Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/AjVwUUU9Lo5TOWhZyuzkxVWFr5M.roa
File: AjVwUUU9Lo5TOWhZyuzkxVWFr5M.roa (raw, json)
Hash identifier: RMmSJhFTv0VYVkl7PJS7KjiSn9/VoCMp0LDF27HC/DI=
Subject key identifier: 02:35:70:51:45:3D:2E:8E:53:39:68:59:CA:EC:E4:C5:55:85:AF:93
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0B7C
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/AjVwUUU9Lo5TOWhZyuzkxVWFr5M.roa
Signing time: Mon 03 Feb 2025 04:25:37 +0000
ROA not before: Mon 03 Feb 2025 04:25:37 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2940 (0xb7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 3 04:25:37 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=02357051453D2E8E53396859CAECE4C55585AF93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f5:1b:37:a6:2c:14:cb:16:8d:f1:e7:cb:39:
16:5d:72:e2:2f:da:95:b0:59:2b:9f:9e:f1:f4:78:
d1:6e:32:f1:d1:63:25:42:64:23:a1:51:16:1a:79:
ea:a5:2a:1b:a4:a7:65:d6:b3:e7:24:e9:90:c8:b7:
0f:d2:64:6c:7e:f2:74:e1:08:24:ce:5c:eb:83:d3:
d9:c9:a1:ec:16:ae:2b:bb:78:da:be:2c:11:59:09:
c9:0a:1d:cb:5d:a9:1f:be:b6:fd:52:1a:a9:0c:06:
1b:b1:5b:c6:31:4e:33:ad:a1:a6:f5:b5:8f:58:c1:
0d:96:cb:71:fc:34:a0:20:2b:da:da:b5:b5:d9:f9:
bd:19:d5:9d:9d:be:2f:90:7e:22:9c:de:53:1e:27:
a9:dd:42:5f:40:9f:ac:82:d1:04:90:e8:59:13:09:
bd:b3:16:a1:8e:83:19:cf:5b:bc:da:9f:6d:95:a4:
3a:68:8a:8b:f4:b0:56:4e:3b:db:6d:cd:e9:d9:47:
5b:86:f2:3e:63:09:a1:4a:20:ca:8d:73:61:46:ab:
be:5e:5e:7b:0e:6b:29:c1:2c:8a:c2:a4:13:0a:84:
e1:0e:21:cc:29:0d:a2:af:04:90:36:19:cb:85:ee:
fd:a7:3c:14:65:b7:4a:c8:63:6f:e7:33:ed:1c:5b:
f4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:35:70:51:45:3D:2E:8E:53:39:68:59:CA:EC:E4:C5:55:85:AF:93
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/AjVwUUU9Lo5TOWhZyuzkxVWFr5M.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
65:f3:d1:85:70:c5:1d:67:13:c9:94:ee:99:48:e9:ce:f2:2c:
20:a7:d6:d4:27:56:32:77:b3:a0:b8:ca:d5:2e:6e:df:75:12:
75:e3:f2:76:d5:15:9c:81:0f:5f:63:b8:7d:41:71:03:3d:28:
3c:28:43:ed:76:69:50:95:b4:f9:27:a8:85:19:99:4d:e5:b5:
d1:d7:bc:1d:f4:c8:c6:15:7e:99:22:99:9d:f4:01:6b:82:6b:
eb:ac:b9:db:01:68:08:d2:68:3d:5f:c0:3f:24:bf:6f:bb:fc:
ad:49:78:b6:19:f8:b8:1d:06:3a:79:f2:db:7a:b5:42:ec:d0:
be:84:d4:ba:7f:7b:be:7a:4d:22:0d:84:8f:4e:28:ab:31:cd:
fa:9b:cc:03:81:3e:f4:0d:2b:b6:fe:2f:b8:f6:ba:05:89:6e:
a1:31:32:1f:b4:b4:e9:b6:6e:16:60:08:e0:76:97:ec:47:ff:
94:2a:dd:34:6b:bc:e6:6e:90:b3:b6:9e:0d:4a:9d:6c:88:40:
1c:f9:a6:e6:93:10:d2:66:c4:b4:c9:1d:d6:26:18:96:ba:3c:
cc:e2:35:5b:9d:10:ca:92:eb:c6:1f:11:20:98:81:90:30:a3:
8b:5c:ff:8f:bb:c1:4c:eb:c2:f2:f2:2d:7c:fe:2b:1d:a5:d7:
d7:e2:83:06
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:33:25 2025 by rpki-client