Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/AfUf_XlZOwrjp34rhaWVwzjVJeg.roa
File: AfUf_XlZOwrjp34rhaWVwzjVJeg.roa (raw, json)
Hash identifier: dUTVvVatvju86HxTCp5F5dA+VmI8Usowr7+6b3BiYlQ=
Subject key identifier: 01:F5:1F:FD:79:59:3B:0A:E3:A7:7E:2B:85:A5:95:C3:38:D5:25:E8
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0CF2
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/AfUf_XlZOwrjp34rhaWVwzjVJeg.roa
Signing time: Fri 07 Feb 2025 01:57:42 +0000
ROA not before: Fri 07 Feb 2025 01:57:42 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3314 (0xcf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 7 01:57:42 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=01F51FFD79593B0AE3A77E2B85A595C338D525E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3c:e4:f3:93:d6:6a:10:fc:b1:9e:01:77:1b:
c7:6e:ad:8e:f2:4e:d7:97:b9:5b:59:df:dd:8d:f3:
d4:18:e4:a2:37:cd:31:fa:f4:ac:ce:f2:5b:e1:24:
fb:d7:03:8d:56:d0:ce:b6:1f:c6:41:de:3e:74:87:
e1:14:3c:19:fd:31:66:7b:59:65:50:75:2d:82:7b:
c4:78:aa:1a:5c:c4:a0:fb:dc:5e:5e:90:2f:8d:26:
59:56:9f:a6:62:1e:62:7d:dd:03:85:2b:ce:c5:9a:
23:e2:d3:5a:bc:60:fe:c0:b9:bb:b5:a2:72:50:8d:
d1:a4:06:d7:9b:af:85:6f:83:02:e2:ef:64:b6:65:
cd:34:fc:0b:f4:77:90:41:b2:f5:da:68:51:f7:f5:
78:5d:a4:b6:f0:7b:cc:e8:39:74:d7:83:88:3d:b4:
f5:96:58:60:e4:90:4b:ba:d6:f5:65:30:3e:40:21:
ba:89:56:a0:47:10:f8:8b:89:3f:f0:81:7e:d2:05:
1a:7e:82:5e:ee:25:9b:b2:2a:d4:d8:e3:66:7a:8a:
e0:99:87:ea:f9:c1:15:23:4d:d8:d3:31:95:16:72:
f0:07:1b:62:c1:66:f9:3a:84:e8:f3:75:16:ac:98:
8f:cf:d1:8c:4f:ff:5b:2f:04:ce:2f:58:70:92:b2:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F5:1F:FD:79:59:3B:0A:E3:A7:7E:2B:85:A5:95:C3:38:D5:25:E8
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/AfUf_XlZOwrjp34rhaWVwzjVJeg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
a3:a7:7f:ed:68:78:25:6c:0b:0b:1d:2f:a9:20:fd:00:ad:30:
1d:36:73:50:54:95:9e:d3:7b:d9:f5:40:c0:84:22:f4:2e:98:
6b:63:ef:98:a1:41:62:d7:34:7f:65:37:61:4e:61:93:89:8f:
12:c3:77:cc:af:29:02:c6:ae:03:ce:fc:69:5e:c4:0b:3a:12:
ee:d6:a5:e6:f5:69:64:f3:0c:b2:7e:df:ed:02:35:0a:e0:7d:
cf:59:78:db:61:ef:81:5d:34:b3:43:41:b0:04:39:6a:cd:62:
94:00:31:ad:7a:16:83:4e:06:9c:58:08:c7:f4:32:16:82:34:
7c:5f:d2:aa:33:51:95:87:3a:4e:00:47:74:50:9e:c8:93:a3:
f0:64:14:fb:f3:1c:d8:a3:de:cb:52:96:a8:49:59:1e:cb:8a:
50:2a:cb:ff:c3:73:e9:0e:b0:fc:88:fc:82:97:b9:fd:8d:e0:
65:ed:b8:84:d9:22:68:94:2b:39:bd:16:c1:81:84:1a:c9:22:
e5:5a:10:b7:b0:6c:17:29:c2:56:12:9c:5d:a4:0e:08:f2:35:
04:a7:77:25:35:f3:c2:a3:f1:98:11:0a:d1:60:71:8e:18:7c:
5b:f3:e1:55:f5:0c:b3:94:83:17:a4:1a:84:2b:af:a7:47:03:
38:c7:8f:e5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:34:51 2025 by rpki-client