Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/PhBa-3IOPKtVyk_peFsb3IZPLzw.roa
File: PhBa-3IOPKtVyk_peFsb3IZPLzw.roa (raw, json)
Hash identifier: N9Pr4ATGtQU4nnkZHc9IWy0JAEnfEbRRRr6Y6ongxMI=
Subject key identifier: 3E:10:5A:FB:72:0E:3C:AB:55:CA:4F:E9:78:5B:1B:DC:86:4F:2F:3C
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0B48
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/PhBa-3IOPKtVyk_peFsb3IZPLzw.roa
Signing time: Sun 02 Feb 2025 15:26:17 +0000
ROA not before: Sun 02 Feb 2025 15:26:17 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2888 (0xb48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 2 15:26:17 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3E105AFB720E3CAB55CA4FE9785B1BDC864F2F3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:58:b7:26:f8:1b:1f:78:87:42:04:4a:e0:83:
59:1e:87:23:a7:3d:42:c3:d9:13:92:43:77:1a:09:
4e:be:cb:91:2c:de:f1:a4:74:1a:55:1b:fd:dd:3d:
d9:02:08:99:95:f5:68:6b:67:8c:2c:aa:62:e7:b6:
32:e2:a3:c3:45:ba:b2:9b:e0:77:5a:87:40:fc:6d:
5f:ef:fa:97:e5:7d:ea:5b:13:b7:51:46:1c:b0:c0:
e6:70:08:37:86:6f:e9:9b:90:1d:28:12:38:24:e4:
eb:66:f9:91:5c:53:14:39:0d:8a:33:48:4f:e3:7e:
d1:d5:4d:66:16:49:d1:95:a6:15:2e:36:4f:d6:3f:
8f:6a:dd:cb:da:49:85:a8:37:c7:3d:71:02:55:9d:
28:85:a2:d2:42:02:15:15:c0:55:88:dd:c3:60:35:
9f:66:1f:79:1a:12:f1:57:d3:de:3d:7c:ae:14:3e:
2a:f4:9a:1b:68:ca:b0:84:e3:3f:7c:51:ba:dc:87:
29:9a:13:d9:93:75:f7:db:9b:4d:e1:97:53:42:9f:
a2:30:b3:3a:e3:e9:30:38:82:14:c7:6e:49:bf:29:
71:c7:33:bb:1c:9e:88:57:21:0e:4c:96:43:c6:79:
ad:7a:5f:12:23:2f:e7:ff:17:73:d1:e5:f6:39:6a:
2e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:10:5A:FB:72:0E:3C:AB:55:CA:4F:E9:78:5B:1B:DC:86:4F:2F:3C
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/PhBa-3IOPKtVyk_peFsb3IZPLzw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
33:f9:6d:24:32:8a:b7:e8:8c:75:84:93:43:bd:70:c8:1f:f7:
00:9c:50:5f:86:7f:1e:f7:5f:87:cf:28:c1:61:23:42:45:61:
84:63:70:89:ed:91:f5:56:86:1b:fc:cc:95:f1:13:a3:4c:94:
17:c0:5b:00:a8:fa:76:42:ed:5d:df:8f:4a:68:80:8e:fb:3f:
bb:b9:1f:33:f4:37:6c:26:aa:59:fe:81:51:ab:fa:fb:11:73:
3e:b4:5e:63:1e:0d:8a:6d:a2:1c:b5:39:9f:2c:18:12:c4:45:
66:ec:5d:09:84:38:be:03:60:f0:59:89:30:83:1b:5e:45:c0:
39:01:ce:da:dc:9d:d5:e9:3a:99:af:02:22:72:14:be:23:6b:
d9:9e:80:fc:b3:a7:3c:5d:4a:bb:35:11:72:3e:48:b2:28:38:
83:3e:bf:42:fd:5f:11:c5:f1:cc:06:ec:fb:10:38:9f:01:0b:
b7:93:ff:42:e3:3f:33:25:a9:7f:f1:0d:2d:5d:c9:ae:4e:fb:
c4:38:26:ae:eb:8d:04:c6:6a:f9:b8:1f:f5:a7:7c:74:97:90:
f2:8c:df:df:f7:c9:9d:71:95:ce:de:6c:35:7c:d7:49:79:1b:
0a:21:90:7a:b9:66:ea:e5:61:27:61:9f:a0:d3:60:c0:5a:4a:
b4:dc:42:3b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:41:19 2025 by rpki-client