Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/26EfZ2cKj_kIodnq2XSVRkMENK8.roa
File: 26EfZ2cKj_kIodnq2XSVRkMENK8.roa (raw, json)
Hash identifier: +7IdxJw32EikbHDHgYYzm4GCLFRH1gJcSoU2oYppeZI=
Subject key identifier: DB:A1:1F:67:67:0A:8F:F9:08:A1:D9:EA:D9:74:95:46:43:04:34:AF
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0BA0
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/26EfZ2cKj_kIodnq2XSVRkMENK8.roa
Signing time: Mon 03 Feb 2025 13:25:39 +0000
ROA not before: Mon 03 Feb 2025 13:25:39 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2976 (0xba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 3 13:25:39 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=DBA11F67670A8FF908A1D9EAD9749546430434AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:c9:19:2e:d3:5e:ab:3a:fa:b1:ee:b4:8b:
04:53:e9:2f:e3:d6:d2:c5:00:08:de:82:34:94:3d:
67:49:e1:64:c4:76:c8:0d:c3:ad:30:fd:7a:2e:9f:
a9:cf:26:17:d7:96:a8:e2:80:c2:96:c8:bb:fa:aa:
e2:ff:03:21:63:26:f6:52:2b:52:3b:a7:80:ba:dc:
d8:62:7e:3b:8e:c5:a4:2f:aa:ed:e5:12:bb:eb:4d:
1b:be:3e:20:7b:cd:d4:b1:31:5a:4e:3a:86:fb:7c:
f4:d4:41:16:1e:de:2a:26:b8:da:79:17:03:1d:7e:
dd:ff:1b:39:86:0d:ec:ee:6c:78:1d:f6:65:30:c5:
7a:48:19:f0:47:90:80:e1:d3:b5:82:05:41:0c:ad:
e6:a2:be:75:99:59:f7:9f:77:8e:32:97:ac:8b:ef:
41:60:3f:df:7d:fc:d6:96:53:95:b1:1b:ab:99:16:
b5:5f:e3:93:87:4c:f6:3a:e2:46:e0:e1:ed:8b:b4:
98:56:31:42:dc:64:c8:17:59:a3:a2:68:87:96:17:
84:99:8f:55:43:c5:03:43:cb:73:5a:d9:75:fc:ee:
bd:41:a5:c9:34:1c:77:be:6a:04:dd:31:83:d6:cf:
c9:4b:99:a4:0f:bd:2d:3a:90:f4:29:a0:bc:d5:63:
56:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A1:1F:67:67:0A:8F:F9:08:A1:D9:EA:D9:74:95:46:43:04:34:AF
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/26EfZ2cKj_kIodnq2XSVRkMENK8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
54:cc:af:d6:c0:8b:8f:74:f0:2c:42:26:6b:38:a2:64:22:41:
0e:15:b7:a6:32:20:7c:9f:ef:dc:b0:d5:bb:e4:b2:2d:b8:dc:
8e:04:07:11:aa:26:2f:9d:59:1d:ad:3d:f3:cd:fa:c0:c8:02:
d6:12:33:2f:b3:72:2e:02:32:73:ab:3c:41:da:79:a3:e4:de:
e7:b5:66:4e:7a:81:d9:db:95:d1:ff:57:e1:3f:46:22:3c:38:
45:2c:36:7e:99:3e:59:c3:dc:59:18:3a:3f:55:d9:af:6a:8d:
a3:d4:34:51:6f:5f:80:dc:94:17:df:a5:9d:fe:a8:17:8c:28:
11:8f:0e:7d:cc:91:09:ca:0a:29:81:5f:e0:f1:9d:3d:d8:8e:
dc:82:a7:84:db:1d:13:4b:f6:75:ea:49:d7:d1:f0:9d:c4:44:
36:7e:9f:53:a5:05:60:d4:77:60:f2:0e:ce:76:4b:52:95:ba:
f9:d5:b3:65:8d:f8:a9:7f:e0:d9:bb:8f:0a:7a:f5:08:0c:d6:
87:74:ac:67:f9:9d:a7:d5:32:3b:e6:f0:45:1f:4e:3f:9a:59:
0c:66:29:3c:f4:14:0f:f4:9f:09:d9:eb:e9:52:20:77:62:16:
5a:1b:22:97:08:16:24:7b:fe:44:ff:99:9a:82:7e:52:40:b0:
aa:54:f7:2d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:36:29 2025 by rpki-client