Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/ZmBtvX6AKBxzpoEI4oV4slc-kXc.roa
File: ZmBtvX6AKBxzpoEI4oV4slc-kXc.roa (raw, json)
Hash identifier: eCPZrK0obLrEIYBdC4kAFbyl2enOPNKrBwuYERSUKDs=
Subject key identifier: 66:60:6D:BD:7E:80:28:1C:73:A6:81:08:E2:85:78:B2:57:3E:91:77
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0B4C
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/ZmBtvX6AKBxzpoEI4oV4slc-kXc.roa
Signing time: Sun 02 Feb 2025 16:26:51 +0000
ROA not before: Sun 02 Feb 2025 16:26:51 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2892 (0xb4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 2 16:26:51 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=66606DBD7E80281C73A68108E28578B2573E9177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:08:c1:37:c6:3c:7e:8b:a3:e8:a5:b6:e2:98:
a1:51:c8:9a:31:83:47:2a:29:3b:2c:e8:b1:6c:63:
70:b9:07:ef:fe:53:c7:10:4d:27:58:39:ef:b9:41:
6c:0e:54:3f:ee:62:55:57:9c:e8:c9:12:b9:d8:6e:
21:e7:41:15:df:e9:3f:7c:84:e7:d7:3b:8a:1b:2e:
52:89:f4:cc:9a:24:cd:9c:51:e7:ae:0d:d6:fd:4f:
75:b7:7b:88:43:e2:18:67:0f:91:6f:0f:cb:01:d9:
6c:89:23:a3:93:40:dd:41:e3:5f:ba:5f:12:94:8a:
df:e3:f4:cb:de:ee:74:cf:df:a1:50:73:d3:86:1c:
8e:2c:0e:32:c3:24:be:90:dc:8f:9c:fe:7f:32:d1:
b3:85:80:39:79:ca:40:d0:0c:24:46:74:a8:28:5f:
cf:40:6e:61:4d:4f:04:1e:58:9d:1e:97:ee:7a:13:
bd:ca:74:e6:33:14:fb:5d:12:f6:e1:fe:32:ab:60:
a4:e7:35:ac:3d:15:c0:d5:ca:df:75:c8:4d:43:e6:
74:40:7c:c8:09:3c:03:1c:57:75:da:2d:b2:2d:cc:
58:a3:f5:c3:67:32:ea:47:ef:40:6e:07:74:c8:3a:
0a:af:9c:c7:bf:d8:39:2a:50:21:3c:4b:30:b2:95:
5d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:60:6D:BD:7E:80:28:1C:73:A6:81:08:E2:85:78:B2:57:3E:91:77
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/ZmBtvX6AKBxzpoEI4oV4slc-kXc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
79:ea:89:5e:14:1a:0c:b1:e7:e2:da:23:95:cb:66:43:1a:83:
60:bf:1a:f9:b1:f3:3f:8c:de:01:d3:5d:0a:ab:86:4d:41:60:
31:51:26:c1:c5:28:48:ad:65:fe:8a:ae:f3:c4:31:63:9d:06:
5b:19:a9:0a:89:4c:a8:23:3d:5c:6e:9b:98:2d:11:3c:27:50:
41:89:48:ff:65:50:fc:2e:9f:75:b3:ad:5d:ec:8a:02:50:fc:
45:ea:34:91:4a:ae:13:62:22:73:7d:d3:e0:5c:65:28:1b:a5:
08:05:21:2a:7e:4f:e8:1f:9f:7d:f8:a7:41:76:ef:8d:1a:28:
6c:41:7b:fa:66:9c:3f:27:45:60:40:97:ce:80:8a:6d:c6:8c:
94:dd:88:f5:13:52:87:30:f3:91:73:aa:d8:bb:2b:c0:68:5f:
a7:10:e7:6f:63:84:16:7f:88:86:ae:8b:35:c8:28:f8:b0:d7:
ef:97:87:ac:7f:14:2d:52:1d:23:04:53:06:67:95:9e:6b:f6:
53:4d:47:2b:aa:fc:80:c6:2b:d0:a7:ed:b5:61:63:c8:e0:89:
17:bc:29:66:1d:07:4c:f2:ac:55:e1:8c:b3:d0:a9:1f:9a:cf:
a4:97:b5:bb:68:60:40:16:51:1d:84:ce:98:fe:b8:fb:c5:ce:
29:99:94:eb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:47:30 2025 by rpki-client