Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/ha1FllqQuQlcJH1RBBYyw7gyiLA.roa
File: ha1FllqQuQlcJH1RBBYyw7gyiLA.roa (raw, json)
Hash identifier: zvtM9u2F1RTlAosBYpHaDnUxLNrOvEWbycDu9Sb81u4=
Subject key identifier: 85:AD:45:96:5A:90:B9:09:5C:24:7D:51:04:16:32:C3:B8:32:88:B0
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0D58
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/ha1FllqQuQlcJH1RBBYyw7gyiLA.roa
Signing time: Sat 08 Feb 2025 03:25:49 +0000
ROA not before: Sat 08 Feb 2025 03:25:49 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3416 (0xd58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 8 03:25:49 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=85AD45965A90B9095C247D51041632C3B83288B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:59:0f:9b:23:f1:f2:ce:62:15:bb:f9:0b:fc:
8d:9a:60:49:c2:21:ad:8f:81:63:e7:64:ce:05:a7:
27:ef:41:fa:2d:55:90:53:97:74:f7:a8:a2:15:f8:
c2:7b:a9:de:4c:00:a5:03:f3:e4:5b:1d:77:10:8f:
bb:21:ab:d0:c8:85:0a:2a:5c:b2:00:cf:6e:1b:b1:
d5:70:49:26:30:44:3c:3f:89:37:14:bb:3e:82:8c:
78:4b:11:e0:4b:61:10:be:78:2d:5d:44:fd:c5:78:
a2:c6:0a:7f:16:38:7d:2a:4b:ee:47:82:26:72:0a:
8e:94:07:7f:6b:6a:fc:4d:f6:fe:89:16:4f:3a:75:
86:73:f8:03:a4:04:27:b2:8d:1c:36:bc:d8:d9:a5:
5a:f1:ed:f3:b5:29:0e:c4:79:fd:19:8b:4b:3b:b6:
d2:ce:03:09:91:36:46:17:5e:9f:44:1e:f1:61:dd:
47:43:05:47:54:ef:4e:32:8b:4f:62:e5:e3:ba:6d:
cc:9f:b2:86:7e:c2:d9:08:19:79:23:57:a4:e1:93:
f8:7a:c8:f8:95:f5:34:38:f5:3c:bd:41:aa:1a:a4:
0c:46:04:41:9a:6e:05:85:f3:56:c3:79:d4:83:5d:
f1:3c:1a:a9:ad:8c:b7:92:2c:69:e1:42:7e:6f:86:
02:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:AD:45:96:5A:90:B9:09:5C:24:7D:51:04:16:32:C3:B8:32:88:B0
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/ha1FllqQuQlcJH1RBBYyw7gyiLA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
16:db:6f:a2:9e:ea:0f:8d:f0:b2:39:22:a7:36:d9:25:10:8a:
f7:a0:a5:d1:cd:32:9c:46:79:af:07:11:d6:b8:fc:82:a1:cb:
42:4b:4f:9c:4c:09:f0:2e:c7:ee:7f:96:ea:5b:c5:26:53:8f:
b0:70:bd:e3:fe:37:74:73:c7:62:cc:9d:0a:12:25:c6:72:cd:
22:8c:3b:4d:76:fa:6c:32:94:6e:6f:6d:28:64:12:c9:a3:0c:
4e:50:0b:d4:a5:05:0a:c6:3b:fe:72:a9:96:b8:57:e1:86:a5:
7a:fc:b0:6f:7f:af:f7:be:f8:29:33:70:78:99:d0:1e:c8:5e:
3e:fa:10:2f:33:49:b2:64:ff:d0:24:48:b6:42:33:99:3a:35:
4c:38:5d:ec:43:57:95:64:78:da:95:99:84:bc:fb:0f:90:31:
f0:98:8f:02:09:42:7a:22:84:41:08:8e:dc:16:d2:ff:f0:d5:
1d:dc:3a:ba:9e:fe:b2:69:82:8d:80:a0:ff:98:86:83:46:c5:
c5:96:00:2d:57:0d:92:06:30:6b:07:21:aa:1a:27:5d:ec:f2:
e2:b8:ba:11:db:4d:48:56:de:2d:36:d8:65:9c:fe:1a:ea:28:
1d:32:3d:0b:6b:f1:ab:8d:7e:22:d0:70:c2:30:f8:23:3f:18:
e4:cc:a6:61
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICDVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3
MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNTAyMDgw
MzI1NDlaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDg1QUQ0NTk2NUE5MEI5
MDk1QzI0N0Q1MTA0MTYzMkMzQjgzMjg4QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsWQ+bI/HyzmIVu/kL/I2aYEnCIa2PgWPnZM4FpyfvQfotVZBT
l3T3qKIV+MJ7qd5MAKUD8+RbHXcQj7shq9DIhQoqXLIAz24bsdVwSSYwRDw/iTcU
uz6CjHhLEeBLYRC+eC1dRP3FeKLGCn8WOH0qS+5HgiZyCo6UB39ravxN9v6JFk86
dYZz+AOkBCeyjRw2vNjZpVrx7fO1KQ7Eef0Zi0s7ttLOAwmRNkYXXp9EHvFh3UdD
BUdU704yi09i5eO6bcyfsoZ+wtkIGXkjV6Thk/h6yPiV9TQ49Ty9QaoapAxGBEGa
bgWF81bDedSDXfE8GqmtjLeSLGnhQn5vhgIXAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUha1FllqQuQlcJH1RBBYyw7gyiLAwHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF
YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw
L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL2hhMUZsbHFRdVFsY0pI
MVJCQll5dzdneWlMQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD
BARxH0ADBARxH4AwDQYJKoZIhvcNAQELBQADggEBABbbb6Ke6g+N8LI5Iqc22SUQ
ivegpdHNMpxGea8HEda4/IKhy0JLT5xMCfAux+5/lupbxSZTj7BwveP+N3Rzx2LM
nQoSJcZyzSKMO012+mwylG5vbShkEsmjDE5QC9SlBQrGO/5yqZa4V+GGpXr8sG9/
r/e++CkzcHiZ0B7IXj76EC8zSbJk/9AkSLZCM5k6NUw4XexDV5VkeNqVmYS8+w+Q
MfCYjwIJQnoihEEIjtwW0v/w1R3cOrqe/rJpgo2AoP+YhoNGxcWWAC1XDZIGMGsH
IaoaJ13s8uK4uhHbTUhW3i022GWc/hrqKB0yPQtr8auNfiLQcMIw+CM/GOTMpmE=
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:14:49 2025 by rpki-client