Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/DY4g67ce1g7Te-0DnYZVdyWRnm0.roa
File: DY4g67ce1g7Te-0DnYZVdyWRnm0.roa (raw, json)
Hash identifier: rUsFunLqSE7mYWwNWKMVZFMLXpHsNmwYStv0BBMuenk=
Subject key identifier: 0D:8E:20:EB:B7:1E:D6:0E:D3:7B:ED:03:9D:86:55:77:25:91:9E:6D
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1334
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/DY4g67ce1g7Te-0DnYZVdyWRnm0.roa
Signing time: Thu 11 Apr 2024 04:23:12 +0000
ROA not before: Thu 11 Apr 2024 04:23:12 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4916 (0x1334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 11 04:23:12 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=0D8E20EBB71ED60ED37BED039D86557725919E6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e1:1b:48:cd:6f:bc:5f:d1:f5:65:d3:0b:d0:
9a:cb:27:31:50:31:ac:5a:47:04:7c:04:42:3d:76:
19:3c:44:39:bf:33:cd:81:c5:59:9e:7c:19:9f:f6:
e5:fa:a3:92:cf:13:71:02:ac:7d:1d:01:6f:7d:c9:
6e:f1:33:3b:1f:bd:82:e6:0d:cb:20:3d:3d:fd:0d:
04:e1:27:7d:30:4b:79:54:1c:ab:2d:ec:bc:da:43:
ba:30:7d:0b:c0:d3:ae:df:73:dd:01:31:57:54:4e:
a4:95:3b:18:31:dd:f4:68:00:15:71:49:79:72:51:
a0:45:34:53:4e:8e:fb:4c:61:5f:eb:dc:c4:bf:28:
64:08:bd:03:f3:91:78:0d:e2:5d:35:1b:da:d8:6e:
45:67:20:9f:e3:e3:c4:2f:7c:e7:e2:ec:b1:04:52:
b0:e7:53:a1:70:af:87:79:d2:43:26:dc:cb:8c:8b:
2f:92:fc:e7:c3:91:b9:bf:64:6d:3d:7f:19:a3:54:
84:2a:93:7c:bd:57:69:d7:0f:46:25:ce:94:0c:b3:
a3:bb:6d:a3:c1:6a:23:d3:e4:2a:50:8a:51:45:9c:
e6:e3:20:b9:72:61:98:cd:77:ac:59:78:de:e6:b6:
d4:a3:fb:21:74:70:e1:d0:4f:9c:f9:ea:31:ee:44:
55:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8E:20:EB:B7:1E:D6:0E:D3:7B:ED:03:9D:86:55:77:25:91:9E:6D
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/DY4g67ce1g7Te-0DnYZVdyWRnm0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1a:71:4e:6e:31:c4:d7:82:ab:a1:ca:7a:ea:20:06:19:9c:1a:
c4:a4:f6:0e:36:db:fc:12:a5:5a:8f:4e:da:d7:1b:48:31:10:
ad:cb:25:d8:2d:d6:f5:66:41:de:3e:f6:49:6b:92:38:74:1b:
92:ee:64:23:ff:0f:61:af:98:0e:c8:f8:e8:29:c6:24:fc:9a:
f7:5b:3e:49:dd:bb:b9:09:ee:5f:8e:05:de:d1:6c:24:b2:18:
ff:31:fe:e6:03:d0:81:6d:8f:61:7d:e6:82:63:62:4a:cd:a3:
30:4a:03:da:4a:d9:5c:29:0d:38:fd:ef:d3:08:b5:d7:c7:91:
08:a7:09:31:08:a3:8a:08:47:36:7c:7d:c3:5e:8f:6c:03:0b:
50:09:54:a3:a2:c8:a2:07:66:f2:f6:e5:5c:06:46:8c:67:4c:
12:f8:9e:98:c7:a5:35:8b:3c:14:8c:66:2c:7a:70:e2:bb:aa:
31:c7:eb:f1:13:2b:b3:7e:33:21:3f:87:bc:9e:32:07:ae:2c:
c5:0d:44:2b:b4:9b:da:6a:df:75:ad:6b:88:92:e9:71:d7:5d:
34:10:0a:a9:a4:71:5e:e1:32:18:d6:7d:4f:fb:cb:89:7d:63:
7f:61:e5:00:d8:c5:6d:66:d0:ce:ff:a0:b5:3c:2c:83:0a:30:
f0:0a:9d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 02:05:14 2025 by rpki-client