Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/2HLw8okxzzcqqb1SCpUkqj_iv1Y.roa
File: 2HLw8okxzzcqqb1SCpUkqj_iv1Y.roa (raw, json)
Hash identifier: OOaxqMo5UD+Qtpvnm4iYDVNbVWu9CBOtWpE1oYQBDtc=
Subject key identifier: D8:72:F0:F2:89:31:CF:37:2A:A9:BD:52:0A:95:24:AA:3F:E2:BF:56
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0B80
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/2HLw8okxzzcqqb1SCpUkqj_iv1Y.roa
Signing time: Mon 03 Feb 2025 05:25:38 +0000
ROA not before: Mon 03 Feb 2025 05:25:38 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2944 (0xb80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 3 05:25:38 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=D872F0F28931CF372AA9BD520A9524AA3FE2BF56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f5:a3:cf:23:77:f0:90:b8:1a:4d:3e:47:6d:
b0:87:79:2a:38:77:86:1e:84:2d:1d:8d:e4:44:51:
8b:a8:ca:76:8e:44:8b:bb:d7:c4:c9:f8:53:6f:4e:
ea:b3:66:5a:8e:63:2d:e9:08:70:35:a8:b1:13:cf:
5e:03:8b:f4:b5:ab:22:ad:f8:3e:96:db:07:11:fb:
58:39:3f:47:48:42:ae:da:bf:a4:ed:7e:aa:f4:38:
9e:94:ad:9b:27:ed:c4:b3:a6:6f:93:a6:68:b3:9b:
dc:74:e3:42:d2:d7:ad:b4:1e:56:30:1a:ad:ad:50:
3e:df:d7:9d:81:84:25:69:9c:10:0e:b4:a6:35:45:
39:07:02:42:3e:94:22:bc:ef:df:63:ca:04:ba:fb:
7d:10:a6:32:73:1c:85:6e:e9:83:9d:70:e6:36:97:
23:6c:15:7e:85:b8:fd:54:60:e8:a7:fa:6c:8d:94:
db:cb:12:f7:07:e7:a9:16:7a:72:a0:7d:e9:cf:5a:
86:af:08:5a:1a:e6:70:fa:09:b0:fc:97:c3:91:b8:
31:5e:d7:3b:94:18:76:7c:69:36:b8:0b:d1:09:02:
60:a2:bf:f0:b8:af:96:38:5c:7c:ad:99:71:da:bd:
e9:8b:d8:4b:79:87:ba:b5:c3:be:a1:06:f1:df:9b:
f1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:72:F0:F2:89:31:CF:37:2A:A9:BD:52:0A:95:24:AA:3F:E2:BF:56
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/2HLw8okxzzcqqb1SCpUkqj_iv1Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
50:5f:0e:8a:2b:0b:62:d9:2c:84:28:8d:dd:a7:d3:12:25:84:
6e:e7:2a:e0:e4:99:66:81:08:bc:0f:1d:80:00:5d:7f:73:38:
00:80:ec:64:f0:59:28:23:da:cd:0b:8d:6c:60:cf:e4:07:42:
8f:72:0c:19:fd:06:fa:46:f5:8b:df:82:1c:15:12:5f:09:f5:
38:26:d3:51:67:28:85:0d:16:c4:2d:97:1b:3f:ba:b3:5b:89:
71:59:25:c8:ef:5a:5b:30:38:d1:9c:12:3e:4d:38:dd:06:b1:
7e:59:41:ab:b8:3f:3b:54:1d:65:ca:40:dc:5a:61:ca:1c:b8:
4b:0f:da:81:5c:d6:33:c7:60:5c:4e:25:d3:02:1f:c7:76:b3:
e3:a2:c4:a0:5f:2e:df:c4:92:7b:c6:1a:c4:52:f5:32:7e:80:
69:8f:e9:cf:f4:5d:2b:26:72:df:a0:f7:c8:29:66:16:32:cb:
1e:d3:ae:7d:4e:24:3e:ec:c7:8e:e9:70:e7:da:4a:8f:36:5d:
54:76:70:3f:4d:43:3d:c1:4b:8a:00:d8:99:3f:b2:ee:42:8c:
a2:0f:12:1c:b5:cb:8e:57:c6:b8:95:59:bc:fc:b2:1e:94:66:
1f:6d:f8:cc:fa:57:31:af:c1:b9:1b:78:0e:55:bc:45:93:fe:
fc:0c:20:ce
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:48:20 2025 by rpki-client