Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/4HjlgAiS9GxrtUitjIu37-bUzQA.roa
File: 4HjlgAiS9GxrtUitjIu37-bUzQA.roa (raw, json)
Hash identifier: w7scCKlVD4iWOsOhd4rc8i/i7LldZa7VtIHWjoYo/Wc=
Subject key identifier: E0:78:E5:80:08:92:F4:6C:6B:B5:48:AD:8C:8B:B7:EF:E6:D4:CD:00
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0D42
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/4HjlgAiS9GxrtUitjIu37-bUzQA.roa
Signing time: Fri 07 Feb 2025 21:55:52 +0000
ROA not before: Fri 07 Feb 2025 21:55:52 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3394 (0xd42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 7 21:55:52 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=E078E5800892F46C6BB548AD8C8BB7EFE6D4CD00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:25:1b:d8:c0:dc:7c:5a:f9:d5:4b:53:df:99:
10:79:60:07:d2:9a:86:67:31:62:c1:48:f0:3f:2f:
7c:bd:34:d8:2b:a8:a0:7f:2e:ff:2d:c5:3e:08:1b:
77:33:e8:ad:51:b1:6b:57:c1:0a:09:95:b2:9c:d7:
d7:65:6b:f2:12:df:f6:90:12:b3:85:71:77:8b:ef:
a9:d4:e7:d8:3a:9e:16:f6:8c:53:8b:e8:24:10:24:
68:72:62:1e:65:84:d2:0b:1e:ab:69:a3:9b:db:c2:
54:96:2a:8b:4d:91:f3:b0:30:cf:f5:78:c8:27:5d:
ff:5d:88:82:c3:8f:26:30:32:ac:e3:8b:bd:84:5d:
44:89:d5:d4:7b:a7:98:98:9c:40:bd:6e:8d:a4:9d:
6b:fb:12:ec:bd:28:a8:c8:c2:95:5b:4e:0c:1f:5b:
26:a5:b9:a5:04:85:9e:32:dc:05:a6:32:43:b7:48:
9d:1f:99:62:a6:14:cd:f2:ef:6e:3a:d1:80:84:cd:
cf:54:8b:35:3a:f7:b4:f8:d2:4a:30:f2:38:d0:e8:
7e:d7:26:31:de:45:e2:85:38:51:e3:14:62:54:e7:
03:a5:32:b2:3c:27:57:18:43:55:0a:54:1a:7a:3e:
d7:ec:e4:a7:a9:ce:9f:d0:73:00:60:c1:ea:f4:c0:
fa:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:78:E5:80:08:92:F4:6C:6B:B5:48:AD:8C:8B:B7:EF:E6:D4:CD:00
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/4HjlgAiS9GxrtUitjIu37-bUzQA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:bf:e6:a5:62:bc:fb:dc:bc:d9:22:25:1b:a9:99:e5:31:1a:
2f:27:1b:8e:f0:96:b2:00:8b:2e:1b:2e:59:0a:47:57:3b:80:
91:46:ab:e5:0c:f8:71:fe:bf:6b:c7:45:1b:91:58:b1:68:d4:
94:75:e7:19:ab:65:59:b2:32:16:92:68:04:ac:e8:21:09:68:
40:e8:16:5c:00:00:d0:c2:14:42:9a:b2:f4:f6:da:0d:aa:a2:
b6:c1:cf:51:fa:b8:95:ea:b6:b2:71:99:9e:f9:ea:76:46:f8:
28:ab:4c:ce:80:4c:d1:38:4d:ca:af:78:51:1b:66:dc:b1:86:
bc:d4:20:28:7e:03:bf:f7:61:92:b4:93:6f:80:19:2b:52:21:
55:95:ae:ec:80:64:0d:0c:84:df:9e:0e:9f:d4:ad:19:e0:50:
70:5b:44:d4:89:01:38:61:28:80:3b:b5:b7:72:ad:fd:31:bf:
31:12:27:da:46:7e:fe:6a:7e:c8:37:cb:0d:d2:c2:69:07:49:
76:f3:66:93:59:15:41:70:ba:39:90:1e:9c:4d:e6:c1:a6:55:
2d:0f:24:f6:ab:61:0d:22:7e:e1:f8:64:d7:ec:81:1f:90:66:
3a:97:c3:95:8e:f4:85:fb:bb:7d:2a:78:7b:e6:9b:28:7c:11:
2f:e7:3a:a1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:21 2025 by rpki-client