Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/UoMCUOXdpTRwGyMVROyarWHU4Dc.roa
File: UoMCUOXdpTRwGyMVROyarWHU4Dc.roa (raw, json)
Hash identifier: anPpIqkwDCB2ijBsTvroJAs/F/gdvgJCat26BX1cGAQ=
Subject key identifier: 52:83:02:50:E5:DD:A5:34:70:1B:23:15:44:EC:9A:AD:61:D4:E0:37
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0D1C
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/UoMCUOXdpTRwGyMVROyarWHU4Dc.roa
Signing time: Fri 07 Feb 2025 12:25:51 +0000
ROA not before: Fri 07 Feb 2025 12:25:51 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3356 (0xd1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 7 12:25:51 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=52830250E5DDA534701B231544EC9AAD61D4E037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7f:63:c1:1b:1b:ce:92:0d:35:46:09:64:99:
8e:48:84:4d:f4:2b:f6:b6:59:f9:e9:9c:33:5c:0e:
39:4f:4a:2f:5c:39:91:77:16:fa:f4:bf:9f:d1:b4:
96:cc:2f:55:68:8e:a8:55:c3:eb:6c:06:07:b7:1f:
d7:4e:88:4d:6d:68:85:6b:b5:c1:4b:4a:34:f9:7c:
88:df:66:37:29:f1:fd:e0:df:e1:f4:75:bd:43:d6:
15:51:f0:00:a8:4c:56:de:cd:ca:41:50:71:22:34:
49:1c:05:a3:39:58:41:2d:f2:1e:c6:49:d2:63:b4:
b2:ca:24:86:bb:49:fb:6e:f5:2e:b8:e9:ef:c1:1a:
77:7d:c9:86:23:d5:1d:5c:40:0f:82:3b:65:53:e3:
3c:b4:2e:ae:b7:34:be:1a:90:88:a2:d3:51:6b:4e:
af:94:53:a6:ff:c7:e6:ad:ef:59:d1:20:a8:c3:af:
2e:0e:df:ec:8f:88:4c:4d:18:f4:2a:db:55:43:3b:
be:4a:89:cd:db:5d:28:17:57:eb:c3:ef:8a:af:cf:
42:8c:85:04:59:93:dc:65:76:1d:47:f6:f6:a1:8d:
fa:63:ee:f7:b1:86:82:99:50:9f:27:1e:11:92:dc:
12:a7:fd:63:51:cc:3e:12:9a:1e:01:1d:4c:7d:c3:
83:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:83:02:50:E5:DD:A5:34:70:1B:23:15:44:EC:9A:AD:61:D4:E0:37
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/UoMCUOXdpTRwGyMVROyarWHU4Dc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:ba:3b:90:01:ae:75:da:dc:4f:1e:d0:bb:24:53:27:7e:6c:
fd:77:8c:29:5c:30:c6:f1:61:ef:65:9f:fa:09:3d:f6:6d:8f:
bc:b9:cc:90:56:c8:35:22:c4:30:0a:89:a8:b2:d4:88:88:9b:
a2:73:dd:ae:82:22:c2:a5:f8:9b:66:0a:5c:de:f2:e6:38:36:
d4:83:b5:73:2c:b7:7c:e5:98:1a:8a:fd:c7:a5:e6:0e:be:1b:
ff:24:17:a1:89:11:5d:9e:63:be:51:b1:db:48:76:77:6f:87:
e2:e8:4b:42:3c:88:70:c8:91:b8:ce:1c:6c:ab:3c:0b:76:8a:
2e:40:50:1c:7f:ae:13:df:d0:67:f4:bf:2f:94:0b:af:ca:13:
51:a1:f4:12:cc:7c:f1:83:26:44:c6:50:06:76:11:b9:12:ad:
91:ef:46:94:57:22:50:2a:1f:df:e2:3f:fd:42:de:a8:ce:39:
55:18:46:3c:05:b4:b3:b2:47:68:c4:5a:db:30:54:a9:11:4d:
11:db:2c:a4:0a:a7:9c:be:ae:75:23:77:f7:64:47:5c:09:15:
44:9b:d3:db:4d:61:49:e1:6b:3d:12:18:72:d2:2e:6d:fb:e6:
c2:c2:db:6e:c3:dd:7b:bf:8d:e2:e4:ab:ca:56:58:06:49:61:
15:5c:1b:85
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:52 2025 by rpki-client