Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/aL3cTfWY0Co78jUFoR5cZCFVI8Q.roa
File: aL3cTfWY0Co78jUFoR5cZCFVI8Q.roa (raw, json)
Hash identifier: oGY2wknf9EA6d4mGTiSItyntmKkbye4b7bAf6beZ708=
Subject key identifier: 68:BD:DC:4D:F5:98:D0:2A:3B:F2:35:05:A1:1E:5C:64:21:55:23:C4
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0DB4
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/aL3cTfWY0Co78jUFoR5cZCFVI8Q.roa
Signing time: Sun 09 Feb 2025 02:25:52 +0000
ROA not before: Sun 09 Feb 2025 02:25:52 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3508 (0xdb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 9 02:25:52 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=68BDDC4DF598D02A3BF23505A11E5C64215523C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:31:45:a8:f6:cc:76:e5:63:ef:13:02:43:11:
40:2c:bb:49:32:e8:1e:3e:5c:ae:50:d7:b3:dd:bb:
3e:64:3b:5c:99:83:8c:88:ca:63:e1:05:4b:d2:ef:
bf:03:bc:0f:bc:72:ec:71:71:68:2f:5d:86:01:39:
fe:32:0c:c3:a8:46:88:90:f6:39:df:54:39:49:78:
1f:2c:e0:32:42:5d:85:bc:9e:1d:75:47:0a:df:18:
2f:f0:db:5c:0a:1c:50:89:6d:84:27:6f:95:a9:8f:
72:1c:5b:50:ff:36:b9:fd:2b:70:89:90:7a:6c:04:
a1:ed:1d:02:0f:8a:4e:16:6f:cd:8a:1d:42:2c:ff:
22:2f:4d:f5:73:8a:a5:ef:17:a8:49:a1:88:1e:9f:
a1:1b:2f:d0:33:48:0d:df:62:de:67:20:a7:9a:68:
b2:b4:2f:59:ec:72:f3:3a:4b:58:c8:55:f3:9f:0d:
e1:1d:40:c8:65:95:7a:b4:8f:98:b2:4e:7f:0c:96:
f4:21:de:84:dd:65:76:0b:23:71:6d:af:b1:d6:10:
61:32:0e:8f:a5:84:6a:d0:46:80:8d:aa:80:d4:da:
a7:71:33:8c:ab:13:23:56:52:b0:3f:7f:b5:ec:24:
90:f6:b5:80:ff:73:ac:55:1d:ce:02:47:a2:ef:93:
81:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BD:DC:4D:F5:98:D0:2A:3B:F2:35:05:A1:1E:5C:64:21:55:23:C4
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/aL3cTfWY0Co78jUFoR5cZCFVI8Q.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
76:f2:12:1a:d2:f8:d5:b9:93:a7:e6:9a:8c:fa:92:d0:91:72:
37:c4:44:21:fe:25:21:56:27:57:de:2b:20:d1:25:94:6e:6f:
0b:76:b1:4b:5c:46:f1:96:08:c4:6a:5b:d2:76:93:a7:5b:7f:
72:02:3a:84:64:fc:4b:56:13:95:94:2e:3c:74:47:e3:aa:5e:
22:1b:e0:8f:15:b8:32:fa:f6:1c:d3:84:6c:40:3f:4f:dc:eb:
d3:20:c9:7c:dd:7c:6b:93:ea:c8:61:dd:bd:dc:ff:f9:6b:4a:
e8:12:d5:3d:4a:b5:9c:d9:02:67:4d:18:f9:a4:76:b7:31:86:
d3:c5:72:ed:c3:2f:ca:f2:e9:19:35:66:30:62:23:05:b1:2d:
7a:d0:2f:70:91:bb:9e:79:ab:5a:23:c0:1b:84:ad:f6:c4:21:
fb:dd:23:9e:05:8e:31:24:94:0e:a2:1e:b5:43:83:82:3f:36:
ed:03:de:a0:53:ea:75:0b:1d:05:4d:a1:1a:78:41:8a:f3:6f:
9d:7d:7e:63:4b:1d:a3:a1:ec:21:81:8d:6d:ba:f9:5c:bd:39:
49:4b:2f:a9:13:dc:4b:ac:f2:5e:9d:ad:ab:56:7c:99:fa:aa:
2a:41:f1:8d:47:1c:8b:83:21:3c:38:2b:45:81:4d:73:c7:a8:
c2:fe:76:8a
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3
MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNTAyMDkw
MjI1NTJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDY4QkREQzRERjU5OEQw
MkEzQkYyMzUwNUExMUU1QzY0MjE1NTIzQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6MUWo9sx25WPvEwJDEUAsu0ky6B4+XK5Q17Pduz5kO1yZg4yI
ymPhBUvS778DvA+8cuxxcWgvXYYBOf4yDMOoRoiQ9jnfVDlJeB8s4DJCXYW8nh11
RwrfGC/w21wKHFCJbYQnb5Wpj3IcW1D/Nrn9K3CJkHpsBKHtHQIPik4Wb82KHUIs
/yIvTfVziqXvF6hJoYgen6EbL9AzSA3fYt5nIKeaaLK0L1nscvM6S1jIVfOfDeEd
QMhllXq0j5iyTn8MlvQh3oTdZXYLI3Ftr7HWEGEyDo+lhGrQRoCNqoDU2qdxM4yr
EyNWUrA/f7XsJJD2tYD/c6xVHc4CR6Lvk4FxAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUaL3cTfWY0Co78jUFoR5cZCFVI8QwHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF
YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw
L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL2FMM2NUZldZMENvNzhq
VUZvUjVjWkNGVkk4US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD
BARxH0ADBARxH4AwDQYJKoZIhvcNAQELBQADggEBAHbyEhrS+NW5k6fmmoz6ktCR
cjfERCH+JSFWJ1feKyDRJZRubwt2sUtcRvGWCMRqW9J2k6dbf3ICOoRk/EtWE5WU
Ljx0R+OqXiIb4I8VuDL69hzThGxAP0/c69MgyXzdfGuT6shh3b3c//lrSugS1T1K
tZzZAmdNGPmkdrcxhtPFcu3DL8ry6Rk1ZjBiIwWxLXrQL3CRu555q1ojwBuErfbE
IfvdI54FjjEklA6iHrVDg4I/Nu0D3qBT6nULHQVNoRp4QYrzb519fmNLHaOh7CGB
jW26+Vy9OUlLL6kT3Eus8l6dratWfJn6qipB8Y1HHIuDITw4K0WBTXPHqML+doo=
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:31:44 2025 by rpki-client