Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/YqaJANxN3jMDGdf8C2He5K9n85Q.roa
File: YqaJANxN3jMDGdf8C2He5K9n85Q.roa (raw, json)
Hash identifier: NvUJFb9NOavyIrS3K76AL6qbD6fPkbZzhOZav01dEao=
Subject key identifier: 62:A6:89:00:DC:4D:DE:33:03:19:D7:FC:0B:61:DE:E4:AF:67:F3:94
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0DDE
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/YqaJANxN3jMDGdf8C2He5K9n85Q.roa
Signing time: Sun 09 Feb 2025 12:55:54 +0000
ROA not before: Sun 09 Feb 2025 12:55:54 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3550 (0xdde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 9 12:55:54 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=62A68900DC4DDE330319D7FC0B61DEE4AF67F394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a4:3e:60:40:cb:07:ee:1a:4a:75:93:c0:80:
88:37:b9:7b:69:5c:c8:a7:c6:28:f6:8d:ac:56:af:
e4:6c:0a:40:f7:9c:68:02:09:82:38:9b:13:2d:2b:
8b:33:51:46:1f:65:2e:e8:78:28:d2:33:8e:7f:ff:
60:df:6e:d9:29:77:d3:77:09:55:38:ff:33:7c:0a:
0a:80:5a:55:58:21:33:94:0a:2b:33:bb:29:a2:b2:
12:c6:d5:36:0c:67:e9:15:39:7d:be:e6:19:54:51:
d3:72:ca:d8:b0:31:95:9b:79:6d:ef:a9:23:9b:3a:
b9:78:6f:db:bf:94:8b:aa:25:d5:e3:74:b4:bd:f6:
be:7c:34:97:cf:c9:64:66:a9:d7:f7:a9:9d:ef:22:
1c:37:e8:ea:7f:ff:12:db:93:ea:e6:1c:18:b2:8d:
db:50:ed:17:68:ea:89:25:03:34:39:50:6a:97:21:
8a:85:6e:d8:55:a3:a7:36:76:6a:db:e9:79:64:a0:
de:a9:ee:7a:c5:e4:e7:3d:1e:28:8c:ca:5e:a4:60:
6f:c8:bb:38:44:4c:e5:5d:09:95:04:6a:cc:ce:4d:
42:61:27:4f:8a:92:85:c8:6b:b3:76:18:59:e1:07:
63:9e:70:88:06:4d:d5:53:9b:7a:c9:e0:c9:5c:53:
43:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A6:89:00:DC:4D:DE:33:03:19:D7:FC:0B:61:DE:E4:AF:67:F3:94
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/YqaJANxN3jMDGdf8C2He5K9n85Q.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
17:d0:81:72:50:68:23:10:d5:74:a5:af:8d:ec:10:f8:d1:14:
6b:6d:22:2e:ac:0d:aa:2d:14:be:24:b7:4c:6e:7d:b2:57:3d:
b6:19:77:de:2c:77:03:81:69:da:92:c1:2b:23:50:1b:ad:eb:
94:c8:fc:ac:4c:00:95:f8:cf:0c:b7:b6:4f:f3:cc:3c:cf:a7:
60:10:69:9f:99:20:51:95:14:0d:3c:c1:a9:d9:c9:b6:39:49:
03:bf:79:5f:bb:74:a1:ee:b8:47:89:dc:97:18:e8:ed:a9:39:
b8:43:40:76:6a:ef:0e:3f:2b:b0:95:0d:bf:96:29:4b:d4:fb:
b0:9d:fe:33:42:27:59:e1:21:ea:a0:2b:08:bf:84:76:88:43:
23:91:18:69:ef:bf:fd:43:ba:71:b8:31:22:99:fd:8d:92:98:
f3:ea:c2:1f:be:f9:02:0d:d5:a5:51:06:50:e8:be:4f:09:4b:
81:71:d2:74:5c:44:fe:3c:73:a3:41:e6:25:f0:26:c2:ec:90:
78:ed:4a:ac:dd:90:27:16:88:6e:63:5c:d2:6a:51:2c:62:9c:
56:6d:41:11:3f:a5:85:0b:b0:b3:a1:aa:fb:ee:14:1b:55:35:
21:9a:1f:7f:a0:d9:fd:4e:7f:a3:23:b8:c4:c0:02:05:9a:4e:
b2:8f:ce:cc
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICDd4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3
MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNTAyMDkx
MjU1NTRaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDYyQTY4OTAwREM0RERF
MzMwMzE5RDdGQzBCNjFERUU0QUY2N0YzOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChpD5gQMsH7hpKdZPAgIg3uXtpXMinxij2jaxWr+RsCkD3nGgC
CYI4mxMtK4szUUYfZS7oeCjSM45//2Dfbtkpd9N3CVU4/zN8CgqAWlVYITOUCisz
uymishLG1TYMZ+kVOX2+5hlUUdNyytiwMZWbeW3vqSObOrl4b9u/lIuqJdXjdLS9
9r58NJfPyWRmqdf3qZ3vIhw36Op//xLbk+rmHBiyjdtQ7Rdo6oklAzQ5UGqXIYqF
bthVo6c2dmrb6XlkoN6p7nrF5Oc9HiiMyl6kYG/IuzhETOVdCZUEaszOTUJhJ0+K
koXIa7N2GFnhB2OecIgGTdVTm3rJ4MlcU0M3AgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUYqaJANxN3jMDGdf8C2He5K9n85QwHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF
YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw
L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL1lxYUpBTnhOM2pNREdk
ZjhDMkhlNUs5bjg1US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD
BARxH0ADBARxH4AwDQYJKoZIhvcNAQELBQADggEBABfQgXJQaCMQ1XSlr43sEPjR
FGttIi6sDaotFL4kt0xufbJXPbYZd94sdwOBadqSwSsjUBut65TI/KxMAJX4zwy3
tk/zzDzPp2AQaZ+ZIFGVFA08wanZybY5SQO/eV+7dKHuuEeJ3JcY6O2pObhDQHZq
7w4/K7CVDb+WKUvU+7Cd/jNCJ1nhIeqgKwi/hHaIQyORGGnvv/1DunG4MSKZ/Y2S
mPPqwh+++QIN1aVRBlDovk8JS4Fx0nRcRP48c6NB5iXwJsLskHjtSqzdkCcWiG5j
XNJqUSxinFZtQRE/pYULsLOhqvvuFBtVNSGaH3+g2f1Of6MjuMTAAgWaTrKPzsw=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:42:49 2025 by rpki-client