Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/MUnBqa-gXKO790O6l0PX1ghsMb4.roa
File: MUnBqa-gXKO790O6l0PX1ghsMb4.roa (raw, json)
Hash identifier: ksz2M1sjgMsizSq326Yx8iIp6hn+nu2ugMF8H5b/L9E=
Subject key identifier: 31:49:C1:A9:AF:A0:5C:A3:BB:F7:43:BA:97:43:D7:D6:08:6C:31:BE
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 13E0
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/MUnBqa-gXKO790O6l0PX1ghsMb4.roa
Signing time: Fri 12 Apr 2024 23:23:15 +0000
ROA not before: Fri 12 Apr 2024 23:23:15 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5088 (0x13e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 12 23:23:15 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=3149C1A9AFA05CA3BBF743BA9743D7D6086C31BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:86:54:75:52:c3:23:de:c6:5e:b2:a7:93:a0:
e6:6a:10:87:2c:20:0c:e5:1b:db:7c:11:89:01:91:
6b:04:6b:bb:64:65:52:ca:1c:e1:c8:9c:8e:c7:d5:
eb:9e:54:6e:e6:e8:0f:66:07:9e:19:1a:7d:da:19:
73:d4:15:d3:5e:6d:f5:88:4e:58:2f:bc:d7:95:62:
bf:2c:d3:11:0d:1d:fa:49:3f:3a:12:9d:c4:42:bb:
c3:88:d8:c2:32:d3:dd:2d:30:90:40:cb:4f:46:af:
4e:4c:63:64:54:17:bd:84:9a:30:bc:a0:6f:cb:51:
0b:3b:d3:c2:d9:91:4e:2f:38:9d:cd:1c:e2:50:be:
30:11:3f:02:a1:a8:3e:b8:6c:99:55:26:f8:24:ab:
0d:f3:f6:3a:5b:22:67:8f:a4:d3:d3:f6:2a:cf:7a:
14:50:fb:96:42:a5:69:3c:1d:61:18:d4:81:0a:71:
0d:ee:11:d9:00:b1:3b:90:05:ff:cd:9c:fb:df:ec:
5d:d1:1b:0a:8b:fb:ce:dd:d7:87:4b:40:8b:54:d6:
d3:d7:0f:88:0d:bc:5e:8e:ed:4f:5b:38:0c:0d:ae:
cc:5b:7c:f1:0f:db:f2:bf:23:23:69:e6:18:14:64:
5a:c0:89:5b:8e:8a:9c:71:9a:77:2d:6d:e9:11:46:
f4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:49:C1:A9:AF:A0:5C:A3:BB:F7:43:BA:97:43:D7:D6:08:6C:31:BE
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/MUnBqa-gXKO790O6l0PX1ghsMb4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
76:8b:81:64:c8:c2:7b:2e:30:c4:33:e3:7c:e2:70:53:d0:dd:
24:5a:ce:02:f5:d2:ab:e4:b7:1f:66:13:e9:c1:e5:b9:98:09:
0a:e2:3d:3d:3a:87:4b:b5:4b:b4:92:7a:7a:90:74:59:c3:15:
5b:6e:b7:f0:dd:e8:c4:91:e4:e5:d9:0f:3f:a5:31:3f:48:c6:
8d:43:ee:c6:b5:ca:28:14:46:54:17:af:44:3b:7e:2d:c5:59:
ec:4e:b3:e0:26:bc:5d:fd:88:c4:7b:a6:73:4d:86:95:a7:96:
6d:f4:c2:e4:0e:28:fc:cd:c7:7f:f7:66:50:b0:d1:26:c5:9d:
9c:04:f9:d9:fb:fa:4e:de:1c:27:6d:c9:ec:f6:a4:6d:a8:8a:
2a:2a:f7:d6:df:20:99:88:40:dc:91:65:c0:0f:22:fe:d5:93:
5f:31:69:26:0b:4c:c0:f9:30:dd:3f:81:1c:49:67:38:28:4d:
4f:0b:b9:55:46:52:d9:82:06:ae:f0:a3:14:80:5a:b2:2f:23:
00:10:2c:fb:29:cd:c3:db:39:cd:65:2b:5d:82:73:9a:c9:69:
ae:1e:e8:58:46:8d:b4:3b:46:3e:3b:c0:2d:6f:eb:5f:61:5c:
78:66:7d:64:38:42:de:82:26:85:fe:0f:67:98:35:35:3b:88:
d5:d0:f0:3b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICE+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MTIy
MzIzMTVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDMxNDlDMUE5QUZBMDVD
QTNCQkY3NDNCQTk3NDNEN0Q2MDg2QzMxQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEhlR1UsMj3sZesqeToOZqEIcsIAzlG9t8EYkBkWsEa7tkZVLK
HOHInI7H1eueVG7m6A9mB54ZGn3aGXPUFdNebfWITlgvvNeVYr8s0xENHfpJPzoS
ncRCu8OI2MIy090tMJBAy09Gr05MY2RUF72EmjC8oG/LUQs708LZkU4vOJ3NHOJQ
vjARPwKhqD64bJlVJvgkqw3z9jpbImePpNPT9irPehRQ+5ZCpWk8HWEY1IEKcQ3u
EdkAsTuQBf/NnPvf7F3RGwqL+87d14dLQItU1tPXD4gNvF6O7U9bOAwNrsxbfPEP
2/K/IyNp5hgUZFrAiVuOipxxmnctbekRRvRXAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUMUnBqa+gXKO790O6l0PX1ghsMb4wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL01VbkJxYS1nWEtPNzkw
TzZsMFBYMWdoc01iNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAdouBZMjCey4wxDPjfOJwU9DdJFrOAvXS
q+S3H2YT6cHluZgJCuI9PTqHS7VLtJJ6epB0WcMVW2638N3oxJHk5dkPP6UxP0jG
jUPuxrXKKBRGVBevRDt+LcVZ7E6z4Ca8Xf2IxHumc02GlaeWbfTC5A4o/M3Hf/dm
ULDRJsWdnAT52fv6Tt4cJ23J7PakbaiKKir31t8gmYhA3JFlwA8i/tWTXzFpJgtM
wPkw3T+BHElnOChNTwu5VUZS2YIGrvCjFIBasi8jABAs+ynNw9s5zWUrXYJzmslp
rh7oWEaNtDtGPjvALW/rX2FceGZ9ZDhC3oImhf4PZ5g1NTuI1dDwOw==
-----END CERTIFICATE-----
Generated at Sat Apr 13 06:50:21 2024 by rpki-client on console.sobornost.net