Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/rkVDf_0JXYZeANLPg57jDimBSfU.roa
File: rkVDf_0JXYZeANLPg57jDimBSfU.roa (raw, json)
Hash identifier: wMTu4QxlQor7Y3SnDLCM1kGZohIWpWe4PIhkx1ZMqWU=
Subject key identifier: AE:45:43:7F:FD:09:5D:86:5E:00:D2:CF:83:9E:E3:0E:29:81:49:F5
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 05D8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/rkVDf_0JXYZeANLPg57jDimBSfU.roa
Signing time: Sun 19 Jan 2025 03:26:18 +0000
ROA not before: Sun 19 Jan 2025 03:26:18 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1496 (0x5d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 19 03:26:18 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=AE45437FFD095D865E00D2CF839EE30E298149F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b5:52:d1:12:9e:15:4b:fc:c5:7d:78:b5:f1:
9d:94:e1:e1:8c:c4:b2:5e:65:39:38:0f:6c:29:27:
17:94:dd:92:86:89:72:18:19:9b:db:d3:b1:32:a4:
94:74:82:92:d0:a1:7c:55:7e:9d:87:15:cc:84:ac:
95:1f:ba:77:2b:e0:ea:d8:a9:c7:b0:8d:25:d8:46:
b6:02:72:07:bc:95:f2:6b:58:8f:ac:3a:ed:43:52:
49:22:7f:90:27:9c:21:f8:89:6b:9d:d9:da:89:62:
3b:d1:37:b6:8f:28:87:1e:0a:bd:f1:1d:53:3c:11:
50:b4:31:6f:f5:ee:6d:64:e4:31:0c:61:59:98:36:
a7:10:50:a9:09:b7:e0:b3:67:9e:98:a8:fd:8d:54:
d3:c3:ca:71:60:bb:a6:91:45:da:2a:9d:6a:25:61:
5d:4b:29:67:10:61:0a:2f:40:34:e3:02:62:62:59:
b7:b5:04:6b:81:6d:5e:26:dd:29:14:33:85:4e:a8:
2b:ff:4a:85:dd:6b:97:0d:5f:fa:1e:65:9a:93:e8:
d5:c7:c7:ce:5d:cc:70:c3:78:b9:c2:1f:2a:ee:e0:
28:99:b2:4a:2c:68:b5:b2:77:4d:ce:74:8f:63:b5:
76:bf:7a:be:52:09:ee:7b:4e:ec:19:82:ad:a5:e2:
05:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:45:43:7F:FD:09:5D:86:5E:00:D2:CF:83:9E:E3:0E:29:81:49:F5
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/rkVDf_0JXYZeANLPg57jDimBSfU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
44:d4:67:c3:01:7d:54:38:4d:db:2e:35:85:af:85:7f:e1:83:
06:71:6f:5c:f3:dd:6b:6b:c0:e3:45:5d:12:a2:82:0c:8b:d2:
d5:f0:91:d7:73:62:70:6a:07:8e:2e:72:e8:5e:33:91:23:83:
5d:1b:4b:cc:e2:0d:01:ed:46:ce:37:92:28:22:24:83:ed:cb:
d0:80:ee:42:be:f6:b3:4f:1c:62:1f:d2:50:0c:e0:9d:8c:ac:
af:f6:8f:81:51:a0:e9:8d:92:54:5e:94:f3:49:66:1d:2e:45:
98:ba:9a:95:03:d4:e0:ba:83:ab:83:a7:7b:0d:d8:bd:b6:df:
d3:ea:d9:f0:4b:51:a8:ec:68:22:92:08:de:f0:5d:fd:41:ff:
43:02:04:1b:46:92:cd:2d:9b:b3:64:23:f5:d4:94:d7:fd:43:
28:8b:c2:df:d4:f1:9f:54:6e:2e:f7:58:21:f9:5a:d7:94:ef:
68:48:83:08:b1:43:29:a0:82:2e:3d:6f:9d:5d:33:c3:b6:72:
92:b6:0d:67:e4:02:4a:1c:f6:b1:db:2f:e5:d3:35:9e:da:31:
f6:bf:1f:36:19:8f:78:01:52:d7:4e:76:2b:b4:3f:ca:10:a5:
5b:f3:f9:2c:64:fb:6e:07:4c:d3:d1:01:14:64:bc:3d:5a:72:
46:0f:32:6b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:22:21 2025 by rpki-client