Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/38ellLOKrXnqq5bD9CMZnmwV5rM.roa
File: 38ellLOKrXnqq5bD9CMZnmwV5rM.roa (raw, json)
Hash identifier: U1uJGEAKGkdcJw2bkhYl/ghJ82/a4mUascOYGZvjmQk=
Subject key identifier: DF:C7:A5:94:B3:8A:AD:79:EA:AB:96:C3:F4:23:19:9E:6C:15:E6:B3
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0710
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/38ellLOKrXnqq5bD9CMZnmwV5rM.roa
Signing time: Wed 22 Jan 2025 09:24:58 +0000
ROA not before: Wed 22 Jan 2025 09:24:58 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1808 (0x710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 22 09:24:58 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=DFC7A594B38AAD79EAAB96C3F423199E6C15E6B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:67:69:bf:13:f6:79:99:38:c9:c7:f2:d3:df:
f2:8b:98:fa:6f:0c:c1:3c:39:b1:fd:c1:4d:10:2f:
77:a2:a8:71:be:73:84:08:c2:82:de:01:b1:90:fe:
e8:78:55:f6:af:84:68:a9:c3:65:04:c5:d5:6c:ba:
e3:0e:c7:1a:3a:23:d4:ea:75:a8:27:56:27:0d:d6:
63:4b:47:e1:0e:2f:46:9b:23:2c:81:ed:07:e8:5e:
20:32:e2:bd:f9:6c:1c:cc:c3:c1:3c:ce:9c:f8:3b:
30:c3:69:38:b2:cf:e1:64:46:4f:90:a2:7b:13:84:
f0:05:bc:00:c4:18:26:c6:41:95:55:ba:4e:67:b9:
41:6a:b0:9e:87:cb:77:00:fc:4b:5b:65:58:59:57:
28:35:bd:cb:c4:35:fc:59:9a:7a:c8:c2:c7:2a:2e:
04:16:75:0d:41:94:18:13:dd:a2:5e:7e:ac:1f:b7:
90:7c:33:49:e2:ff:1f:7c:06:e7:be:87:55:28:cd:
f2:c9:73:39:61:d2:03:48:f5:1c:1f:25:b0:60:7f:
bb:d8:d3:84:7c:d5:02:23:f4:e8:f1:13:35:5c:dc:
cc:9e:45:71:2f:f0:1a:4f:dd:49:2e:43:14:05:8a:
38:dd:d8:9b:70:ec:2e:e7:d8:7c:20:f6:46:80:ce:
f5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C7:A5:94:B3:8A:AD:79:EA:AB:96:C3:F4:23:19:9E:6C:15:E6:B3
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/38ellLOKrXnqq5bD9CMZnmwV5rM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:30:bf:9f:82:3c:71:af:a6:51:de:f8:f9:68:66:27:77:f5:
41:8f:84:6b:47:30:24:7c:90:3a:29:ec:41:79:b0:59:68:8f:
b5:8f:d5:e3:02:55:46:db:53:ca:4a:00:20:e6:7d:32:ae:58:
63:b9:54:14:3e:50:9d:00:1f:27:b3:3c:6e:42:b8:3b:3b:b9:
bc:96:d4:4e:3b:af:c0:af:98:5b:c0:8a:96:82:88:f7:80:8f:
87:15:f6:42:9a:98:4d:2e:ec:26:a1:f2:96:80:89:b7:e4:52:
07:25:f9:e6:f4:f2:78:b3:63:62:01:80:1a:93:da:77:ff:39:
0b:86:38:24:0e:ad:af:51:c0:2c:74:16:eb:8f:e4:f1:b1:5a:
a1:b3:92:20:40:e1:80:4f:25:8d:30:8c:9f:c0:28:c2:6f:fc:
dc:74:b0:f2:9c:1d:d1:53:bc:ce:29:68:fd:77:5d:2d:4d:ac:
f3:c4:92:7d:bf:30:a4:42:02:f0:f0:84:98:95:0b:78:2f:5c:
cf:6d:8d:d0:d8:17:28:d5:42:4b:02:ac:0f:b8:5c:25:4d:92:
7d:5c:1a:ab:0a:99:f9:68:f4:81:bb:d7:06:86:7a:8d:73:97:
7c:f8:c7:17:b2:ea:8e:ff:d4:21:32:68:d2:6b:4a:e0:a6:50:
10:3c:63:74
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:33:13 2025 by rpki-client