Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/kQIXiUfPpOLahS2qLN0OEpM0iD0.roa
File: kQIXiUfPpOLahS2qLN0OEpM0iD0.roa (raw, json)
Hash identifier: 4x+WxshVap/0NRLGyHpdlb7UoM64Q67iOIBGwCpyl2c=
Subject key identifier: 91:02:17:89:47:CF:A4:E2:DA:85:2D:AA:2C:DD:0E:12:93:34:88:3D
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 152E
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/kQIXiUfPpOLahS2qLN0OEpM0iD0.roa
Signing time: Tue 16 Apr 2024 10:53:21 +0000
ROA not before: Tue 16 Apr 2024 10:53:21 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5422 (0x152e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 16 10:53:21 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9102178947CFA4E2DA852DAA2CDD0E129334883D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:44:60:e2:91:ed:82:90:11:97:27:be:57:1e:
90:81:62:ec:86:e9:58:ab:05:ab:0a:0f:30:6a:c6:
56:42:a2:d1:55:12:cc:ac:6b:b0:6e:05:e0:1c:62:
a8:81:da:28:59:0a:89:ea:7e:cf:9f:24:b3:1d:9c:
c7:5c:5a:e8:ed:07:d3:47:8b:49:36:b4:1b:68:48:
51:6c:b7:07:18:1b:df:9c:54:8a:c3:a8:df:30:cb:
72:45:80:6f:64:75:1a:b4:da:23:9f:04:4c:7b:b7:
0e:c7:ec:21:0b:78:db:a4:e7:d8:38:8e:9a:eb:1f:
77:36:e1:0a:6a:2c:33:3e:c5:f5:98:70:23:75:d4:
82:c4:d4:1e:8b:8c:b8:00:a3:18:f8:da:a9:dc:9f:
0f:2a:79:2f:68:04:41:1a:2a:ac:63:2d:87:c1:6e:
f8:01:cb:54:88:17:e0:b7:f1:d9:dc:20:a1:3d:93:
af:12:e3:43:d3:a5:62:f9:37:ed:22:a3:dd:4b:e1:
54:72:66:f7:e3:41:f8:b8:9d:f0:02:7a:6d:23:cf:
dc:15:3b:61:b4:7d:41:67:03:65:5a:3f:1b:4f:22:
aa:3f:1c:7c:77:eb:df:fe:74:95:99:c0:ea:29:b7:
cc:18:40:39:7f:57:15:a9:3f:ea:1c:10:68:b7:96:
17:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:02:17:89:47:CF:A4:E2:DA:85:2D:AA:2C:DD:0E:12:93:34:88:3D
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/kQIXiUfPpOLahS2qLN0OEpM0iD0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:c1:67:01:68:89:1c:ba:4d:0f:c1:5f:39:90:d5:01:92:66:
64:21:3f:83:74:1b:b4:53:85:fb:b7:05:f4:1e:c2:6e:73:8c:
b6:7e:c7:48:fb:c9:33:b2:53:e2:07:74:0b:27:0f:b9:4c:5f:
f0:a4:c7:a6:a8:43:69:d3:e5:49:57:89:76:b5:68:fc:64:da:
f9:67:31:05:cd:10:ac:f2:4e:27:08:2a:65:e7:e2:56:a6:2b:
86:2e:cf:a0:80:af:0a:01:b7:1e:05:a0:e2:09:d5:b2:9f:ba:
d4:c5:54:e9:32:f2:3c:02:15:93:cb:bf:ee:11:d5:d1:2c:9f:
32:2a:43:53:da:ca:7a:74:99:aa:ee:b3:07:af:6e:67:94:75:
3b:df:fe:4e:47:2a:e5:eb:4e:98:9a:6a:73:f5:6a:c6:09:e0:
91:de:a6:c7:e8:fa:cc:53:6d:eb:56:db:39:7d:d0:79:be:82:
6e:ba:ec:97:7c:02:2a:af:2c:f3:40:8a:f1:11:02:06:cd:9c:
91:16:54:99:03:47:3f:c0:12:4b:d8:05:67:9d:3b:60:77:fd:
7e:e1:50:94:0a:b3:32:fe:86:51:61:97:48:82:d5:1a:e5:ff:
e1:23:c0:a5:28:7e:c7:99:ea:a3:ed:85:f0:be:2c:bb:9a:f7:
65:c8:46:76
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICFS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MTYx
MDUzMjFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDkxMDIxNzg5NDdDRkE0
RTJEQTg1MkRBQTJDREQwRTEyOTMzNDg4M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwRGDike2CkBGXJ75XHpCBYuyG6VirBasKDzBqxlZCotFVEsys
a7BuBeAcYqiB2ihZConqfs+fJLMdnMdcWujtB9NHi0k2tBtoSFFstwcYG9+cVIrD
qN8wy3JFgG9kdRq02iOfBEx7tw7H7CELeNuk59g4jprrH3c24QpqLDM+xfWYcCN1
1ILE1B6LjLgAoxj42qncnw8qeS9oBEEaKqxjLYfBbvgBy1SIF+C38dncIKE9k68S
40PTpWL5N+0io91L4VRyZvfjQfi4nfACem0jz9wVO2G0fUFnA2VaPxtPIqo/HHx3
69/+dJWZwOopt8wYQDl/VxWpP+ocEGi3lhdxAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUkQIXiUfPpOLahS2qLN0OEpM0iD0wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL2tRSVhpVWZQcE9MYWhT
MnFMTjBPRXBNMGlEMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEArsFnAWiJHLpND8FfOZDVAZJmZCE/g3Qb
tFOF+7cF9B7CbnOMtn7HSPvJM7JT4gd0CycPuUxf8KTHpqhDadPlSVeJdrVo/GTa
+WcxBc0QrPJOJwgqZefiVqYrhi7PoICvCgG3HgWg4gnVsp+61MVU6TLyPAIVk8u/
7hHV0SyfMipDU9rKenSZqu6zB69uZ5R1O9/+Tkcq5etOmJpqc/Vqxgngkd6mx+j6
zFNt61bbOX3Qeb6Cbrrsl3wCKq8s80CK8RECBs2ckRZUmQNHP8ASS9gFZ507YHf9
fuFQlAqzMv6GUWGXSILVGuX/4SPApSh+x5nqo+2F8L4su5r3ZchGdg==
-----END CERTIFICATE-----
Generated at Tue Apr 16 15:59:07 2024 by rpki-client on console.sobornost.net