09:41:16:16:fe:46:63:05:b8:
1a:22:d8:02:ab:b5:d4:c0:71:7a:c2:e0:1e:33:bd:
61:c3:d5:a6:43:f5:4d:4c:ad:1d:d8:40:be:bd:78:
7e:c9:47:cc:7c:9d:47:66:45:46:2c:10:85:32:be:
43:a0:e7:c7:8d:9f:fd:48:3d:a4:87:fc:d8:3e:ec:
3b:e0:cb:cd:ad:03:dd:37:fe:bc:ff:cd:2c:71:e9:
27:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:24:E3:9A:CF:B5:32:D0:F3:96:C1:30:C2:8D:D3:D1:AA:67:0B:99
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/8yTjms-1MtDzlsEwwo3T0apnC5k.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
af:37:20:cd:37:97:b8:ca:83:35:f6:04:fa:14:69:e0:27:f9:
a2:0e:7c:45:51:17:5d:69:18:97:b3:cd:2a:37:a1:ac:ad:68:
79:3e:bb:6e:4a:56:d3:20:50:b6:fb:46:dc:51:67:d6:81:04:
ad:9a:8c:62:0f:59:8f:b8:bf:4e:d0:b1:8f:6d:c7:15:ca:ba:
c9:9b:c7:c9:ae:4a:5d:d0:62:15:31:4a:73:6d:7c:b3:f9:b8:
08:e9:69:0a:70:f4:c1:d3:32:0d:91:14:2b:24:f8:ee:40:17:
b3:20:21:48:58:56:bf:10:23:f9:21:68:56:ad:b7:ee:4a:12:
1f:4f:89:9a:6b:e9:67:5b:da:78:82:7f:b4:86:ba:95:e5:36:
e1:bd:5a:57:29:c1:ed:cf:a8:ff:f4:e1:58:5f:f7:0c:72:4d:
d6:a0:23:e6:44:fb:d0:0a:39:df:ba:54:1b:a8:79:0b:8b:49:
a6:96:d0:36:4c:57:63:b4:dd:a3:53:3b:71:4c:4b:82:12:04:
6c:52:e1:fb:10:a3:df:45:fc:79:0e:59:7b:5b:ec:64:08:ae:
e4:ce:4e:c4:e0:59:51:80:8b:21:68:7b:6a:83:aa:b4:2d:b0:
9a:1d:3e:eb:22:dc:c2:39:46:f9:e6:78:87:09:1b:3c:be:59:
9e:65:d6:ce
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDAzMjky
MzIyMzFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEYzMjRFMzlBQ0ZCNTMy
RDBGMzk2QzEzMEMyOEREM0QxQUE2NzBCOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCR0Ct799D70s4TEbfSA/U99SDc2iJr6vVZLZud/SScNqndzS5
yP/KnP4R2ADqodQbCE8FhpIofSsw/1EYQKUuXYf8RoBK9IZmHlT5dYypY21kOv+a
26ibJ8KRgBOGmiOte1aBwkTOAIR61cZoMb72gKWng2TJ89Od5G2Mo/wdsnBurAz4
GmNByEGNuoGvgWunKGp1xUAMiw+LJHysz2TBwbE16RI7FQcKpAlBFhb+RmMFuBoi
2AKrtdTAcXrC4B4zvWHD1aZD9U1MrR3YQL69eH7JR8x8nUdmRUYsEIUyvkOg58eN
n/1IPaSH/Ng+7Dvgy82tA903/rz/zSxx6SfXAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU8yTjms+1MtDzlsEwwo3T0apnC5kwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzLzh5VGptcy0xTXREemxz
RXd3bzNUMGFwbkM1ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEArzcgzTeXuMqDNfYE+hRp4Cf5og58RVEX
XWkYl7PNKjehrK1oeT67bkpW0yBQtvtG3FFn1oEErZqMYg9Zj7i/TtCxj23HFcq6
yZvHya5KXdBiFTFKc218s/m4COlpCnD0wdMyDZEUKyT47kAXsyAhSFhWvxAj+SFo
Vq237koSH0+JmmvpZ1vaeIJ/tIa6leU24b1aVynB7c+o//ThWF/3DHJN1qAj5kT7
0Ao537pUG6h5C4tJppbQNkxXY7Tdo1M7cUxLghIEbFLh+xCj30X8eQ5Ze1vsZAiu
5M5OxOBZUYCLIWh7aoOqtC2wmh0+6yLcwjlG+eZ4hwkbPL5ZnmXWzg==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:41:51 2025 by rpki-client