Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/B66OUFQvw8zPeY37gywDtTe45-Y.roa
File: B66OUFQvw8zPeY37gywDtTe45-Y.roa (raw, json)
Hash identifier: iTdMiZHkX3Le9mIL0Ntva3VMUScaQK9WfJdLMzOKgtY=
Subject key identifier: 07:AE:8E:50:54:2F:C3:CC:CF:79:8D:FB:83:2C:03:B5:37:B8:E7:E6
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 08D8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/B66OUFQvw8zPeY37gywDtTe45-Y.roa
Signing time: Mon 27 Jan 2025 03:25:55 +0000
ROA not before: Mon 27 Jan 2025 03:25:55 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2264 (0x8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 27 03:25:55 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=07AE8E50542FC3CCCF798DFB832C03B537B8E7E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:90:02:40:4a:d3:2b:2f:ab:ec:66:b3:33:7b:
82:19:19:56:f0:33:b1:31:d5:8a:1a:53:fc:a2:2b:
cd:2d:71:58:d7:33:92:a3:82:96:0f:91:c1:43:0d:
e7:01:64:ac:53:ef:31:ab:40:e4:24:10:c4:ac:de:
b2:a5:2b:a8:54:4c:d0:41:00:72:c1:4c:e3:b7:d8:
76:7e:8f:04:0d:32:2a:2a:32:1c:4e:df:4f:fd:41:
f1:b5:4e:cc:21:41:17:39:48:b9:11:14:a9:cb:e0:
25:77:15:72:cb:4f:8c:d4:b4:bc:fc:4a:6b:14:1c:
fe:eb:b4:7f:c9:d5:55:0d:54:39:ee:17:a6:ba:27:
ea:a0:9e:b6:a5:a2:fd:4a:1a:3b:e5:28:82:d5:9c:
6b:06:72:8b:72:55:e9:d1:0d:e3:70:84:87:f8:3a:
9f:da:98:2b:a9:12:d4:9a:29:4e:1e:6c:4b:cf:ba:
7b:08:5c:9f:55:c2:a5:db:d5:7e:c6:e6:ae:86:21:
f8:d6:dd:98:9e:5a:71:2f:e0:00:bd:aa:7f:ad:20:
f0:f1:d0:20:5f:07:24:42:da:bf:12:82:18:4b:6f:
9b:01:78:7d:3c:d3:24:d4:3f:49:0a:49:7c:4a:59:
39:eb:38:db:6e:95:2e:e6:04:e3:5f:1b:32:df:39:
f4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AE:8E:50:54:2F:C3:CC:CF:79:8D:FB:83:2C:03:B5:37:B8:E7:E6
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/B66OUFQvw8zPeY37gywDtTe45-Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
08:a3:5c:47:a5:c9:5d:b3:87:0d:6f:63:58:15:e8:14:58:81:
96:23:54:9e:99:6f:fa:d5:1f:fb:9d:c9:86:49:ac:ff:a7:53:
7d:76:14:c8:eb:66:f2:c9:26:8e:4b:9a:d3:aa:5a:33:89:21:
4a:cb:15:a1:71:31:48:47:34:3d:84:9e:30:a0:d1:34:44:49:
e7:0c:ee:df:79:e3:fd:59:25:df:a9:57:8d:2f:31:44:d1:51:
c6:f9:6e:ee:e9:91:20:70:a2:04:a0:bd:a7:83:b3:6a:79:5c:
ea:81:f2:04:97:8d:1a:41:bf:3c:13:73:80:5b:8e:9f:21:cd:
c2:d2:1e:b9:b8:7b:bd:05:13:8f:28:a4:61:92:6d:59:51:64:
d2:87:3c:ac:ba:e9:63:bb:b4:ca:e0:35:0a:4f:48:9e:40:3f:
af:cc:fc:62:a3:d6:e6:c3:f6:9d:d4:b3:7b:ef:63:24:fd:78:
9c:f1:ec:90:a8:65:95:b7:5b:42:fd:9a:79:0b:08:f6:49:b8:
7c:d8:7c:4c:83:d0:29:e5:6c:f0:25:b6:3f:9e:33:5a:26:78:
74:aa:56:54:ea:bf:5e:c3:0f:c9:5e:8f:01:99:27:df:a8:7f:
ac:bb:b3:a4:08:3e:e7:ec:55:0d:96:46:c5:0f:ae:24:f8:f0:
ec:8d:71:e0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:45:17 2025 by rpki-client