Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/KA-h0x3nCgviPlmYot-KZdzdskw.roa
File: KA-h0x3nCgviPlmYot-KZdzdskw.roa (raw, json)
Hash identifier: Qlnp6UgGoePXT1a6fkxkKAs+LV6Rlj4UnQwS4clvGPs=
Subject key identifier: 28:0F:A1:D3:1D:E7:0A:0B:E2:3E:59:98:A2:DF:8A:65:DC:DD:B2:4C
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0EA1
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/KA-h0x3nCgviPlmYot-KZdzdskw.roa
Signing time: Mon 10 Mar 2025 15:09:36 +0000
ROA not before: Mon 10 Mar 2025 15:09:36 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 4134
IP address blocks: 113.31.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3745 (0xea1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Mar 10 15:09:36 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=280FA1D31DE70A0BE23E5998A2DF8A65DCDDB24C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:30:0d:cc:82:69:f5:02:24:a1:f5:8b:b3:22:
96:47:21:62:43:83:7c:c5:7a:89:63:48:21:00:e5:
0a:2d:45:1e:21:a9:eb:8d:6a:60:ea:b8:c3:1f:96:
a2:45:00:17:b1:1b:fd:01:39:82:0f:c8:a7:b3:74:
e6:da:c5:1c:ef:f1:67:64:ac:b4:3c:e2:ee:06:75:
fa:81:12:dc:1e:ae:cf:67:67:c8:31:5c:27:fd:32:
68:5b:c5:25:e8:10:4d:04:5c:4f:c3:60:a3:33:ff:
64:6d:f5:45:52:29:d0:9e:29:11:d5:44:3c:5a:ef:
1e:ce:39:5a:0b:13:91:a6:f2:78:e6:01:48:35:9f:
57:29:44:fd:57:75:e1:a5:cb:e2:63:c9:36:24:6b:
af:3b:b5:69:b8:9e:6a:73:63:88:3a:a0:73:b1:e9:
93:03:4b:a5:3d:e0:36:87:ab:94:e4:db:0e:4f:89:
5d:4b:35:b1:82:11:38:5e:81:92:e2:dc:93:4b:f3:
58:8e:7c:cd:18:05:c5:88:64:20:c8:0f:d0:3e:93:
df:b0:75:a6:27:3d:8f:33:6c:2c:c5:1c:d4:42:c9:
c8:ab:12:67:00:09:14:7c:fc:9c:c6:7b:4a:9d:0f:
c4:a4:a9:f5:09:c0:f6:2f:b1:94:e1:86:31:5a:57:
e4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0F:A1:D3:1D:E7:0A:0B:E2:3E:59:98:A2:DF:8A:65:DC:DD:B2:4C
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/KA-h0x3nCgviPlmYot-KZdzdskw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.80.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:61:23:18:89:50:ac:a4:fe:49:32:33:1d:84:71:8b:18:ca:
33:8d:5d:51:b7:22:f0:35:66:5f:7b:01:44:7f:f9:b0:e0:dc:
ba:f0:57:d7:88:3b:90:bb:d9:ff:7b:01:c4:5b:5e:fe:17:bc:
fc:b0:a6:71:1c:cd:f3:68:d0:df:2a:a0:8a:59:96:94:9d:2a:
84:b8:b0:8a:db:83:58:7b:3d:47:c3:98:b7:fe:48:cf:34:0b:
64:4a:2c:73:f5:ad:20:d6:74:98:fe:af:21:10:4d:9a:a1:e2:
26:bd:c6:b9:3f:77:19:6e:64:b2:e8:52:d6:08:10:97:a0:6b:
0f:6d:65:88:58:59:1b:cc:13:41:d1:2c:61:58:94:34:32:23:
3a:8e:b4:12:f6:2d:56:21:0d:d4:eb:a3:ca:b6:f0:69:22:a2:
4e:d0:a4:5e:32:d1:93:4d:fc:46:f3:9d:eb:7b:ba:35:4f:3c:
3d:8d:5e:a1:ad:34:e3:69:3a:a6:91:50:23:c2:8c:fa:fa:1c:
eb:68:7d:1a:73:57:42:6d:20:89:47:04:f5:26:4c:1e:c6:dd:
ea:6e:c8:12:cb:49:21:4d:a5:66:99:50:89:0d:1c:e9:a1:4f:
a7:a9:07:cb:b7:84:83:07:cf:fa:e6:1b:58:76:8c:d0:57:55:
40:c3:c1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:28:45 2025 by rpki-client