Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/op__oniGYC7xo7Ithabtyk9u21Y.roa
File: op__oniGYC7xo7Ithabtyk9u21Y.roa (raw, json)
Hash identifier: tsFQYMOT8QydwfG53y2hZplJuetUe6NM/D1otpKPKTo=
Subject key identifier: A2:9F:FF:A2:78:86:60:2E:F1:A3:B2:2D:85:A6:ED:CA:4F:6E:DB:56
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1ACA
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/op__oniGYC7xo7Ithabtyk9u21Y.roa
Signing time: Wed 01 May 2024 09:53:59 +0000
ROA not before: Wed 01 May 2024 09:53:59 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6858 (0x1aca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 1 09:53:59 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=A29FFFA27886602EF1A3B22D85A6EDCA4F6EDB56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8a:8b:fb:d0:db:c3:8b:55:34:14:f9:66:90:
bb:74:a5:dc:83:28:56:4a:5e:6c:da:ab:e7:6a:4c:
e0:0b:16:3a:f2:6a:6a:27:cc:33:5e:d4:37:f5:a6:
e0:2b:bc:7d:a0:44:21:d8:0c:61:51:a8:40:2a:bd:
76:0d:cf:ef:4a:5f:d2:ba:3f:aa:2b:44:2a:1e:63:
20:71:b4:52:8c:22:1e:48:e1:1a:d4:74:33:3b:ec:
91:b9:dd:43:c8:7a:a0:7b:c0:d4:f9:56:5d:98:90:
72:93:89:39:de:81:78:0d:c9:5b:27:56:ad:55:a1:
54:08:dd:55:b7:c8:5a:45:a0:4b:2d:a1:ea:3d:a9:
a5:56:9f:78:ba:81:f4:76:91:9e:11:d7:9b:74:f5:
88:6c:79:18:b9:62:c5:cc:78:08:f3:5e:c2:38:23:
63:04:fa:98:95:ba:dc:3b:8e:16:b8:26:44:b6:45:
74:7a:d0:54:02:03:fc:e2:0d:1d:24:6a:87:3c:9a:
5f:ae:b3:30:5e:77:bd:37:27:d6:02:77:03:14:34:
1f:00:0a:e6:17:0f:03:66:39:82:09:d9:e1:66:c1:
8a:fa:b6:5c:51:b0:10:53:8c:ac:9d:cb:eb:21:25:
1c:94:ac:38:85:b8:fa:d4:2f:d4:6f:58:0b:2a:a0:
02:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9F:FF:A2:78:86:60:2E:F1:A3:B2:2D:85:A6:ED:CA:4F:6E:DB:56
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/op__oniGYC7xo7Ithabtyk9u21Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8d:79:03:dc:5f:25:ec:a5:3c:28:af:89:12:9a:c2:fe:4f:33:
b2:8f:d9:69:ea:82:69:6d:d5:3b:a7:d6:c8:ba:81:71:42:2f:
27:60:c6:f5:26:a7:c3:97:46:ab:7c:d4:fd:e7:df:d5:6d:89:
cd:1a:50:4b:81:6b:5d:d3:95:2f:f9:6a:00:48:3a:93:7f:c3:
29:6e:84:e9:93:10:ef:0a:ab:5a:59:4f:18:54:2f:a5:6d:b0:
4d:f8:65:d2:25:d7:fc:aa:29:1b:80:e9:13:ad:14:34:4c:cc:
38:45:1a:2c:07:e4:6e:01:75:c7:c7:1a:49:65:8e:98:da:5d:
f5:3d:c2:07:4c:b8:4e:f9:6d:cb:ec:eb:cf:6b:ab:33:ee:14:
f1:ef:19:b9:ff:b4:fd:cd:8a:d9:7c:ec:f2:2a:bb:82:1e:49:
3d:e3:7b:8c:05:e8:84:38:35:e1:35:fc:8f:12:60:af:32:48:
a5:ef:27:6f:a4:dc:cd:8c:61:35:4b:c6:73:b7:a8:82:ed:90:
46:62:7c:fd:34:5f:58:cc:fb:b4:c1:c5:90:42:1f:2b:20:03:
d1:68:f9:af:02:ec:2b:e3:2c:22:9d:10:f8:de:6d:80:59:79:
d4:eb:ae:03:bb:34:1b:c0:ec:d6:c5:66:ae:8c:ac:1c:ec:0e:
e2:50:1e:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 15:29:51 2024 by rpki-client on console-fra.rpki-client.org