Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/Ypl3JFhhHQPFG7YnCBZtjO0OZh0.roa
File: Ypl3JFhhHQPFG7YnCBZtjO0OZh0.roa (raw, json)
Hash identifier: c5/wQrRqvZGxn7y0WNHR1lMOd6zpAg9jHxuYg8HvVqM=
Subject key identifier: 62:99:77:24:58:61:1D:03:C5:1B:B6:27:08:16:6D:8C:ED:0E:66:1D
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1646
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/Ypl3JFhhHQPFG7YnCBZtjO0OZh0.roa
Signing time: Fri 19 Apr 2024 08:54:19 +0000
ROA not before: Fri 19 Apr 2024 08:54:19 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5702 (0x1646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 19 08:54:19 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6299772458611D03C51BB62708166D8CED0E661D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:00:29:91:b9:31:60:e9:60:d3:b9:c3:69:
8b:e3:db:42:27:22:b4:95:9a:21:19:34:fb:86:e3:
fd:87:51:88:4f:d6:d3:7e:e5:31:8b:f9:c6:0e:df:
8b:23:d9:c9:cd:04:f8:8a:31:b3:52:57:7a:fa:3c:
41:58:90:89:c1:0d:d6:cd:0c:8f:fd:2f:30:4f:41:
54:17:c1:3c:fb:b0:32:d1:bc:20:55:34:8b:5b:93:
87:1a:9c:cc:8b:ba:9f:56:ca:1d:84:c7:1f:29:56:
54:fb:14:5a:23:cb:09:2f:44:c1:0e:b5:4a:04:3f:
32:cf:24:ba:8a:a8:58:18:59:2a:13:54:78:6c:98:
48:55:2a:73:3f:2d:da:9a:56:26:02:58:58:b3:86:
27:c6:41:27:af:ef:c2:3f:de:6b:b2:f7:d3:35:ea:
df:d3:d5:f4:00:62:8c:a2:e4:cb:82:88:c7:2f:73:
4b:ff:99:bf:20:b8:eb:45:ec:81:79:2a:ee:aa:1b:
10:88:3d:d8:b2:95:64:1f:84:82:a6:e2:69:3c:63:
9f:0c:ba:bd:59:96:c0:ed:1d:c5:bb:1c:8a:df:57:
a5:d4:27:89:78:84:7d:28:ee:66:ce:5c:6e:7f:4d:
d9:d5:85:0c:7c:57:ca:6c:e9:44:8f:ff:ac:59:95:
6b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:99:77:24:58:61:1D:03:C5:1B:B6:27:08:16:6D:8C:ED:0E:66:1D
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/Ypl3JFhhHQPFG7YnCBZtjO0OZh0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:0d:ed:e6:a6:25:99:46:c7:8a:68:62:6e:ca:f3:af:6c:11:
45:c4:28:13:2b:29:8d:df:30:d6:a6:1c:06:53:ef:ad:6e:d1:
57:5b:93:1e:78:aa:ef:ff:34:c4:0d:61:8f:34:74:ef:98:4d:
94:63:c0:5f:0b:68:37:20:6e:dc:b4:65:03:7e:b1:79:4e:42:
6e:1a:17:22:38:81:e4:d9:54:b3:9d:45:37:44:17:81:79:3e:
8a:f4:37:f7:e3:9a:26:c1:e3:ab:e3:8b:a9:d0:6d:7f:6f:62:
77:10:15:b4:71:79:9c:39:c6:38:ce:2a:b3:99:26:44:21:aa:
e9:9c:5d:de:8b:7a:b1:61:7a:e8:6f:11:c9:37:6e:cd:26:aa:
44:e0:60:c5:33:86:aa:45:59:de:91:2d:9b:fb:e6:e3:db:0f:
9e:64:fb:8b:99:be:8e:90:12:80:f4:37:fa:72:75:5c:fe:38:
d5:1e:54:01:20:f8:b7:80:e4:3d:4a:99:63:53:53:06:84:35:
e9:53:92:d2:5a:3c:61:d5:8c:ae:7f:82:75:80:1b:c8:14:ce:
fc:cd:8b:74:4b:b6:c1:29:e6:a2:d6:98:78:31:c5:73:d5:58:
38:fb:0e:13:17:f6:56:ca:50:30:49:51:c3:3e:94:9e:63:11:
8f:55:a3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:58 2025 by rpki-client