Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/ZGfx9dKCN7WIMokPQ4Hgv8i224Y.roa
File: ZGfx9dKCN7WIMokPQ4Hgv8i224Y.roa (raw, json)
Hash identifier: 7XbtGBdsaE3vvE7cdG7/d2M8YGQswKi8zVcQucn43os=
Subject key identifier: 64:67:F1:F5:D2:82:37:B5:88:32:89:0F:43:81:E0:BF:C8:B6:DB:86
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1170
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ZGfx9dKCN7WIMokPQ4Hgv8i224Y.roa
Signing time: Sat 06 Apr 2024 11:22:50 +0000
ROA not before: Sat 06 Apr 2024 11:22:50 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4464 (0x1170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 6 11:22:50 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6467F1F5D28237B58832890F4381E0BFC8B6DB86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:40:0f:8a:d4:51:7c:a0:56:97:8c:b9:3d:81:
38:d4:8c:dd:12:37:07:f4:e9:12:b7:89:70:bf:c1:
5c:3c:c6:d5:6e:e8:96:ee:78:78:e5:1e:66:8b:55:
1d:17:cb:31:a3:37:57:03:87:38:b9:9c:77:70:83:
d1:29:1b:34:bc:04:fe:ad:b3:2a:66:8a:4e:b0:47:
dc:e5:28:07:7a:f9:38:f3:a7:7a:21:0b:91:d8:0d:
49:df:cf:52:ec:b0:9d:a6:77:3b:fc:02:7b:bf:71:
44:a7:78:79:af:9a:09:7a:29:a9:b4:8f:de:5d:86:
7e:aa:97:fa:52:d5:55:37:aa:6a:05:c6:a5:6c:79:
41:2d:26:6a:3c:8b:f4:83:86:0e:e7:bc:a6:46:79:
0d:28:28:47:0e:01:b2:53:69:a3:4b:50:f3:bf:e4:
56:6e:03:bd:88:e4:e2:b3:a6:71:ee:63:64:63:ba:
c3:8b:bc:3d:97:86:f3:47:64:c1:0d:0b:44:cc:89:
7d:86:36:7e:88:6d:04:ed:50:b6:aa:44:11:5b:a2:
89:9e:cf:b7:be:79:8d:99:f6:b6:21:d1:62:60:af:
59:5c:4c:1c:46:6f:cf:10:62:5e:76:22:93:3e:9d:
73:20:56:32:52:1d:b9:bb:40:be:34:77:be:9b:7b:
dc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:67:F1:F5:D2:82:37:B5:88:32:89:0F:43:81:E0:BF:C8:B6:DB:86
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/ZGfx9dKCN7WIMokPQ4Hgv8i224Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
76:d1:4b:e8:ac:99:5b:dd:71:53:00:8f:bf:d5:28:68:52:7f:
c4:e5:bd:6a:9a:5e:fd:c9:22:9a:7b:c1:de:29:ec:c8:55:6d:
b2:2f:b7:f4:b2:38:0b:d1:0d:c3:aa:60:78:4a:5c:89:f3:d6:
8b:05:8d:f6:13:70:14:d6:84:0a:d1:c8:a3:ce:cb:ae:58:ab:
6d:be:1f:8b:fc:a0:88:de:f4:96:46:6a:10:53:57:48:79:e9:
79:f2:3a:06:2d:0a:f5:64:65:a8:73:da:85:55:8d:e1:12:50:
67:5e:68:ca:f6:7a:bd:69:fe:0b:2e:18:26:d3:5d:f8:37:cf:
19:96:37:59:2c:6a:76:2b:ba:5a:e0:43:79:d1:ff:f9:8c:f8:
3b:34:84:5e:f2:13:d2:e8:03:50:c6:09:61:a9:75:5d:9f:ec:
d0:ca:b7:ae:24:d5:d8:23:8f:5d:9d:5b:6e:df:42:26:f5:50:
d4:11:7a:2a:54:fb:a5:0e:fa:e2:ce:b5:4c:52:6f:6a:75:08:
8c:19:86:58:4e:c9:45:8e:69:30:15:86:d5:13:20:bf:af:eb:
5d:eb:92:0e:40:72:2f:76:88:63:9d:ae:19:8e:73:d1:9e:a8:
ab:49:10:70:81:bc:fe:84:68:b4:76:4d:9c:30:71:5a:8d:75:
94:40:5c:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 16:34:37 2024 by rpki-client on console.sobornost.net