Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/_aNNBt9BV0GgsyXx-U7dZr9vPyQ.roa
File: _aNNBt9BV0GgsyXx-U7dZr9vPyQ.roa (raw, json)
Hash identifier: 2c0thMVK2+1P7hHQIT5ax2pafyR8muRatVrMRUMbXV0=
Subject key identifier: FD:A3:4D:06:DF:41:57:41:A0:B3:25:F1:F9:4E:DD:66:BF:6F:3F:24
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 06B0
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/_aNNBt9BV0GgsyXx-U7dZr9vPyQ.roa
Signing time: Tue 21 Jan 2025 09:24:55 +0000
ROA not before: Tue 21 Jan 2025 09:24:55 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1712 (0x6b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 21 09:24:55 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=FDA34D06DF415741A0B325F1F94EDD66BF6F3F24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:25:75:69:a9:ba:9b:08:bd:09:24:95:76:1a:
2d:44:00:8d:cb:6a:9e:4c:a1:1b:62:03:44:e7:71:
06:fc:c4:15:f5:3c:f3:6a:b6:0a:00:c4:84:4a:02:
90:f2:81:48:cb:04:05:47:67:87:58:88:ff:81:21:
42:6e:4a:76:b1:56:fc:87:ce:e6:0d:62:73:d0:21:
5b:75:a0:8e:30:da:0d:e0:34:56:de:21:3a:b6:d2:
48:84:65:a4:5d:ba:fb:bd:43:b3:31:37:2d:a2:35:
de:98:16:58:31:32:40:2c:aa:5b:33:63:77:58:70:
99:bd:50:81:ff:91:d7:65:8d:04:6c:cd:51:48:34:
92:68:88:11:c8:4f:7c:f9:7e:8b:d0:52:83:2c:f4:
eb:11:30:0f:37:2b:5d:c3:95:9a:cd:3c:7f:b2:44:
a4:68:cd:09:e1:51:62:45:8e:41:e7:19:a8:3a:fe:
51:02:a7:00:05:41:be:bb:f8:36:da:f9:df:3d:d4:
6b:f7:32:df:0d:5a:c0:bd:07:f5:b3:07:01:b3:35:
6c:96:e6:93:c3:11:bc:ec:88:7e:71:3f:03:4c:9a:
8c:ca:71:08:66:1a:a8:c5:62:43:ad:62:53:2d:00:
d1:37:14:2c:ee:af:fe:9d:b5:55:27:1e:c0:66:e1:
7d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A3:4D:06:DF:41:57:41:A0:B3:25:F1:F9:4E:DD:66:BF:6F:3F:24
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/_aNNBt9BV0GgsyXx-U7dZr9vPyQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
3d:eb:df:df:b8:1a:e4:be:de:63:18:56:fe:17:85:1e:3d:d4:
6f:d9:b1:c9:d2:2f:cf:c9:e6:9b:11:62:57:da:cb:50:fa:e0:
7a:a1:22:69:65:e3:90:06:54:b9:83:a6:0b:6a:38:92:b9:c7:
f3:74:ce:f5:5a:a2:cb:2b:87:f3:eb:a6:10:57:b4:c3:bb:e7:
0e:45:96:d9:ed:c9:15:ce:54:b9:2c:8f:cf:a8:cc:f5:9f:be:
58:6b:f7:3a:7a:94:bc:15:39:a5:38:87:56:8c:6b:99:c6:c4:
cf:0c:31:3a:df:f4:da:79:e1:a5:42:70:c3:fc:18:47:ab:68:
a9:16:86:e8:f5:86:e7:ef:c8:89:64:78:e0:13:de:b2:ab:70:
62:9e:ce:59:7f:b0:ed:af:ab:94:8b:ef:51:e0:1b:76:f9:de:
ae:2b:3b:a6:85:99:93:14:9d:cd:73:7f:3e:b4:fc:25:ea:b1:
23:2f:ca:37:33:90:86:fe:31:5e:1b:97:2b:1a:98:fb:29:5f:
24:54:0f:0f:bc:8f:34:e3:ad:d8:c3:ca:2a:4c:11:82:25:67:
38:04:35:2e:2b:bd:af:1f:27:81:05:df:63:6f:99:df:7f:bc:
81:4e:a2:12:b0:cf:ef:27:03:41:58:2c:09:67:34:89:56:ab:
f3:90:9c:97
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:13:56 2025 by rpki-client