Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/GkB0eyZyzn-R9ZlWbtyXHlPGIjY.roa
File: GkB0eyZyzn-R9ZlWbtyXHlPGIjY.roa (raw, json)
Hash identifier: dsNqlIWra37RoDUNrYg2QHmMAp5T/Etc12sGjKIfLXk=
Subject key identifier: 1A:40:74:7B:26:72:CE:7F:91:F5:99:56:6E:DC:97:1E:53:C6:22:36
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1ADE
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/GkB0eyZyzn-R9ZlWbtyXHlPGIjY.roa
Signing time: Wed 01 May 2024 14:54:02 +0000
ROA not before: Wed 01 May 2024 14:54:02 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6878 (0x1ade)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 1 14:54:02 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1A40747B2672CE7F91F599566EDC971E53C62236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:cd:2a:6c:1b:bb:56:16:c5:12:13:32:4c:91:
8a:54:95:02:fa:d2:35:62:06:12:18:aa:5e:eb:31:
78:a6:f3:ce:74:64:ad:7c:91:e4:6b:db:34:fb:5c:
0c:7d:c5:09:f4:8a:79:fc:f4:bc:f7:78:5b:93:2d:
fd:56:1e:15:61:1d:ec:10:d1:de:96:6f:87:9e:78:
d1:47:b6:f8:9e:d5:cf:6e:b9:8e:35:c9:d8:9a:ae:
b9:32:31:cd:8d:50:74:80:a9:35:d3:7e:1f:3f:93:
82:ee:6e:04:b8:9c:11:e4:db:83:71:69:b9:2c:fe:
4a:99:88:56:b7:02:8c:e3:ac:af:ff:33:ba:a1:07:
8e:e1:95:f0:a7:a2:89:14:c5:47:83:49:fa:b2:c9:
4c:92:9d:05:d5:3c:97:f9:77:09:94:c5:93:a0:96:
07:aa:e9:bf:36:8a:2e:38:1f:16:ed:f8:79:0a:3d:
16:73:76:2d:e5:bd:7a:44:b4:20:4e:f3:50:b1:9d:
98:b8:db:5a:1b:5b:84:1a:9c:55:bd:37:26:2a:17:
d9:c6:a1:91:69:92:fd:80:ad:ae:6f:08:b8:44:3d:
4f:86:28:d0:4e:b5:9b:67:c0:b9:bf:f7:7c:00:3e:
00:d8:be:f3:21:7a:22:d9:b8:6f:f5:95:17:e5:8e:
8d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:40:74:7B:26:72:CE:7F:91:F5:99:56:6E:DC:97:1E:53:C6:22:36
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/GkB0eyZyzn-R9ZlWbtyXHlPGIjY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
73:de:9a:50:65:c8:b3:e9:a6:d8:c3:68:84:a3:02:e3:85:07:
d9:48:61:1a:81:cd:0e:ae:bc:91:83:1a:4d:f7:02:a8:b6:7e:
b6:9d:43:3b:d7:03:68:0f:84:3d:20:d2:ce:c2:4f:c6:72:2a:
b4:41:29:79:f9:1e:8d:95:1d:53:e1:8f:24:05:7d:b1:7e:33:
27:0a:1f:52:1d:6f:c9:50:2b:21:b2:d3:c5:d6:5f:34:c9:55:
3e:3c:aa:e9:e0:d0:f1:1e:d4:dc:04:bc:ff:d0:15:36:6e:ce:
e2:20:0c:74:66:ba:08:a0:4c:87:a3:21:56:13:9a:c1:af:62:
ca:5d:44:88:dc:fe:64:55:da:07:fc:07:d6:a8:fa:8e:f9:c7:
e9:44:ed:36:a2:0b:5f:77:62:1e:bb:53:a1:31:91:d2:fc:7b:
ff:90:e5:ae:77:6d:66:ae:16:db:cf:f7:b7:f0:22:4b:65:ee:
ba:88:8c:0c:29:f1:2b:c5:7a:ed:fa:d2:3e:38:99:a8:24:a2:
45:70:e5:38:2f:8f:3c:07:ca:96:53:84:31:88:98:59:fb:98:
cb:50:88:49:09:99:d1:50:92:3c:e9:4d:f1:30:31:eb:17:9c:
24:64:60:aa:60:82:00:91:80:c4:a4:db:6c:39:6b:cd:cd:25:
68:70:68:e7
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICGt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA1MDEx
NDU0MDJaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDFBNDA3NDdCMjY3MkNF
N0Y5MUY1OTk1NjZFREM5NzFFNTNDNjIyMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDnzSpsG7tWFsUSEzJMkYpUlQL60jViBhIYql7rMXim8850ZK18
keRr2zT7XAx9xQn0inn89Lz3eFuTLf1WHhVhHewQ0d6Wb4eeeNFHtvie1c9uuY41
ydiarrkyMc2NUHSAqTXTfh8/k4LubgS4nBHk24Nxabks/kqZiFa3AozjrK//M7qh
B47hlfCnookUxUeDSfqyyUySnQXVPJf5dwmUxZOglgeq6b82ii44Hxbt+HkKPRZz
di3lvXpEtCBO81CxnZi421obW4QanFW9NyYqF9nGoZFpkv2Ara5vCLhEPU+GKNBO
tZtnwLm/93wAPgDYvvMheiLZuG/1lRfljo1rAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUGkB0eyZyzn+R9ZlWbtyXHlPGIjYwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL0drQjBleVp5em4tUjla
bFdidHlYSGxQR0lqWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAc96aUGXIs+mm2MNohKMC44UH2UhhGoHN
Dq68kYMaTfcCqLZ+tp1DO9cDaA+EPSDSzsJPxnIqtEEpefkejZUdU+GPJAV9sX4z
JwofUh1vyVArIbLTxdZfNMlVPjyq6eDQ8R7U3AS8/9AVNm7O4iAMdGa6CKBMh6Mh
VhOawa9iyl1EiNz+ZFXaB/wH1qj6jvnH6UTtNqILX3diHrtToTGR0vx7/5Dlrndt
Zq4W28/3t/AiS2XuuoiMDCnxK8V67frSPjiZqCSiRXDlOC+PPAfKllOEMYiYWfuY
y1CISQmZ0VCSPOlN8TAx6xecJGRgqmCCAJGAxKTbbDlrzc0laHBo5w==
-----END CERTIFICATE-----
Generated at Wed May 1 20:19:07 2024 by rpki-client on console.sobornost.net