Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/nz_Xp3aH-XgExHp2NShui8HnhyI.roa
File: nz_Xp3aH-XgExHp2NShui8HnhyI.roa (raw, json)
Hash identifier: /SeAXuAUShLV7DY1caIlqIR+lwUdCf8SR4yokJ2Omf8=
Subject key identifier: 9F:3F:D7:A7:76:87:F9:78:04:C4:7A:76:35:28:6E:8B:C1:E7:87:22
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0FBE
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/nz_Xp3aH-XgExHp2NShui8HnhyI.roa
Signing time: Mon 01 Apr 2024 22:52:41 +0000
ROA not before: Mon 01 Apr 2024 22:52:41 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4030 (0xfbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 1 22:52:41 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9F3FD7A77687F97804C47A7635286E8BC1E78722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:04:2c:90:88:ef:76:10:30:eb:e1:a7:52:
74:5c:ba:ca:9f:7d:1c:e7:66:fb:62:09:84:eb:eb:
68:90:ac:cd:f6:94:dd:c9:95:d9:8e:40:9a:dc:6d:
47:59:87:13:f9:94:81:8a:8b:74:5c:d1:f8:41:4f:
52:6c:f0:ba:2d:66:90:ef:45:15:a3:fc:1e:94:d4:
a5:21:2f:5d:00:98:86:d6:ea:41:c0:50:d5:e0:5c:
49:66:4e:ed:4a:60:c1:16:a4:6d:a2:ec:52:d0:50:
3b:88:c7:79:aa:70:3d:52:d5:17:82:6e:28:b3:32:
a0:31:d5:8b:e6:22:bb:0f:04:ea:b3:86:1b:b8:ae:
f5:c4:83:e7:bb:6f:a7:fe:64:e9:79:5f:ab:d8:bd:
40:2e:6a:06:d0:a3:d1:9d:21:82:14:b1:ba:38:df:
8a:29:5f:0f:77:a4:b2:28:77:ec:a4:52:48:ff:e9:
a2:97:26:49:d1:b9:b1:b8:de:f3:b9:90:29:9d:fa:
3b:67:a6:ee:7b:06:98:4f:8d:20:95:f0:02:b7:5e:
00:94:96:06:6b:cd:02:47:2c:b7:ab:8e:f0:0a:15:
01:7e:da:27:a5:81:6a:f8:96:0c:8e:7d:87:e7:ad:
6a:af:50:6c:bd:ee:52:6b:d7:76:29:6f:c0:a4:e3:
ce:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3F:D7:A7:76:87:F9:78:04:C4:7A:76:35:28:6E:8B:C1:E7:87:22
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/nz_Xp3aH-XgExHp2NShui8HnhyI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:f0:01:a8:21:48:3b:c2:95:69:2d:f7:fe:04:01:81:09:63:
8d:5c:95:ee:62:5d:96:8c:94:4d:5f:6e:da:32:ae:92:be:b4:
80:ac:d6:13:25:16:74:59:ee:73:3c:bd:03:28:93:b1:d9:34:
58:f9:f0:d3:da:73:f9:5d:b7:4d:8b:b3:60:a9:06:fd:b2:e6:
8b:34:e8:ff:23:de:a5:4f:3c:70:b2:6a:da:d7:33:51:cc:f3:
46:0c:3b:bb:e7:40:c9:61:6f:37:e3:4d:51:4d:f7:09:ea:fe:
34:65:e1:b4:bd:6b:a0:80:6f:f0:37:21:af:79:3f:73:0f:54:
c5:6d:2c:00:a2:11:66:8e:b0:ee:92:89:7f:0c:1c:12:a7:93:
4a:41:63:e0:f8:11:b5:02:74:14:f3:7c:fc:b8:25:2e:5f:4e:
eb:9b:50:2c:72:c5:c2:3f:f0:a3:8a:e8:f9:1c:6b:26:1c:79:
7d:43:17:21:f1:d4:87:75:18:e8:09:e9:39:d7:ee:2c:a7:75:
d6:d9:c5:24:a3:b9:18:2a:1d:e2:3d:0f:cd:da:6f:79:cb:89:
72:f6:57:0d:c9:21:d0:10:81:eb:2d:3b:2e:55:00:57:93:20:
44:4d:99:fa:ad:e4:90:3b:2b:39:4d:fb:c0:e5:b8:02:93:89:
23:af:61:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 07:08:13 2024 by rpki-client on console.sobornost.net