Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/YPs1f7gIJaMiIabxMB-lj5C7EV4.roa
File: YPs1f7gIJaMiIabxMB-lj5C7EV4.roa (raw, json)
Hash identifier: 8SrRl5YLeGdzqjSMZQTI/BpYtCJWh7l61/VwKJHmD/g=
Subject key identifier: 60:FB:35:7F:B8:08:25:A3:22:21:A6:F1:30:1F:A5:8F:90:BB:11:5E
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1AE8
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/YPs1f7gIJaMiIabxMB-lj5C7EV4.roa
Signing time: Wed 01 May 2024 17:24:03 +0000
ROA not before: Wed 01 May 2024 17:24:03 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6888 (0x1ae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 1 17:24:03 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=60FB357FB80825A32221A6F1301FA58F90BB115E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:6f:28:e4:5c:74:9f:02:c1:cb:68:e0:63:
87:bc:04:62:96:fc:75:99:1e:d5:42:5c:18:e0:fd:
36:d6:5e:82:b9:57:ac:33:da:ae:68:d1:fa:85:c5:
bd:e4:47:52:ad:e2:52:57:ee:2d:16:07:cc:ca:2f:
9a:26:71:25:82:31:56:41:a0:8a:9e:8a:d7:37:54:
0a:f8:d1:dc:2d:44:89:f9:63:ec:89:04:16:23:4c:
3d:81:35:3b:9d:a0:30:45:50:8f:55:ca:df:b7:8e:
09:1d:95:25:e3:d3:bf:0b:7a:fd:61:35:28:a8:49:
23:3e:cb:7e:ad:b7:19:d2:93:70:9f:cb:d4:e5:53:
5b:87:f0:dc:30:9f:9c:a0:94:3f:6f:ea:25:af:9e:
10:0c:b5:a1:fc:09:82:4b:cd:5d:6c:f2:ea:ea:b3:
ee:c3:16:42:d7:0c:26:6a:8e:c7:d6:a3:bd:10:4e:
f1:d2:2c:01:62:80:33:2a:ee:0c:1f:e2:9d:51:eb:
6a:84:32:d7:18:cb:19:9e:51:32:fe:3d:72:f7:83:
26:9b:60:12:d6:5f:49:ff:32:05:de:af:d5:ec:5c:
02:2a:dc:2f:0f:7c:00:08:78:bd:53:23:df:ab:8c:
aa:23:89:c6:92:d9:40:be:3d:ae:e9:38:b2:72:4f:
26:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FB:35:7F:B8:08:25:A3:22:21:A6:F1:30:1F:A5:8F:90:BB:11:5E
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/YPs1f7gIJaMiIabxMB-lj5C7EV4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
63:db:82:d6:8b:d0:84:c9:4e:fa:07:60:05:ac:b1:ba:4f:5e:
23:c3:03:50:d3:1a:fa:1e:69:70:de:2d:67:85:7d:96:a9:a5:
db:30:8e:9b:34:50:ad:54:8b:98:ff:43:f9:bf:54:3e:0b:48:
c0:d2:e8:82:ca:12:0a:f2:45:b2:87:66:a8:c3:03:32:28:c0:
7f:e3:89:6b:84:a7:f3:14:33:1c:85:3d:47:19:29:9c:bb:d4:
cc:44:6d:64:02:ba:bf:e5:4a:21:69:3b:b7:45:ca:9c:ab:74:
6e:61:91:0a:b5:9a:5a:05:a8:60:f2:8e:68:dc:c7:51:00:c2:
fc:27:ec:f6:71:53:c6:82:27:b5:8c:3f:0a:3f:1f:01:19:1a:
f3:f2:ad:f2:90:ce:54:72:b6:9f:8c:2e:f2:0c:01:01:04:32:
6b:1b:bf:72:fb:f7:cc:ff:2e:63:d1:a2:c6:f5:47:7f:37:5a:
04:cd:c8:9b:51:d7:ef:a1:1f:ce:27:d5:83:1c:63:01:a8:31:
df:89:8e:6d:eb:d7:5f:3c:fc:7a:f6:f1:55:ec:4c:63:63:8e:
26:95:da:bb:a9:ef:3f:d0:17:d8:0d:9c:07:75:9e:3a:d0:e2:
cb:73:c6:e1:66:47:1b:81:27:6f:ab:40:03:79:ae:61:17:b9:
72:61:3b:a3
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICGugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA1MDEx
NzI0MDNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDYwRkIzNTdGQjgwODI1
QTMyMjIxQTZGMTMwMUZBNThGOTBCQjExNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6Bm8o5Fx0nwLBy2jgY4e8BGKW/HWZHtVCXBjg/TbWXoK5V6wz
2q5o0fqFxb3kR1Kt4lJX7i0WB8zKL5omcSWCMVZBoIqeitc3VAr40dwtRIn5Y+yJ
BBYjTD2BNTudoDBFUI9Vyt+3jgkdlSXj078Lev1hNSioSSM+y36ttxnSk3Cfy9Tl
U1uH8Nwwn5yglD9v6iWvnhAMtaH8CYJLzV1s8urqs+7DFkLXDCZqjsfWo70QTvHS
LAFigDMq7gwf4p1R62qEMtcYyxmeUTL+PXL3gyabYBLWX0n/MgXer9XsXAIq3C8P
fAAIeL1TI9+rjKojicaS2UC+Pa7pOLJyTyZPAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUYPs1f7gIJaMiIabxMB+lj5C7EV4wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL1lQczFmN2dJSmFNaUlh
YnhNQi1sajVDN0VWNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAY9uC1ovQhMlO+gdgBayxuk9eI8MDUNMa
+h5pcN4tZ4V9lqml2zCOmzRQrVSLmP9D+b9UPgtIwNLogsoSCvJFsodmqMMDMijA
f+OJa4Sn8xQzHIU9RxkpnLvUzERtZAK6v+VKIWk7t0XKnKt0bmGRCrWaWgWoYPKO
aNzHUQDC/Cfs9nFTxoIntYw/Cj8fARka8/Kt8pDOVHK2n4wu8gwBAQQyaxu/cvv3
zP8uY9GixvVHfzdaBM3Im1HX76EfzifVgxxjAagx34mObevXXzz8evbxVexMY2OO
JpXau6nvP9AX2A2cB3WeOtDiy3PG4WZHG4Enb6tAA3muYRe5cmE7ow==
-----END CERTIFICATE-----
Generated at Wed Jun 4 00:55:36 2025 by rpki-client