Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/JN4mJ2mOsljU5um5kBrpp7R3bEE.roa
File: JN4mJ2mOsljU5um5kBrpp7R3bEE.roa (raw, json)
Hash identifier: 73mccO+xMlbfPM1k8nXISQbwyLSpP222woc6xfAUi10=
Subject key identifier: 24:DE:26:27:69:8E:B2:58:D4:E6:E9:B9:90:1A:E9:A7:B4:77:6C:41
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 169C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/JN4mJ2mOsljU5um5kBrpp7R3bEE.roa
Signing time: Sat 20 Apr 2024 06:23:28 +0000
ROA not before: Sat 20 Apr 2024 06:23:28 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5788 (0x169c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 20 06:23:28 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=24DE2627698EB258D4E6E9B9901AE9A7B4776C41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c0:45:7d:72:f6:ac:cd:cd:3d:25:64:13:71:
25:44:4a:19:70:4e:de:a7:61:a1:20:7f:1a:2d:63:
78:c7:10:3c:ca:a7:95:98:10:95:63:ff:03:24:bc:
b9:89:e5:b5:4b:1b:78:fd:14:e8:f3:7b:8d:db:3c:
11:45:ba:b1:ed:04:6b:c3:43:4f:66:2d:ae:bf:eb:
31:e9:b8:3a:ce:45:64:a7:b7:45:e8:a7:42:3f:a5:
a2:20:b1:ba:1a:52:3e:71:fe:39:ec:96:32:62:19:
49:02:77:12:78:b0:81:9a:7f:5b:8f:2f:56:b2:f5:
a1:32:f2:bd:bd:ca:dd:52:96:e0:5b:e4:4b:32:0e:
c0:92:87:a3:d9:05:9e:a0:47:a9:4b:2e:1a:cf:e3:
72:60:8a:83:ad:65:e8:49:a2:94:e6:d6:d5:67:6f:
5b:ad:e1:65:66:40:68:0e:11:90:a3:e4:89:c9:12:
b9:4a:e0:30:3c:1c:e1:30:4d:98:58:51:9a:17:4d:
b1:d6:9a:c8:ed:f5:26:9b:fd:0e:60:48:22:38:3b:
e8:9b:7b:ea:17:0f:64:78:d8:da:c9:42:65:7f:00:
b4:bf:81:06:5b:bc:4a:b1:80:e6:82:a0:e4:14:1f:
65:84:be:08:34:d7:9c:00:43:e5:fd:78:e1:4a:03:
ae:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DE:26:27:69:8E:B2:58:D4:E6:E9:B9:90:1A:E9:A7:B4:77:6C:41
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/JN4mJ2mOsljU5um5kBrpp7R3bEE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1e:06:c0:0e:ae:62:bf:3e:ae:0d:98:43:a3:56:a2:49:71:a2:
e2:b9:72:cd:ad:5b:22:0e:59:e0:61:8d:59:47:7e:c0:99:15:
99:4d:41:9f:df:92:f1:c1:fd:01:26:b5:6f:a9:3f:2c:06:f1:
51:5a:2d:8d:99:ec:14:8b:e6:60:73:59:60:f2:9d:cb:65:25:
db:15:95:d0:6d:10:6a:3f:96:f5:36:32:db:f4:7d:40:f2:f5:
d6:ac:ab:6a:21:93:9f:68:48:ec:52:b8:08:39:f7:7d:d2:ac:
4a:fc:36:eb:91:aa:36:2e:39:c5:b8:1e:2d:a6:3f:5b:c8:09:
a6:85:34:8e:32:ae:96:22:cb:49:75:00:95:28:ba:82:1f:a9:
8b:06:22:07:06:00:c0:b6:1c:6f:f7:43:00:b0:b9:fb:e7:dc:
ef:98:a9:34:ab:15:7d:9a:1f:c5:78:25:09:93:b6:2e:81:0a:
4c:ca:18:9e:6b:c6:1f:97:3e:a1:df:bf:e6:63:20:70:39:11:
b6:64:97:d5:b5:ea:68:16:0e:5c:31:5e:7a:55:b6:97:d1:f6:
43:3b:d1:e3:b9:77:8c:e9:89:ae:56:40:9d:27:89:74:f7:c0:
96:68:8c:a9:8d:c2:aa:36:06:35:2c:f6:f6:a2:ec:60:c1:3e:
74:a2:a2:97
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICFpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MjAw
NjIzMjhaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDI0REUyNjI3Njk4RUIy
NThENEU2RTlCOTkwMUFFOUE3QjQ3NzZDNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/wEV9cvaszc09JWQTcSVEShlwTt6nYaEgfxotY3jHEDzKp5WY
EJVj/wMkvLmJ5bVLG3j9FOjze43bPBFFurHtBGvDQ09mLa6/6zHpuDrORWSnt0Xo
p0I/paIgsboaUj5x/jnsljJiGUkCdxJ4sIGaf1uPL1ay9aEy8r29yt1SluBb5Esy
DsCSh6PZBZ6gR6lLLhrP43JgioOtZehJopTm1tVnb1ut4WVmQGgOEZCj5InJErlK
4DA8HOEwTZhYUZoXTbHWmsjt9Sab/Q5gSCI4O+ibe+oXD2R42NrJQmV/ALS/gQZb
vEqxgOaCoOQUH2WEvgg015wAQ+X9eOFKA66/AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUJN4mJ2mOsljU5um5kBrpp7R3bEEwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL0pONG1KMm1Pc2xqVTV1
bTVrQnJwcDdSM2JFRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAHgbADq5ivz6uDZhDo1aiSXGi4rlyza1b
Ig5Z4GGNWUd+wJkVmU1Bn9+S8cH9ASa1b6k/LAbxUVotjZnsFIvmYHNZYPKdy2Ul
2xWV0G0Qaj+W9TYy2/R9QPL11qyraiGTn2hI7FK4CDn3fdKsSvw265GqNi45xbge
LaY/W8gJpoU0jjKuliLLSXUAlSi6gh+piwYiBwYAwLYcb/dDALC5++fc75ipNKsV
fZofxXglCZO2LoEKTMoYnmvGH5c+od+/5mMgcDkRtmSX1bXqaBYOXDFeelW2l9H2
QzvR47l3jOmJrlZAnSeJdPfAlmiMqY3CqjYGNSz29qLsYME+dKKilw==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:39:18 2025 by rpki-client