Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/JtlFDYtld452gAKcimR5xRdWN4U.roa
File: JtlFDYtld452gAKcimR5xRdWN4U.roa (raw, json)
Hash identifier: 4xv86ZL3gSLcdIHmfDe+vli6NPZOfK3HqYm0XwcTPqY=
Subject key identifier: 26:D9:45:0D:8B:65:77:8E:76:80:02:9C:8A:64:79:C5:17:56:37:85
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 06E2
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/JtlFDYtld452gAKcimR5xRdWN4U.roa
Signing time: Tue 21 Jan 2025 21:55:34 +0000
ROA not before: Tue 21 Jan 2025 21:55:34 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1762 (0x6e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 21 21:55:34 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=26D9450D8B65778E7680029C8A6479C517563785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c7:29:56:e5:8e:61:53:04:91:ff:36:42:9b:
29:ea:91:7e:3f:5a:98:b3:9e:f5:10:ec:04:b9:e8:
c3:eb:98:8e:43:8a:c3:e5:a1:9a:18:37:5e:35:fe:
4a:9f:75:f9:9a:81:fe:43:79:9c:c9:6d:05:4a:a0:
60:b1:2d:75:09:06:95:53:10:be:f3:8b:0f:21:5e:
86:f0:dc:53:21:f3:61:4e:a1:bf:b4:74:d1:f3:bb:
b9:d7:c1:59:81:af:a2:6b:1d:d7:d1:94:d7:b8:d6:
1b:01:b3:d8:8f:71:a9:bc:fc:f6:2b:1c:d4:d7:86:
6d:ac:39:04:99:7c:9d:7e:d2:d5:f0:0f:9e:ea:59:
2a:d2:b4:2f:62:5c:e1:75:7f:22:2e:cc:93:57:87:
06:d3:d7:c9:b2:24:10:19:20:8d:bb:a0:54:2b:a2:
52:5f:05:fa:c9:f5:f1:10:ef:ed:f6:b1:11:6c:60:
e1:39:76:08:4b:ff:57:30:0a:bd:fa:e8:8d:b4:9e:
3d:b3:e4:66:b2:1c:06:59:85:e2:c9:92:84:37:ca:
f9:2a:db:a7:56:0b:b1:be:cb:fe:04:5b:09:9f:fe:
b2:53:0e:45:09:9a:20:42:10:28:dd:cd:69:fc:e1:
bc:ae:c4:21:b9:14:ac:58:0d:c4:4f:1a:2a:72:2a:
fc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D9:45:0D:8B:65:77:8E:76:80:02:9C:8A:64:79:C5:17:56:37:85
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/JtlFDYtld452gAKcimR5xRdWN4U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
03:e9:41:53:de:e2:97:a1:1d:1e:87:4e:a1:5a:1c:c4:06:69:
3b:5f:df:d9:ed:8a:3a:c1:86:d8:55:ab:99:1d:b0:9a:af:27:
5f:89:7c:72:67:9b:86:1a:c2:96:11:7c:c5:5d:a0:35:65:52:
43:6f:6a:61:4e:2d:1f:9b:28:db:a0:40:61:ad:29:80:64:d2:
57:1b:bb:af:8c:2e:1d:b9:1f:d0:b8:8c:19:40:20:6c:c0:17:
6b:8a:6b:bf:ed:f2:e5:95:b4:c6:e0:87:b5:f3:c3:48:76:74:
33:3b:27:6a:df:8d:71:3c:f1:d4:75:cc:8f:c6:b0:50:72:24:
70:e4:d7:32:6e:2f:3f:19:1c:40:75:e8:44:ba:08:65:34:58:
d4:ed:b5:2b:b5:75:0b:39:a7:e5:22:db:6f:5d:fe:6c:2c:0a:
de:05:b3:8c:d1:56:e6:e6:0e:08:47:fc:6f:cd:9e:c1:3f:03:
c9:a5:7d:f7:60:5d:c4:7d:31:91:b4:b3:92:54:43:62:94:9c:
15:e8:49:f2:8b:bb:e3:da:76:17:dd:e2:f6:33:07:54:9f:a3:
f4:3f:76:0a:71:23:05:ca:cf:65:99:71:7b:a8:b6:a2:23:5e:
5b:e0:b8:fb:14:40:31:a1:d9:08:51:d6:38:4f:67:31:64:bc:
ea:17:9e:8c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:42:48 2025 by rpki-client