Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/ibJT0umzt9zVJPOpNhMXPCKYgzs.roa
File: ibJT0umzt9zVJPOpNhMXPCKYgzs.roa (raw, json)
Hash identifier: qtozeu/wvNHGvo8o3CLfpCMcXJR4ootWF7UH89DUqAs=
Subject key identifier: 89:B2:53:D2:E9:B3:B7:DC:D5:24:F3:A9:36:13:17:3C:22:98:83:3B
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0F74
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ibJT0umzt9zVJPOpNhMXPCKYgzs.roa
Signing time: Mon 01 Apr 2024 04:22:44 +0000
ROA not before: Mon 01 Apr 2024 04:22:44 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3956 (0xf74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 1 04:22:44 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=89B253D2E9B3B7DCD524F3A93613173C2298833B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a7:24:65:96:16:01:cc:43:26:c0:86:03:ab:
3b:ed:6a:dc:51:81:eb:2e:8c:18:4b:0f:ba:27:b6:
37:31:16:3d:93:64:be:71:c7:8e:1f:79:02:26:78:
ab:a8:fa:ef:65:5a:f1:5c:b0:79:37:2e:87:c4:e1:
d4:76:55:8e:03:e6:74:74:6e:a1:ee:2e:80:6b:67:
55:1e:1c:4a:66:4a:97:bc:7a:e3:41:9a:a7:74:e4:
c6:f1:b9:30:57:1c:e1:01:3c:59:f2:fa:df:d9:14:
8b:b1:5a:57:33:26:0f:09:2a:85:2a:5b:c3:a4:58:
c0:ed:14:e9:6f:65:81:46:2d:bd:ba:6e:de:fd:7e:
33:7d:12:2b:b1:56:3f:8f:57:2d:ca:bf:94:77:97:
82:94:e8:e7:b2:d2:04:ee:38:3e:14:9b:10:a3:d4:
84:21:d6:cd:46:de:a2:5f:9b:a0:27:af:1f:b7:0b:
f4:27:ba:8d:62:ab:ba:98:d5:bd:6e:33:ae:f3:63:
22:b3:20:13:68:44:d0:8d:4c:d2:7e:3d:86:1c:96:
38:1b:ed:28:2f:d6:99:d6:63:3a:27:5c:a7:f6:f1:
6f:4c:be:5e:95:b8:3d:1a:46:c4:49:90:21:60:cb:
db:45:7d:03:31:aa:13:9e:b0:ed:32:9a:73:8a:e0:
9a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B2:53:D2:E9:B3:B7:DC:D5:24:F3:A9:36:13:17:3C:22:98:83:3B
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ibJT0umzt9zVJPOpNhMXPCKYgzs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d2:5e:49:e4:3d:9a:1d:4c:ba:fe:f8:f2:43:7c:4c:0a:95:70:
bb:51:d0:f8:35:e5:14:90:09:17:b6:1d:bb:d7:39:4f:e8:7f:
dd:8a:7e:74:04:80:d4:b3:a3:ed:a6:ee:07:f5:4e:88:84:22:
33:6e:a9:ec:15:58:e6:87:00:61:b2:08:4e:84:49:37:bc:46:
e4:2a:97:2e:3a:da:6f:51:1f:91:00:7b:21:ee:54:a4:10:05:
07:38:87:34:8d:0c:4c:fb:c9:9b:5a:a7:f5:63:cf:8f:03:63:
60:e1:61:c2:ee:a6:88:26:b6:bf:42:4d:c1:62:9d:72:0d:f4:
9b:e4:46:22:05:93:2b:0b:9f:be:17:b6:32:af:ca:92:86:a2:
0c:a9:d3:6a:41:1f:d4:4d:54:da:a5:ad:09:35:55:85:ea:65:
31:76:84:7d:5c:8e:44:1a:7c:ab:3c:7a:52:8f:4b:cc:f4:eb:
e9:f3:fb:fb:bd:8a:14:fd:a8:2d:a5:42:f7:cc:30:41:ab:3d:
24:94:1b:d8:30:82:73:ff:47:ba:75:e8:9a:24:3b:f1:3c:0c:
12:08:21:9c:d6:f6:1e:60:ef:9b:3c:92:f3:79:b6:b0:24:92:
84:6a:ec:f3:77:22:6a:c9:3f:8c:98:b8:3f:51:20:f1:d8:79:
6c:37:2b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:48:25 2025 by rpki-client