Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/8-nv0UQvy3xaKlEQ5abBHnLiv30.roa
File: 8-nv0UQvy3xaKlEQ5abBHnLiv30.roa (raw, json)
Hash identifier: ij2bVLm1pL/4goS6gI9+L9lOUD1iDm91tISbQ6Hc17I=
Subject key identifier: F3:E9:EF:D1:44:2F:CB:7C:5A:2A:51:10:E5:A6:C1:1E:72:E2:BF:7D
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0906
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/8-nv0UQvy3xaKlEQ5abBHnLiv30.roa
Signing time: Mon 27 Jan 2025 14:55:18 +0000
ROA not before: Mon 27 Jan 2025 14:55:18 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310 (0x906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 27 14:55:18 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=F3E9EFD1442FCB7C5A2A5110E5A6C11E72E2BF7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:17:ab:c7:4a:ef:cf:20:ad:67:d6:db:3b:f8:
30:3c:ee:2b:27:78:d0:5c:4a:27:f4:c3:ae:2c:b7:
8b:a7:5f:16:a7:b4:8c:00:c1:08:11:d6:05:23:8c:
04:be:0e:75:89:25:e7:39:c8:84:31:96:6c:c0:71:
32:bb:56:8a:a8:04:b9:2e:52:4d:b9:dd:a8:f1:bd:
d2:ac:37:88:cd:ae:79:5c:cd:25:6d:75:23:5b:3b:
b3:e3:be:aa:ed:41:be:7a:df:77:3f:89:16:28:a9:
47:3e:2c:d8:40:2c:d4:9c:1e:11:2c:6f:3d:98:5d:
21:ce:85:b9:79:ee:e1:70:78:a7:d3:8d:46:05:f2:
96:66:b5:a5:2d:81:c5:82:e4:3b:ca:6b:76:26:5f:
ee:63:fd:47:1a:2b:40:21:c6:4b:59:b8:4e:d3:59:
2a:7e:e9:6e:9f:e2:e0:13:9d:b6:61:51:69:d5:29:
a8:3a:95:33:9e:e8:ac:9f:e5:12:81:9e:cd:2a:e6:
d7:65:9f:62:75:c9:dd:b3:7b:fd:9f:57:c7:df:f1:
90:26:2d:ad:4d:fe:30:b6:64:1b:06:dd:38:31:e0:
33:95:40:17:d1:ff:b3:15:05:15:32:f4:8e:be:72:
23:c3:37:0b:cb:08:b5:2d:6f:a1:88:25:b7:9e:37:
d7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E9:EF:D1:44:2F:CB:7C:5A:2A:51:10:E5:A6:C1:1E:72:E2:BF:7D
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/8-nv0UQvy3xaKlEQ5abBHnLiv30.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:bd:e3:e7:25:1e:c7:2d:04:72:ec:a7:10:3c:09:67:8a:35:
bb:0a:3d:cb:bf:dd:9c:64:e0:57:86:ce:5e:16:b4:2c:e4:61:
5b:d6:76:0d:d2:3c:ba:cf:c9:2d:45:b9:b9:a3:de:88:3b:06:
22:ac:48:2c:c2:58:5b:7a:b8:84:d5:79:64:83:d2:5c:d0:f7:
9b:c0:57:22:1f:74:c1:3e:47:06:70:50:e5:53:e3:80:19:12:
cd:e9:2a:1b:2f:f4:bd:3c:93:7c:41:2e:02:ef:15:f9:fe:9e:
56:b0:d6:80:89:ce:d5:bb:fe:01:2d:6d:70:33:13:57:d3:6f:
0f:01:33:a8:a5:3e:b8:ef:6b:af:07:92:b6:38:a7:54:29:1f:
d3:59:57:8d:aa:6b:4e:ef:17:13:20:7a:75:d1:49:08:1c:71:
fa:a2:d9:bd:c5:27:06:f7:53:c7:23:0e:5c:5b:d6:57:2f:60:
10:da:28:28:47:be:8a:e5:78:0a:9c:79:0b:87:c0:99:83:98:
8c:c7:fd:f2:5c:bb:d1:71:1d:f9:11:21:14:ba:ae:46:d9:e8:
6b:17:be:1d:f3:3d:1d:ef:4d:cc:e3:80:65:ef:9c:c5:78:3e:
49:3d:43:e2:bf:6f:c3:24:2d:83:4c:77:1b:ff:e1:b8:06:ed:
a4:ab:b3:3e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:47:15 2025 by rpki-client