Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/cDBAGauCYw5UDll2g38SzOI4YRY.roa
File: cDBAGauCYw5UDll2g38SzOI4YRY.roa (raw, json)
Hash identifier: S/4IpbCR4qaKbZM5QjNeKpegGfphDB9213qU8Hu7gMs=
Subject key identifier: 70:30:40:19:AB:82:63:0E:54:0E:59:76:83:7F:12:CC:E2:38:61:16
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0EC8
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/cDBAGauCYw5UDll2g38SzOI4YRY.roa
Signing time: Sat 30 Mar 2024 09:22:31 +0000
ROA not before: Sat 30 Mar 2024 09:22:31 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3784 (0xec8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 30 09:22:31 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=70304019AB82630E540E5976837F12CCE2386116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:af:c7:f9:1b:e8:1f:4f:54:94:78:ea:4d:c2:
15:cc:66:29:91:21:91:dc:2c:42:64:f8:5a:78:93:
38:8c:95:65:f9:3f:56:c4:b5:63:c2:0d:5f:34:02:
cd:cf:1b:2c:80:b7:59:b4:d2:3f:18:78:0b:b1:58:
c3:d0:dd:ae:33:2b:44:c5:d1:8c:27:37:fe:d2:0c:
79:f2:0c:5f:4a:b3:73:59:ae:37:dd:2c:30:24:1a:
86:dc:84:a7:88:c0:87:e7:a1:97:0d:f9:45:bb:c0:
b5:74:2d:5c:b3:ed:dc:08:5e:ff:9c:8a:12:6d:c3:
47:af:bb:f8:3b:30:89:b1:b4:ff:e5:0b:d7:92:81:
46:fc:f2:28:3a:78:4b:b9:38:d5:1b:eb:0f:70:13:
d8:ee:20:7c:a5:1a:1e:d0:48:7c:37:cd:5f:60:1b:
62:ef:49:30:0e:97:67:25:51:ec:6b:79:bd:27:41:
50:bd:bb:2d:ab:ba:37:98:b5:30:44:5f:25:c7:cb:
c7:6b:e2:9c:f9:62:0c:0c:0f:93:70:31:c8:c2:bd:
d8:e9:77:0a:9d:46:9d:4f:bd:63:14:e1:be:d0:c8:
b8:d4:ad:85:cc:d1:06:ad:96:71:6b:44:85:d6:00:
26:e6:65:75:79:ac:86:0f:32:e3:99:7c:b4:20:26:
bc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:30:40:19:AB:82:63:0E:54:0E:59:76:83:7F:12:CC:E2:38:61:16
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/cDBAGauCYw5UDll2g38SzOI4YRY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
57:62:dd:29:1c:75:e7:9d:5f:d5:16:2f:41:74:be:27:19:76:
28:b0:cd:6e:4c:18:25:cc:89:56:a6:f0:6f:15:7d:0e:8a:f0:
91:2e:95:ce:12:47:59:ea:ed:c8:eb:bc:80:7c:e1:30:e8:83:
0f:d3:f1:42:64:24:cb:d2:42:a6:14:0c:fe:0a:0d:65:22:16:
ec:a2:10:30:b7:6f:54:ba:aa:0c:ed:16:70:7c:a6:21:b1:17:
bd:18:02:46:68:b8:37:ad:24:18:32:22:24:d2:e7:10:5e:c9:
46:a3:ab:07:72:49:d2:aa:90:06:12:d8:73:f1:f7:55:34:d0:
dd:eb:7a:62:81:a9:29:ea:05:02:03:87:3b:15:59:db:77:56:
83:52:88:9b:c9:ac:fa:ed:de:37:d9:6b:f8:67:8c:c3:bc:17:
dc:64:03:5c:c5:6b:48:69:fc:5f:ef:59:b7:85:45:aa:56:05:
42:22:6f:67:7d:6b:07:3b:0c:3d:6f:62:35:be:0c:6a:42:04:
8e:c7:83:d5:2d:53:85:d4:7c:ac:89:8a:c0:c8:03:9f:94:2c:
dc:c5:bc:02:11:40:d2:27:c3:81:53:a2:ef:f9:d1:d6:7c:ed:
51:cc:07:23:d1:72:15:88:bf:a6:d8:ba:79:cd:dc:9d:03:34:
28:4f:ec:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:34:36 2025 by rpki-client