Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/YgJ5lKEXzAGcQJIyAl0xa0P30VE.roa
File: YgJ5lKEXzAGcQJIyAl0xa0P30VE.roa (raw, json)
Hash identifier: pfvUg1p3Z1fGmulITsroVGNyR4RI8XcKf9O0E2hpUSc=
Subject key identifier: 62:02:79:94:A1:17:CC:01:9C:40:92:32:02:5D:31:6B:43:F7:D1:51
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 14F8
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/YgJ5lKEXzAGcQJIyAl0xa0P30VE.roa
Signing time: Mon 15 Apr 2024 21:23:24 +0000
ROA not before: Mon 15 Apr 2024 21:23:24 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5368 (0x14f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 15 21:23:24 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=62027994A117CC019C409232025D316B43F7D151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bf:20:5a:3c:7d:02:fe:ef:5c:f2:d4:5f:7f:
7d:b1:67:91:df:0b:54:57:0e:8b:dc:e4:28:d3:38:
36:dd:5d:2b:32:ab:3d:f0:82:c3:1d:7e:b0:73:09:
3a:b6:83:e4:8f:bd:47:02:a1:c6:f8:e1:db:e1:5d:
6d:ff:6d:ae:8b:11:fd:90:95:90:bf:f6:8b:b1:fc:
70:65:fe:6b:b1:91:ff:64:a4:6c:a6:53:7e:b0:bc:
a3:d2:b1:95:3e:81:53:1d:af:80:8d:12:50:43:73:
e7:d3:76:a9:5a:23:d8:ad:77:b0:fd:3a:f8:1f:16:
d1:7e:fa:46:0e:c3:1a:26:5a:65:a3:9f:eb:95:b3:
cb:b7:44:a5:13:99:ec:74:a7:c6:58:58:df:d2:a7:
e7:d3:e1:b3:69:82:50:95:8f:e0:8a:77:28:b7:6a:
19:aa:b9:82:2c:6b:ca:0e:a0:3f:eb:4f:2f:c7:e5:
d5:62:b2:a5:81:eb:ca:0f:3c:29:eb:b8:57:4f:50:
57:80:98:16:c0:38:56:bd:a0:5e:8d:bb:10:28:3a:
4d:b5:e9:08:ec:da:8d:41:e0:3e:04:1f:93:c7:bd:
8d:d1:e5:a4:87:c4:1e:5b:f3:c5:83:e0:44:b4:95:
79:0e:1b:e2:4b:58:82:96:19:ff:b9:01:a8:af:e0:
c9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:02:79:94:A1:17:CC:01:9C:40:92:32:02:5D:31:6B:43:F7:D1:51
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/YgJ5lKEXzAGcQJIyAl0xa0P30VE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
24:e3:a0:83:dd:1a:e3:b3:09:2c:3f:bf:60:7e:74:52:5f:11:
ca:92:3e:f7:e5:96:78:a4:24:d1:cb:ac:a7:b9:31:96:e8:b2:
9c:4b:05:08:40:eb:80:1e:aa:93:ba:4b:5f:6f:f8:49:99:0d:
4e:d3:8e:8c:09:68:3f:1f:4e:82:00:24:d4:50:41:49:c3:3a:
f0:50:6a:a5:c8:ef:af:40:d8:a6:12:3b:3c:e1:af:e6:a2:37:
a3:12:3a:21:a6:fe:a5:09:72:f2:9e:2d:97:32:68:7d:b4:a8:
33:04:70:97:3f:f1:85:81:7e:38:9d:c1:e0:5f:be:fb:29:31:
34:04:fb:80:28:a0:8b:00:df:a9:fa:b8:b2:90:74:54:98:b6:
51:20:16:63:6a:73:58:22:a3:85:0f:6e:76:23:5b:69:93:5d:
29:c9:83:20:76:ee:49:fa:43:db:4d:2c:97:cf:97:3f:5c:2d:
59:a0:07:58:45:e7:2f:3d:71:2f:6e:ab:5a:f5:16:48:04:79:
ae:86:7f:2a:a2:af:f5:4a:08:40:fc:32:9a:00:00:b8:97:c5:
53:22:6b:57:6c:ac:11:13:cc:57:4b:b4:8c:39:6f:63:e2:e0:
3b:46:42:08:1c:3d:5f:f5:46:d1:81:69:f2:82:1c:aa:54:03:
d6:4c:6a:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:48:56 2025 by rpki-client