Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/IIYyUQgltkdalBgGoYf7REKyR5s.roa
File: IIYyUQgltkdalBgGoYf7REKyR5s.roa (raw, json)
Hash identifier: S9EeCWEbNVe42x7zfJXb7wez/FD3ZjQtjdoXVhnuBoI=
Subject key identifier: 20:86:32:51:08:25:B6:47:5A:94:18:06:A1:87:FB:44:42:B2:47:9B
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1C48
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/IIYyUQgltkdalBgGoYf7REKyR5s.roa
Signing time: Sun 05 May 2024 09:24:15 +0000
ROA not before: Sun 05 May 2024 09:24:15 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7240 (0x1c48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 5 09:24:15 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=208632510825B6475A941806A187FB4442B2479B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8f:c5:8c:62:57:d9:13:17:a9:36:d9:f5:d5:
2e:87:be:2b:5b:cc:e9:f2:9d:fb:90:e8:e2:4e:00:
ca:4e:dc:68:83:bf:42:ee:fd:c4:e9:db:79:99:03:
e2:b1:3f:2f:d8:fe:1f:f3:dd:44:e1:e0:cd:d1:8d:
ac:6c:b5:8e:b4:5b:66:5d:e6:e5:de:2f:a3:e3:d7:
b2:b7:5d:46:9b:c5:78:6f:bf:6e:35:35:9a:89:96:
8d:9c:0b:82:a4:ad:8b:0c:e7:72:39:85:dc:2c:27:
c7:a1:93:eb:52:d9:5c:c7:af:73:46:fe:81:ea:87:
67:36:01:32:87:12:01:0a:40:46:3e:5e:89:f2:44:
f7:29:b0:44:12:c7:09:dd:a4:fc:86:a6:6b:84:c4:
ce:67:af:70:dc:5a:bf:9d:55:cb:23:b6:42:2c:10:
b9:4a:b1:f1:9c:28:64:12:57:15:f2:aa:a0:3e:07:
cd:5b:cc:e3:57:ea:98:a8:13:eb:8b:e4:b0:a8:76:
54:9e:50:e5:f9:c4:98:5f:5a:cf:c1:37:8c:4d:db:
d3:e9:d8:9f:15:c4:eb:bf:90:6c:78:21:7f:f2:16:
33:e1:47:fa:32:c7:bb:4f:26:cd:3f:69:b0:bc:7b:
90:81:67:88:54:f4:f9:dc:c9:50:a6:a0:a0:de:17:
e7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:86:32:51:08:25:B6:47:5A:94:18:06:A1:87:FB:44:42:B2:47:9B
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/IIYyUQgltkdalBgGoYf7REKyR5s.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
af:52:00:97:6c:88:f9:ae:97:3c:47:3c:01:2d:2a:41:85:2c:
4c:25:58:01:17:7b:64:48:07:7a:99:a1:58:16:66:f4:ad:39:
47:1e:04:ea:d3:7e:df:24:21:66:94:f8:45:c3:26:73:a9:b6:
f3:17:43:35:68:15:69:68:59:75:39:47:c0:00:62:ca:5e:69:
0c:38:41:a5:33:8a:47:0b:4c:73:05:c3:22:a5:ae:b1:ab:cd:
4e:23:8b:f4:ca:09:d5:e5:07:5a:83:f0:e1:04:f3:f1:84:8e:
fd:45:e2:13:51:ee:af:45:48:f3:85:a0:c4:6b:4e:0c:a1:f7:
d2:0b:d5:12:70:e7:05:0e:7a:a8:22:bb:60:dc:be:e2:f7:a4:
c2:48:1c:c4:8c:86:e4:58:d6:08:be:6c:ca:cf:dc:4f:94:ca:
ec:c4:f6:6e:f1:45:14:25:bc:30:01:43:4c:dc:b0:f6:9c:d6:
a3:8a:c2:11:17:ee:ce:42:86:7b:4f:f8:9b:87:17:aa:52:48:
f8:44:4b:fc:c1:b1:e6:0c:39:cb:75:a7:47:27:48:b3:07:92:
8a:24:10:64:d6:69:54:83:82:92:55:c2:6a:bc:e6:b9:00:20:
d2:92:59:ec:2e:4a:4d:a1:31:cf:83:8a:56:24:93:f9:14:cf:
e1:29:28:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:56:07 2025 by rpki-client