Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/NnWTSl-H2hczhdzY506WIBUGbbo.roa
File: NnWTSl-H2hczhdzY506WIBUGbbo.roa (raw, json)
Hash identifier: CsmgC496Y8iq6s9QUug55evg8IdZXQE3nVOeyYcpXXI=
Subject key identifier: 36:75:93:4A:5F:87:DA:17:33:85:DC:D8:E7:4E:96:20:15:06:6D:BA
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 04F8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/NnWTSl-H2hczhdzY506WIBUGbbo.roa
Signing time: Thu 16 Jan 2025 19:24:40 +0000
ROA not before: Thu 16 Jan 2025 19:24:40 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1272 (0x4f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 16 19:24:40 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3675934A5F87DA173385DCD8E74E962015066DBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:45:69:7f:38:db:a8:95:a1:08:c9:a3:d8:42:
61:d0:79:b7:91:8b:e5:f2:aa:20:80:83:86:ce:cd:
f3:93:c7:6c:5d:8e:52:6a:13:df:5d:97:02:7c:93:
2d:02:b7:bc:a2:36:7e:b0:e9:2a:95:5c:8b:85:e9:
fd:42:78:ee:8f:39:9c:a6:b2:bf:aa:ce:6e:84:02:
42:f2:b0:aa:f6:88:b5:f4:87:ae:9e:1c:da:8a:0b:
85:4c:45:d6:c8:5b:07:cf:80:e8:ce:b3:b9:64:ce:
58:04:9b:f5:b3:23:0b:53:91:cc:9f:73:21:ef:a9:
21:86:0f:7d:4c:8d:17:5e:a6:59:2e:70:e8:c7:f1:
e4:fc:da:77:61:62:14:a4:75:19:9c:6a:1f:82:63:
f9:0d:f9:7d:d9:a6:87:03:9f:92:b3:df:4a:18:bb:
a9:34:77:a0:61:98:67:6f:ee:67:35:77:f4:a0:de:
d6:6d:50:ec:48:af:13:28:e1:75:85:d7:68:30:cb:
08:6e:fb:dc:0f:21:46:9f:a2:b6:c4:70:88:8d:a2:
78:3b:fa:64:ed:12:7c:a9:0d:88:92:d7:bf:92:da:
e2:91:cf:20:8a:9e:64:9c:0c:09:a4:71:63:a0:04:
63:48:5d:4e:f6:e3:f4:a3:4d:8d:b8:93:48:c1:6e:
2f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:75:93:4A:5F:87:DA:17:33:85:DC:D8:E7:4E:96:20:15:06:6D:BA
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/NnWTSl-H2hczhdzY506WIBUGbbo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
90:e4:ef:b1:3f:0e:e8:2b:50:3d:5c:f7:49:96:70:a9:70:30:
a7:2e:2e:e1:c5:31:a5:88:86:6b:d9:4a:69:0b:ae:bb:60:d3:
57:e6:5f:b8:bf:ce:95:d7:94:7b:19:58:06:c3:27:09:cc:91:
6f:27:6f:9e:d5:c9:82:86:83:4a:2c:a1:35:ee:c6:14:f9:aa:
1d:79:56:9a:01:3d:50:d1:27:e6:c8:70:04:c1:41:c3:e6:ab:
f3:35:ab:34:58:73:50:a0:5c:e0:91:c3:be:8a:2c:3c:11:52:
c0:9d:5a:8f:2e:93:6c:24:50:44:9a:61:35:f7:62:dc:c6:d5:
07:1d:21:d0:ac:92:ce:54:dc:00:12:5f:f9:63:ed:62:82:ca:
67:49:91:af:3f:12:e1:95:ce:97:5b:ea:ea:41:b4:8d:06:43:
3e:bc:e0:2b:66:d9:54:c6:91:f0:a3:48:fd:b0:a6:bb:ef:bd:
8d:de:74:9a:a6:e1:4b:cf:a7:8d:a1:d2:d4:a5:60:6b:f6:be:
4b:09:11:67:da:ce:0f:a6:c1:eb:2d:e2:87:d6:7d:57:66:36:
00:b7:28:e8:a0:29:70:2e:7f:5b:e0:88:35:ec:ed:3a:c6:28:
57:e9:33:40:da:54:ee:4a:25:ac:34:63:70:06:65:a4:28:6f:
05:c9:46:d0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:44:21 2025 by rpki-client