Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/ZajWuELDan4oISlPEl52UaZAAyA.roa
File: ZajWuELDan4oISlPEl52UaZAAyA.roa (raw, json)
Hash identifier: zBczmgxAThjSQjxhsdWCNlMmqfnYQ5Rr+H/IKX87s24=
Subject key identifier: 65:A8:D6:B8:42:C3:6A:7E:28:21:29:4F:12:5E:76:51:A6:40:03:20
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0588
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/ZajWuELDan4oISlPEl52UaZAAyA.roa
Signing time: Sat 18 Jan 2025 07:24:45 +0000
ROA not before: Sat 18 Jan 2025 07:24:45 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1416 (0x588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 18 07:24:45 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=65A8D6B842C36A7E2821294F125E7651A6400320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:15:d8:df:f4:89:a4:dd:3a:5f:71:1a:14:39:
4d:b2:d9:f0:e5:19:0c:c6:10:6c:2d:79:81:46:c4:
23:93:d2:3d:59:74:c7:43:f6:b2:44:1b:b7:dc:38:
69:f8:fd:d5:d4:db:18:f7:c7:bc:1f:7f:2e:e8:c2:
7d:7d:93:3f:d8:22:e2:77:ed:0a:af:09:bd:21:61:
73:17:e7:76:12:5f:9c:13:91:e7:75:16:bd:24:c8:
8d:1a:8b:36:71:87:dc:a5:0a:ff:f5:64:c2:ab:2c:
5f:6b:60:b3:43:79:17:9d:28:7c:5c:a0:a4:b5:98:
a3:5b:bf:f3:79:55:75:7d:fa:cf:c9:b7:51:a6:73:
58:e2:83:8a:38:f8:08:2c:19:a4:97:4e:d1:ee:84:
b7:74:05:f7:ed:2a:e8:95:54:d7:f5:ba:48:a3:38:
97:5e:21:bc:d2:d1:c9:0e:66:8c:a1:98:bd:56:59:
ee:53:5f:b7:be:6b:90:df:96:05:f3:ca:7f:ea:2d:
f2:53:fe:43:ff:18:5b:2a:4f:23:22:b6:5c:ca:13:
20:45:7a:cc:dc:2c:9f:22:40:a9:46:b1:fd:35:f4:
80:ab:4f:06:ab:39:7e:90:3a:a6:61:07:f8:a9:6a:
70:dc:c1:97:a3:51:84:c0:5c:62:47:bb:4e:c5:38:
a3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A8:D6:B8:42:C3:6A:7E:28:21:29:4F:12:5E:76:51:A6:40:03:20
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/ZajWuELDan4oISlPEl52UaZAAyA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
27:27:bd:6b:3b:b1:f9:62:58:68:c8:26:d9:aa:7a:52:82:94:
41:31:44:dc:4f:96:60:10:74:c6:14:da:1a:09:d5:44:c6:4a:
e6:9f:3f:e0:6d:c7:c8:9c:60:55:a8:89:6d:c3:c3:45:9e:36:
48:df:d6:96:e6:2e:05:de:5c:ce:e1:af:16:54:48:df:a3:16:
3c:86:42:44:cd:b2:59:f4:b2:5c:f9:dc:d7:3d:a5:c6:e9:a4:
15:bf:79:ea:39:eb:09:45:32:8f:d2:b3:48:48:4d:99:03:aa:
62:ab:f8:16:cf:76:5f:60:1d:e1:2f:62:cc:46:22:b8:e4:e1:
98:99:d0:ce:d9:70:e9:a4:43:6f:58:ca:f4:aa:60:9f:00:05:
d1:a5:4f:7c:70:8a:06:ba:83:87:37:0d:b6:58:f0:17:13:5d:
4b:ea:47:7d:1f:69:c3:11:0b:65:00:ca:4a:fa:b2:ec:2a:6f:
d8:4e:fb:b3:71:70:17:1a:ee:3e:2f:46:ae:da:19:6c:aa:66:
25:ad:ce:ef:e5:86:a4:55:37:69:5b:63:8f:08:76:c5:f1:2a:
36:cd:c3:14:2e:ff:82:66:29:b5:b6:e9:2c:c0:73:75:01:5a:
2b:bf:e3:b6:38:a0:c6:a0:6c:b3:b0:d7:9e:a4:19:a4:00:ae:
12:65:54:8a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:44:36 2025 by rpki-client