Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/ivSJf0WOLKlo-Eqg9K7E-Lmf6J8.roa
File: ivSJf0WOLKlo-Eqg9K7E-Lmf6J8.roa (raw, json)
Hash identifier: 40ss6OlmSFcxqq2gTCAl+FetHxX4gdG//JocpLHkoEk=
Subject key identifier: 8A:F4:89:7F:45:8E:2C:A9:68:F8:4A:A0:F4:AE:C4:F8:B9:9F:E8:9F
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 121A
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ivSJf0WOLKlo-Eqg9K7E-Lmf6J8.roa
Signing time: Mon 08 Apr 2024 05:52:56 +0000
ROA not before: Mon 08 Apr 2024 05:52:56 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4634 (0x121a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 8 05:52:56 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=8AF4897F458E2CA968F84AA0F4AEC4F8B99FE89F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:95:61:3b:5e:ed:ce:68:d7:4f:d4:4c:d1:
95:ae:2c:37:11:19:fa:01:26:87:2e:d5:1c:94:47:
53:7d:81:70:81:f6:35:c6:8d:b7:57:79:a0:00:59:
e0:21:62:52:af:df:80:c3:f7:23:7d:e7:bb:4b:8e:
59:d6:d0:2d:4a:24:4b:e3:46:26:8e:b2:a8:45:4f:
44:5c:3e:fa:ba:ab:ef:70:58:b5:78:84:7b:46:10:
ad:4d:0a:ad:c4:6a:60:91:3c:a0:61:98:6a:d4:4e:
8d:e7:16:e1:c4:73:c9:6f:80:1e:60:bb:b6:d1:78:
f7:b4:27:16:19:b4:06:ef:df:ad:3a:f8:8b:2f:52:
96:56:a7:42:6a:25:f2:06:60:47:27:19:bb:e5:ee:
cd:69:a4:0d:5f:09:6d:e6:08:9b:bf:01:14:e3:ea:
cc:56:18:54:e0:6d:bc:56:3e:e4:15:82:43:9b:34:
44:4d:91:bb:72:ed:c3:70:4d:6d:c0:36:41:69:f6:
f7:7a:6e:bc:f5:68:b1:4f:da:0f:7d:04:7e:29:32:
d3:b4:57:99:01:ce:61:7d:20:0a:d4:24:4f:9e:00:
06:36:37:e1:06:19:63:20:a9:7c:fa:e5:9a:58:0f:
a3:6e:4c:ce:a9:14:ac:06:3d:82:f7:82:69:b7:32:
60:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F4:89:7F:45:8E:2C:A9:68:F8:4A:A0:F4:AE:C4:F8:B9:9F:E8:9F
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ivSJf0WOLKlo-Eqg9K7E-Lmf6J8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
69:27:58:47:6d:62:30:61:db:37:57:80:a1:0b:82:27:75:88:
1b:48:59:fa:0b:3b:2e:0d:81:a8:b2:db:f1:c2:2e:f5:78:a7:
6f:a4:4a:2f:ec:f6:99:9a:6c:ff:39:46:f7:5b:0d:66:63:80:
0d:55:12:dc:8c:5a:a1:fb:bc:f6:5e:70:11:8f:31:f1:f4:cb:
ab:bc:bf:97:32:91:6e:41:a6:44:01:6d:72:3e:9d:40:3f:ef:
f3:46:37:bd:ab:50:32:bd:a8:af:5c:24:64:8c:83:06:30:e1:
12:f1:94:ae:6f:d2:9d:56:4f:f9:f9:e0:3d:93:75:9c:29:5e:
06:a5:d3:d3:21:ce:ad:df:d4:c1:34:cf:d5:78:48:a8:b8:56:
c5:2c:8d:79:8e:67:f4:c8:4d:c6:74:c7:78:c0:97:64:ec:9f:
a4:6c:99:a7:99:43:c5:51:fe:cc:50:bb:00:dd:c2:a5:99:b1:
56:23:11:a9:85:8d:a7:5f:d9:ad:47:e8:fa:07:cd:c8:6d:66:
61:5f:ac:7f:22:7a:36:f6:68:01:68:e8:ae:e4:2b:6d:a7:25:
e6:4f:63:1f:6c:a8:74:eb:80:14:1a:61:51:06:17:48:44:6e:
77:88:53:35:c0:4a:65:e9:38:61:f3:88:d8:87:a9:83:07:c3:
05:e8:e5:55
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEhowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MDgw
NTUyNTZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDhBRjQ4OTdGNDU4RTJD
QTk2OEY4NEFBMEY0QUVDNEY4Qjk5RkU4OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9mZVhO17tzmjXT9RM0ZWuLDcRGfoBJocu1RyUR1N9gXCB9jXG
jbdXeaAAWeAhYlKv34DD9yN957tLjlnW0C1KJEvjRiaOsqhFT0RcPvq6q+9wWLV4
hHtGEK1NCq3EamCRPKBhmGrUTo3nFuHEc8lvgB5gu7bRePe0JxYZtAbv3606+Isv
UpZWp0JqJfIGYEcnGbvl7s1ppA1fCW3mCJu/ARTj6sxWGFTgbbxWPuQVgkObNERN
kbty7cNwTW3ANkFp9vd6brz1aLFP2g99BH4pMtO0V5kBzmF9IArUJE+eAAY2N+EG
GWMgqXz65ZpYD6NuTM6pFKwGPYL3gmm3MmB1AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUivSJf0WOLKlo+Eqg9K7E+Lmf6J8wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL2l2U0pmMFdPTEtsby1F
cWc5SzdFLUxtZjZKOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAaSdYR21iMGHbN1eAoQuCJ3WIG0hZ+gs7
Lg2BqLLb8cIu9Xinb6RKL+z2mZps/zlG91sNZmOADVUS3Ixaofu89l5wEY8x8fTL
q7y/lzKRbkGmRAFtcj6dQD/v80Y3vatQMr2or1wkZIyDBjDhEvGUrm/SnVZP+fng
PZN1nCleBqXT0yHOrd/UwTTP1XhIqLhWxSyNeY5n9MhNxnTHeMCXZOyfpGyZp5lD
xVH+zFC7AN3CpZmxViMRqYWNp1/ZrUfo+gfNyG1mYV+sfyJ6NvZoAWjoruQrbacl
5k9jH2yodOuAFBphUQYXSERud4hTNcBKZek4YfOI2IepgwfDBejlVQ==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:46:19 2025 by rpki-client