Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/BdQ2om-BGGHrA1HI1j2zykf_mE8.roa
File: BdQ2om-BGGHrA1HI1j2zykf_mE8.roa (raw, json)
Hash identifier: xyJ01TS5uCgnlJ0EwIoF3XSKogBpkKe2D/GpS+s0YZ8=
Subject key identifier: 05:D4:36:A2:6F:81:18:61:EB:03:51:C8:D6:3D:B3:CA:47:FF:98:4F
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1B58
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/BdQ2om-BGGHrA1HI1j2zykf_mE8.roa
Signing time: Thu 02 May 2024 21:24:08 +0000
ROA not before: Thu 02 May 2024 21:24:08 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7000 (0x1b58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 2 21:24:08 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=05D436A26F811861EB0351C8D63DB3CA47FF984F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ab:b1:69:64:87:56:51:86:8d:5c:bb:c1:04:
e5:73:53:12:4f:8e:c3:1c:44:e8:36:5d:a2:8d:e1:
ac:0a:eb:3d:e9:20:0b:87:de:71:bf:0c:64:e8:f1:
b3:f1:41:0f:66:b5:44:0f:fa:1b:aa:bd:4c:5b:08:
dc:31:ba:c8:5c:44:b0:3b:e8:a7:5a:39:4d:8c:43:
bf:f3:d1:a1:f6:0c:3b:8e:7e:94:c2:1f:a2:d9:0a:
64:0d:ac:e4:77:62:ad:cf:7c:34:7a:9a:87:8a:5d:
7d:69:dc:7f:20:f4:b8:22:ed:a5:0e:f1:49:ba:29:
2b:66:8c:b6:6f:de:d0:b1:ff:50:8d:8c:ed:6a:41:
ec:39:10:60:ab:50:23:f8:bc:27:0e:f9:16:ec:14:
78:94:22:11:3c:17:07:e7:4e:7d:cd:a5:89:1d:ac:
81:de:fc:02:f1:07:bc:a4:dc:4e:87:6d:bd:6f:b5:
83:30:d7:1e:a8:4f:44:d1:96:0a:0d:fa:90:16:00:
7f:ab:ae:88:2c:18:fb:27:7f:16:f1:ed:51:31:22:
5d:de:b6:fc:07:c0:f3:e9:90:e2:37:87:98:c9:05:
6e:86:27:bb:52:a6:fa:1d:e5:f9:0e:7e:9f:fc:da:
55:88:ae:85:75:40:49:ea:8e:bd:32:0c:f8:62:8a:
29:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D4:36:A2:6F:81:18:61:EB:03:51:C8:D6:3D:B3:CA:47:FF:98:4F
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/BdQ2om-BGGHrA1HI1j2zykf_mE8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
82:fc:26:70:c6:e9:0d:09:7c:02:4c:0a:fb:46:85:2a:41:c4:
7b:be:e1:48:f6:86:58:29:f8:d7:8a:f1:5b:9f:93:97:93:8c:
4e:76:68:9b:4e:ed:a1:34:39:99:b5:0a:b5:e9:12:ec:6e:76:
4f:de:55:6c:88:98:e0:ed:8e:85:b4:ab:2a:84:95:1a:8e:c6:
9e:f9:a4:db:3d:e2:9e:de:9f:6f:88:20:22:fb:98:a7:d3:66:
0c:19:3f:27:7d:de:9c:17:01:60:3e:ea:2d:da:e6:41:59:c1:
09:16:ba:40:58:0c:87:81:1f:5d:bf:53:9e:13:0b:9b:e7:42:
a8:46:05:a5:5d:fe:23:57:9b:2a:30:89:a7:89:ea:c1:60:1b:
00:54:1d:9a:21:f5:c3:c6:4c:d9:0e:e9:17:e6:d6:1d:b4:76:
86:36:57:56:da:bc:3a:d9:8e:51:80:6a:1b:dd:42:28:3a:f7:
98:d3:6b:87:42:8b:ac:e2:99:d4:0d:02:60:f6:92:04:82:c9:
e1:84:9c:b5:fb:3b:de:82:6f:1d:e7:dc:cc:e7:98:2c:fd:34:
05:02:64:bc:47:62:66:6f:cd:a4:e1:f6:92:3a:37:b0:20:cb:
f0:47:7d:26:a6:91:56:63:1c:c1:53:67:cc:06:ba:e0:7a:41:
fb:b3:8d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:36:34 2025 by rpki-client