Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/kwuIg4hYGAcC24QlWidZpAciquQ.roa
File: kwuIg4hYGAcC24QlWidZpAciquQ.roa (raw, json)
Hash identifier: FHlGWoCoJN21O1HDgnFvIjaOLteM7pu/xg4kWemmHqs=
Subject key identifier: 93:0B:88:83:88:58:18:07:02:DB:84:25:5A:27:59:A4:07:22:AA:E4
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1C2C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/kwuIg4hYGAcC24QlWidZpAciquQ.roa
Signing time: Sun 05 May 2024 02:24:14 +0000
ROA not before: Sun 05 May 2024 02:24:14 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7212 (0x1c2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 5 02:24:14 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=930B88838858180702DB84255A2759A40722AAE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:03:01:ba:36:76:a6:a7:09:f1:67:8c:26:cd:
3a:ef:f1:bd:8e:41:31:23:e6:98:ef:de:0f:89:66:
e2:a9:ca:45:af:87:99:28:08:1e:2b:57:bb:53:64:
7b:f3:53:37:00:96:fa:9a:37:2d:55:ee:07:5b:8a:
d0:08:38:54:a7:33:ed:c0:8d:4a:51:ce:3a:4b:bb:
f7:86:f5:53:e2:9e:9d:a8:9a:7b:95:f5:44:a4:79:
c8:18:33:d5:e9:20:22:a3:3e:58:41:39:15:b9:b5:
16:f8:b9:12:52:de:8c:b8:9b:f9:73:9a:ec:e9:2c:
39:66:0a:aa:65:80:00:00:c0:65:95:9c:36:14:a6:
8c:cf:67:ef:2d:4c:c6:f1:cb:cf:90:a8:e5:c9:1f:
cc:6e:af:77:51:03:d1:d3:ab:6b:3c:3b:ab:db:9e:
6d:e1:3a:0e:72:66:76:bd:18:e9:23:32:bb:94:36:
78:98:45:5e:30:4a:28:74:e5:de:d6:f4:be:f0:59:
7a:32:09:f8:06:95:65:50:d3:06:fc:fb:dd:21:2a:
fb:d4:cb:7a:da:46:24:6e:ae:fd:d9:5c:9a:bb:62:
7a:1b:25:2e:b7:83:3d:0d:df:c1:64:bb:46:74:b9:
00:34:7d:03:df:7e:1d:36:56:b6:45:71:b3:a9:21:
af:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0B:88:83:88:58:18:07:02:DB:84:25:5A:27:59:A4:07:22:AA:E4
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/kwuIg4hYGAcC24QlWidZpAciquQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:03:61:74:e2:2e:da:91:fd:05:ad:3c:22:b5:41:7c:1e:11:
b2:2f:2f:d7:59:41:21:f5:8a:32:f7:78:eb:7a:b4:d5:e8:be:
4e:2f:7d:64:52:71:d2:d5:ea:a1:3d:5d:5b:a0:7d:a8:aa:d0:
8f:d8:a3:c3:76:5b:06:f2:22:16:30:ef:f2:96:23:ae:48:60:
03:0f:52:16:45:97:38:44:7e:0a:52:60:47:ab:8d:ad:ed:b0:
70:0f:50:47:67:11:d7:20:78:61:c8:06:28:7f:e5:1f:d6:33:
ec:47:b2:f7:87:2a:22:76:be:3d:17:27:40:e8:df:e2:65:13:
1b:4d:c1:16:49:11:d8:e7:48:f9:9d:6d:08:18:8b:0e:3e:a4:
0d:96:52:46:32:a4:2b:89:5f:9d:29:49:bc:5b:97:3b:b7:83:
30:cd:9b:48:a9:e6:40:87:b3:68:4c:62:59:ed:d1:92:a6:c9:
9d:8c:95:13:31:0f:34:76:14:a7:51:09:7f:fd:0e:eb:e2:32:
da:fc:0c:a9:1e:3c:ec:f6:6f:42:b5:66:e6:c7:24:71:75:6f:
fc:e0:49:09:17:aa:14:fd:3c:fa:a9:4d:86:4b:54:35:fd:31:
ca:42:68:64:1b:6d:4a:a9:b0:9b:37:a9:5b:f5:06:94:9d:64:
4b:3c:51:9b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICHCwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA1MDUw
MjI0MTRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDkzMEI4ODgzODg1ODE4
MDcwMkRCODQyNTVBMjc1OUE0MDcyMkFBRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNAwG6NnampwnxZ4wmzTrv8b2OQTEj5pjv3g+JZuKpykWvh5ko
CB4rV7tTZHvzUzcAlvqaNy1V7gdbitAIOFSnM+3AjUpRzjpLu/eG9VPinp2omnuV
9USkecgYM9XpICKjPlhBORW5tRb4uRJS3oy4m/lzmuzpLDlmCqplgAAAwGWVnDYU
pozPZ+8tTMbxy8+QqOXJH8xur3dRA9HTq2s8O6vbnm3hOg5yZna9GOkjMruUNniY
RV4wSih05d7W9L7wWXoyCfgGlWVQ0wb8+90hKvvUy3raRiRurv3ZXJq7YnobJS63
gz0N38Fku0Z0uQA0fQPffh02VrZFcbOpIa+TAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUkwuIg4hYGAcC24QlWidZpAciquQwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL2t3dUlnNGhZR0FjQzI0
UWxXaWRacEFjaXF1US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAUgNhdOIu2pH9Ba08IrVBfB4Rsi8v11lB
IfWKMvd463q01ei+Ti99ZFJx0tXqoT1dW6B9qKrQj9ijw3ZbBvIiFjDv8pYjrkhg
Aw9SFkWXOER+ClJgR6uNre2wcA9QR2cR1yB4YcgGKH/lH9Yz7Eey94cqIna+PRcn
QOjf4mUTG03BFkkR2OdI+Z1tCBiLDj6kDZZSRjKkK4lfnSlJvFuXO7eDMM2bSKnm
QIezaExiWe3RkqbJnYyVEzEPNHYUp1EJf/0O6+Iy2vwMqR487PZvQrVm5sckcXVv
/OBJCReqFP08+qlNhktUNf0xykJoZBttSqmwmzepW/UGlJ1kSzxRmw==
-----END CERTIFICATE-----
Generated at Wed Jun 4 01:27:36 2025 by rpki-client