Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/pg9Vjmre5uNKPgp9_3qmbck6q-M.roa
File: pg9Vjmre5uNKPgp9_3qmbck6q-M.roa (raw, json)
Hash identifier: OCuX61Q3wzxg4EXE9M+5UY91MdsYZEun+h6nbHtc6S4=
Subject key identifier: A6:0F:55:8E:6A:DE:E6:E3:4A:3E:0A:7D:FF:7A:A6:6D:C9:3A:AB:E3
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 06BC
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/pg9Vjmre5uNKPgp9_3qmbck6q-M.roa
Signing time: Tue 21 Jan 2025 12:25:33 +0000
ROA not before: Tue 21 Jan 2025 12:25:33 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1724 (0x6bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 21 12:25:33 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=A60F558E6ADEE6E34A3E0A7DFF7AA66DC93AABE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d1:f1:89:35:11:fd:89:c8:63:cb:68:5d:08:
e4:d5:42:ea:90:c8:a8:af:64:ed:0f:40:28:08:9a:
9f:ff:4e:e5:e8:eb:4c:20:70:6d:36:79:d9:0f:d6:
57:ab:dc:cb:5e:d5:95:05:b4:8e:5e:e1:87:e6:aa:
60:9d:2c:1a:b9:9a:90:33:ec:0f:47:e4:0e:cd:1e:
2e:56:a5:27:a5:05:0a:1f:e4:4b:54:be:b5:bd:98:
b4:11:73:ee:b3:53:0f:33:51:54:c3:61:6f:2c:6f:
15:10:3a:9d:7f:6e:f9:98:ea:27:3c:f5:4e:37:81:
a3:8d:c9:63:d6:02:ee:99:8b:50:f5:c8:30:9f:02:
72:8c:c7:a4:c1:c6:61:aa:70:7c:30:ac:34:73:7e:
6e:bf:ef:20:c3:72:83:bd:1e:bc:35:3d:0f:82:08:
cb:0f:bb:d6:b8:0f:ca:4e:76:47:92:fc:7a:e0:17:
4d:05:48:c8:81:27:83:0f:20:79:3c:b3:aa:45:86:
95:2e:89:f2:25:f7:ab:3b:0a:83:f0:0d:bc:e3:fa:
d5:58:d0:7f:fe:d7:13:dc:29:09:5a:cf:9d:e8:3d:
66:b3:2c:7c:c2:05:04:c4:fd:98:06:bc:97:98:98:
55:38:d7:39:52:e0:06:ca:1b:10:53:81:f7:13:82:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0F:55:8E:6A:DE:E6:E3:4A:3E:0A:7D:FF:7A:A6:6D:C9:3A:AB:E3
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/pg9Vjmre5uNKPgp9_3qmbck6q-M.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
8f:76:f7:92:2c:0c:c1:53:24:66:5b:35:b4:84:bd:67:79:99:
76:49:2a:ec:22:98:35:78:f8:9d:c1:2a:93:3e:6b:31:51:eb:
b0:38:ba:3e:55:a2:6c:45:99:64:f9:98:99:79:b6:4f:92:8e:
37:79:ad:8e:90:45:22:51:64:47:74:a2:bd:22:94:1c:59:e8:
70:94:48:8c:03:76:a1:f7:5a:61:b9:b6:17:d1:d9:d9:89:90:
b1:d4:19:1b:2b:2f:39:fd:52:ad:98:67:6b:79:ad:f9:1f:e9:
9d:0d:aa:01:f3:56:2f:3c:7b:32:3d:99:25:4b:fe:2c:04:27:
fb:89:69:1b:cc:d6:af:ca:38:12:ef:f7:9d:85:35:7e:13:cd:
59:08:93:be:bc:75:53:19:94:41:57:92:56:05:f9:4a:51:a5:
e7:b4:9d:3d:6c:7f:92:8b:dd:bf:ee:9f:10:57:c8:0b:2b:c8:
b9:e1:a3:51:ae:32:1b:58:13:19:f5:c7:fc:3e:e2:a6:17:37:
b6:da:4b:15:26:24:8c:e6:a6:4d:9e:06:0d:cd:12:30:0d:76:
ae:e6:39:43:ac:b5:fb:5d:5b:64:72:f0:58:5f:c3:f9:21:b8:
fd:06:61:3d:2c:83:1b:37:ce:1a:8e:90:43:4d:42:be:91:3b:
bc:29:dd:81
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:31:45 2025 by rpki-client