Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/VrD2Gh0-tjlURrJtCJ5M7qlU9gQ.roa
File: VrD2Gh0-tjlURrJtCJ5M7qlU9gQ.roa (raw, json)
Hash identifier: tdWYjNaW94cyHGXGsnMZoHLbKtI4Ne1uQUmVx0maKWE=
Subject key identifier: 56:B0:F6:1A:1D:3E:B6:39:54:46:B2:6D:08:9E:4C:EE:A9:54:F6:04
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0D84
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/VrD2Gh0-tjlURrJtCJ5M7qlU9gQ.roa
Signing time: Sat 08 Feb 2025 14:25:53 +0000
ROA not before: Sat 08 Feb 2025 14:25:53 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3460 (0xd84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 8 14:25:53 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=56B0F61A1D3EB6395446B26D089E4CEEA954F604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:25:94:b2:d4:61:ba:ea:7a:11:3f:0c:57:6f:
c8:44:dd:6f:34:67:23:e2:6e:ff:fc:2d:db:3b:51:
00:3b:49:97:a0:ba:bf:b5:b0:12:58:8e:c3:e6:5e:
41:ec:a0:47:9e:65:e8:8e:84:02:bf:7d:68:0d:ef:
15:e3:56:1f:81:38:53:29:21:6c:79:cf:cb:98:36:
8f:0b:e4:a4:49:5d:53:12:ad:8e:50:01:e3:9f:61:
d9:b5:85:ad:31:7b:d2:d8:59:4d:8c:1b:f2:8f:20:
9d:f0:c2:3f:c4:af:b5:24:32:6f:be:f0:7a:dc:aa:
fb:58:cb:34:cf:d4:12:1a:17:86:eb:2a:61:82:e8:
bd:7f:bf:ed:44:ea:29:7e:d7:12:27:d1:f7:a1:a9:
09:ad:6c:06:ca:00:37:e4:36:d9:c5:fd:fc:c6:ef:
65:ac:5d:07:29:91:3c:6a:8e:cc:ee:a3:e6:28:e1:
19:8a:dd:c0:b2:c5:6b:de:04:7c:0c:92:e8:aa:1e:
3c:fb:3e:12:7e:fe:0f:f7:2f:3b:26:56:6c:be:fe:
32:e6:1f:aa:8a:da:00:79:44:58:b1:c8:dc:d9:d2:
b7:bb:e5:3d:a1:42:bc:34:85:c0:4c:0c:fd:a9:10:
88:87:b0:61:66:2f:47:bc:e2:46:cd:2e:0f:ae:50:
7a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B0:F6:1A:1D:3E:B6:39:54:46:B2:6D:08:9E:4C:EE:A9:54:F6:04
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/VrD2Gh0-tjlURrJtCJ5M7qlU9gQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
57:94:c0:58:b3:01:84:c2:69:e3:40:09:56:2c:2f:e3:ef:ea:
6d:b4:ea:4c:a3:fe:34:38:7c:28:38:6d:ff:05:55:ea:39:3f:
b0:f7:72:81:de:a1:06:2e:86:9c:74:ff:3f:79:c3:79:f3:4d:
e9:99:48:38:ac:3e:eb:3a:e4:11:05:8c:21:7d:2e:c0:b1:28:
52:16:7a:d8:0d:5f:03:c2:0f:17:a3:26:bd:7e:a8:15:7a:c2:
82:6e:e7:3e:03:7d:2b:cf:46:58:c3:bd:d0:2e:e2:e3:6e:57:
1b:73:72:3c:7d:b3:47:fa:a6:10:f0:b3:da:3a:48:3a:09:04:
da:c6:43:c3:b6:f7:f6:55:27:ba:f2:74:2c:b6:ce:a1:38:99:
17:76:69:a6:57:d0:0a:bc:d7:3d:eb:0d:fa:5a:82:01:f4:5f:
50:b5:11:02:a8:02:56:e7:11:5e:87:40:a3:60:fe:bb:e1:1c:
a7:17:7d:b5:79:fa:1b:76:51:4c:21:81:bb:74:b8:b1:9c:7a:
5d:c2:39:05:ce:ee:27:20:d6:b2:9b:49:10:d9:8d:bd:3d:e0:
e0:76:18:d9:b2:be:d5:65:e7:8d:6c:59:bd:f5:a0:6a:8e:a1:
ad:70:16:de:08:f5:ac:d0:f1:47:91:d1:ed:0d:bf:10:39:ea:
ce:d7:4d:97
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:33:30 2025 by rpki-client