Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/CYJ6wam_aM_517-4GilfcP2QWRo.roa
File: CYJ6wam_aM_517-4GilfcP2QWRo.roa (raw, json)
Hash identifier: RuMnkY+jZAGrudnVeXsDBvRQ5t1u1q1uedcvnnHa56s=
Subject key identifier: 09:82:7A:C1:A9:BF:68:CF:F9:D7:BF:B8:1A:29:5F:70:FD:90:59:1A
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 138C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/CYJ6wam_aM_517-4GilfcP2QWRo.roa
Signing time: Fri 12 Apr 2024 02:23:13 +0000
ROA not before: Fri 12 Apr 2024 02:23:13 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5004 (0x138c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 12 02:23:13 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=09827AC1A9BF68CFF9D7BFB81A295F70FD90591A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:93:5b:2f:d8:75:5f:46:d3:76:15:ac:34:14:
ef:6b:28:6a:bc:5a:2b:38:c3:55:f3:07:5c:07:18:
42:47:2f:a4:d0:a8:ab:c4:5b:60:53:95:d9:76:9c:
7d:a7:2f:a2:e6:50:59:78:3c:ca:c0:28:95:29:8b:
1a:19:c3:52:0c:65:78:b7:8c:cd:4a:60:2c:b0:7f:
d5:7e:a3:38:5e:84:ab:37:15:98:6e:98:69:30:3e:
6d:a3:11:0e:3f:8f:20:47:90:00:31:a5:f8:dd:4b:
23:62:89:e7:4a:86:7d:e9:e2:11:68:4e:01:cd:7f:
da:29:20:69:86:a4:a3:01:0f:15:0a:e3:e9:22:b9:
d1:15:15:f1:1f:0e:d0:d9:b0:cc:8a:66:65:d1:1d:
2a:b9:64:f1:eb:ee:80:5c:a8:ab:f8:64:e7:04:b8:
53:67:06:c2:08:6a:0c:59:5b:02:65:0d:c1:59:b0:
34:26:51:98:d3:08:44:33:10:17:3e:e7:91:62:e0:
dc:3e:78:aa:86:c9:f1:2e:71:9c:e1:a0:26:af:62:
25:a5:3b:98:a2:c2:c6:7a:dd:b4:55:a8:7d:74:e9:
a5:52:e3:3d:ca:f4:23:dd:f1:43:92:75:fd:6c:55:
4b:46:7f:88:fa:c2:4d:1c:9e:ee:e9:39:41:47:3e:
c3:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:82:7A:C1:A9:BF:68:CF:F9:D7:BF:B8:1A:29:5F:70:FD:90:59:1A
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/CYJ6wam_aM_517-4GilfcP2QWRo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
02:4b:6f:63:5d:88:a0:1c:8a:4b:fa:c9:55:1f:51:82:fc:80:
62:91:a5:3d:0c:2a:ae:f9:91:c1:47:96:0b:2b:84:2c:95:00:
bd:84:86:96:7c:e6:0a:5d:5d:9a:74:6b:3f:95:d8:aa:91:09:
1d:e9:2a:d4:88:3d:a2:b9:43:20:fa:aa:eb:e3:63:12:0d:2d:
4c:7e:72:c6:12:2c:d5:be:bb:d2:27:16:07:ce:c4:c4:eb:2f:
c9:8b:39:01:a0:5a:ab:1e:68:aa:6c:73:a5:e0:08:10:2b:57:
f4:e7:6f:94:64:b4:67:75:fb:cc:75:78:3e:69:c9:29:17:ad:
bf:87:60:32:4f:d2:c0:19:aa:01:2c:68:32:ea:69:b0:ac:03:
9d:20:6a:89:08:e9:7f:0e:57:5e:2c:bc:67:e6:47:76:a7:e8:
ed:ba:50:06:c3:8c:7f:3c:14:56:17:71:f8:a1:69:d9:98:b4:
12:5e:5c:6f:00:34:af:04:15:ad:cc:bc:82:48:90:2d:4d:7e:
48:a1:26:d6:e6:e9:43:bd:8c:b3:d9:d7:ba:37:0f:1d:45:7a:
67:24:71:b1:c9:61:61:9b:14:1e:48:f5:f8:8e:f7:f2:2e:8e:
fb:ec:be:d0:f4:11:ed:a2:c7:00:6d:09:3a:87:b1:0d:de:98:
13:11:1d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 09:24:14 2024 by rpki-client on console.sobornost.net