Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/9rPsve9GYWE3qD4HKKSHnGAiOI4.roa
File: 9rPsve9GYWE3qD4HKKSHnGAiOI4.roa (raw, json)
Hash identifier: /EfTOpVZ+vZrNSGjWb72r4DdQAbZMHcZmpJjrKNzU6I=
Subject key identifier: F6:B3:EC:BD:EF:46:61:61:37:A8:3E:07:28:A4:87:9C:60:22:38:8E
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 08A8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/9rPsve9GYWE3qD4HKKSHnGAiOI4.roa
Signing time: Sun 26 Jan 2025 15:25:14 +0000
ROA not before: Sun 26 Jan 2025 15:25:14 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216 (0x8a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 26 15:25:14 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=F6B3ECBDEF46616137A83E0728A4879C6022388E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ce:52:d5:62:a8:f1:b6:d2:8d:9c:6a:a8:ce:
aa:29:35:01:19:e1:61:7d:2e:9e:6d:1a:e2:15:a1:
17:1a:f9:ee:21:7b:e1:a6:c9:f9:b0:52:d1:f6:e3:
c2:c2:de:d2:c8:62:36:f1:2a:03:ec:8a:cf:3c:d6:
d2:88:98:0d:3c:54:04:88:de:df:95:46:0f:a2:55:
54:e8:6f:ef:e2:d2:86:2e:92:ad:0f:9e:75:43:65:
5d:bc:ee:dc:d2:e3:e6:4a:04:c9:8c:85:3a:b5:51:
50:9f:f8:5e:24:ed:e8:8b:7d:16:a5:0e:c7:fb:15:
35:1b:7f:ae:87:97:a4:8c:6b:9f:38:5c:05:53:74:
74:2b:6f:82:9f:45:f3:f6:2e:a2:24:2c:34:2e:a4:
4c:e1:8c:88:4c:be:ec:21:49:c9:d2:99:cf:3b:02:
91:33:fe:d3:6c:c8:12:e1:1d:bb:df:4c:e4:2b:c4:
ac:fd:5a:90:80:d1:e9:d2:17:0b:9d:50:c2:72:14:
1d:56:dc:bb:0f:2f:04:59:ef:6c:78:33:6b:ca:f1:
84:9c:29:2d:b9:80:89:2b:d3:1e:8a:b7:91:a9:3e:
c4:a0:13:d8:d2:dc:b3:fb:96:de:43:0b:d2:29:60:
1b:f7:0c:c2:fd:5f:18:fa:a1:ec:ec:c3:e5:ea:67:
0e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B3:EC:BD:EF:46:61:61:37:A8:3E:07:28:A4:87:9C:60:22:38:8E
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/9rPsve9GYWE3qD4HKKSHnGAiOI4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
1c:7d:fe:fb:fb:90:74:71:16:bf:6a:8d:59:8b:e5:64:06:0f:
28:75:1c:b8:a5:9c:3f:14:1f:fe:2f:9b:14:16:f1:97:6c:98:
1a:c1:66:0d:b0:83:42:fa:29:20:3d:91:69:9b:cd:7a:a7:24:
04:55:e8:42:03:09:cb:0f:d9:40:cf:45:45:d9:07:9f:f8:c8:
fc:53:fe:35:35:c5:48:7a:cc:25:6f:25:11:e4:04:1e:02:ab:
f4:3a:64:fa:b3:1c:6f:61:66:a5:27:29:ee:d3:57:67:5e:ff:
14:a2:37:f1:20:0f:77:15:f2:06:78:c3:72:0c:ee:5d:b4:cd:
62:3b:6c:8c:49:37:a2:7f:b6:85:30:ed:4d:07:33:c4:4f:32:
35:70:65:39:de:58:15:2c:f1:d7:6e:d1:28:aa:b4:6f:ff:f0:
b1:af:3b:f5:70:5d:5f:15:15:d5:41:aa:84:16:5c:65:3c:78:
15:36:45:57:31:6f:dd:a4:a6:b8:a4:9b:8c:ca:40:23:ca:25:
da:6b:af:8c:c5:95:7e:0a:88:c3:5f:08:55:24:a4:26:c3:d7:
8f:48:5a:6c:61:6a:b0:3b:09:61:31:50:bf:4e:54:0c:6a:ff:
33:83:5f:b9:96:61:87:59:9a:0b:af:b1:75:88:18:bb:3e:69:
78:54:98:f3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:43:07 2025 by rpki-client