Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/K0zM8Bh5V4khX5om1ApfzpM6QZE.roa
File: K0zM8Bh5V4khX5om1ApfzpM6QZE.roa (raw, json)
Hash identifier: fqDi1mqqRtnpdg8yi9w8qNvAy1qo3GQH4uSXTtkBl88=
Subject key identifier: 2B:4C:CC:F0:18:79:57:89:21:5F:9A:26:D4:0A:5F:CE:93:3A:41:91
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0CE8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/K0zM8Bh5V4khX5om1ApfzpM6QZE.roa
Signing time: Thu 06 Feb 2025 23:25:46 +0000
ROA not before: Thu 06 Feb 2025 23:25:46 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3304 (0xce8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 6 23:25:46 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=2B4CCCF018795789215F9A26D40A5FCE933A4191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:59:4a:44:50:f7:45:3d:65:01:28:12:af:15:
53:8e:4b:69:18:99:a9:01:d2:9d:6e:d1:b2:0a:62:
5a:90:29:e7:65:3f:7f:7c:bd:45:ea:1e:b7:3f:c9:
2a:ed:2d:ab:d8:39:82:06:81:af:4c:f2:8c:56:f7:
f7:ae:97:9f:59:86:f1:7e:db:f4:57:df:11:77:3d:
96:cc:c1:be:60:10:d2:44:50:04:3a:67:ba:86:57:
f8:b9:5d:c4:37:b5:f3:8b:59:6d:ad:54:d8:22:29:
05:0a:c7:7a:f0:dd:6a:04:ea:79:0f:92:d9:0c:34:
e6:3e:63:6b:dc:3e:0f:a7:26:4c:aa:14:5f:0f:2a:
da:84:55:4b:e7:49:2e:53:59:e7:66:50:c4:0a:98:
e6:85:e4:1a:ec:81:01:95:03:2c:de:84:1c:0b:06:
66:b4:89:cc:db:49:ca:bc:80:a9:95:37:24:6c:d9:
d5:f4:e5:60:b3:ef:72:89:37:32:88:23:c0:19:af:
a8:e6:8d:5f:97:a9:ad:93:6a:d0:b3:61:78:1b:90:
ce:58:75:7f:28:fd:68:27:93:53:21:0e:f6:0d:e9:
fe:c8:f9:d2:fa:da:0c:2a:00:44:3a:42:25:4b:19:
70:cd:46:65:37:39:25:4c:41:0b:54:6b:91:75:4a:
3c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4C:CC:F0:18:79:57:89:21:5F:9A:26:D4:0A:5F:CE:93:3A:41:91
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/K0zM8Bh5V4khX5om1ApfzpM6QZE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:e5:50:dc:fc:51:66:4e:cd:4e:76:ea:5f:1b:2a:74:a4:aa:
43:a8:22:4d:d2:98:0f:9b:73:0e:ba:9e:4b:43:d4:33:e0:8a:
74:6f:c0:8b:0f:f4:28:44:89:20:05:ca:53:ca:3e:99:80:8c:
c5:fc:02:ec:fb:b1:45:af:5e:3a:83:66:f2:32:74:e6:be:eb:
f6:4a:62:0e:69:0e:e3:68:65:6c:e4:95:12:b0:9d:e1:ef:83:
f3:38:8c:28:ff:cd:a7:45:79:18:40:db:56:b3:62:5d:60:6a:
80:6e:2a:5e:97:73:e2:19:21:25:c5:7b:5b:6d:c8:fc:51:3f:
39:08:1a:6d:c6:a2:c9:41:43:66:ed:fa:35:45:49:96:77:1f:
f1:99:15:01:bb:b9:5b:d1:cf:fc:a8:e8:fe:4e:57:c3:c2:69:
37:1d:65:78:b6:33:a1:b7:b1:38:ed:56:f8:81:67:83:81:e2:
04:62:9e:34:f3:d0:12:e8:24:f0:f3:27:1e:fa:b8:4a:e8:d8:
76:79:0a:b4:0f:6e:55:27:cb:24:1b:ad:9a:a8:90:41:2f:6d:
0b:64:d1:ec:28:05:b9:05:d4:cd:47:2d:d0:23:6a:f4:67:82:
77:79:0f:69:c1:e5:6a:4c:66:97:fc:89:0e:d2:61:cb:dc:9c:
b3:d1:c3:8d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:39:44 2025 by rpki-client