Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/_wDMJnTXq8pSNUopZaTRf2ycZWQ.roa
File: _wDMJnTXq8pSNUopZaTRf2ycZWQ.roa (raw, json)
Hash identifier: i3yGq40M57VuZ7Q1RR+vRV0zxBaa6pIWvf/v4bW24do=
Subject key identifier: FF:00:CC:26:74:D7:AB:CA:52:35:4A:29:65:A4:D1:7F:6C:9C:65:64
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0127
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/_wDMJnTXq8pSNUopZaTRf2ycZWQ.roa
Signing time: Mon 15 Jul 2024 06:29:34 +0000
ROA not before: Mon 15 Jul 2024 06:29:34 +0000
ROA not after: Wed 21 May 2025 03:30:10 +0000
asID: 2914
IP address blocks: 113.31.0.0/21 maxlen: 24
113.31.8.0/21 maxlen: 24
113.31.16.0/21 maxlen: 24
113.31.24.0/21 maxlen: 24
113.31.56.0/21 maxlen: 24
113.31.80.0/22 maxlen: 24
113.31.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295 (0x127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jul 15 06:29:34 2024 GMT
Not After : May 21 03:30:10 2025 GMT
Subject: CN=FF00CC2674D7ABCA52354A2965A4D17F6C9C6564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:21:0d:1b:ca:10:83:08:4c:d4:a7:81:1f:
95:9d:d1:c6:18:66:22:0a:e6:73:22:19:be:3b:d5:
94:94:9e:14:a6:49:a0:5d:7e:23:db:d4:75:7d:57:
8d:b2:a4:f6:ad:ba:5b:a2:cb:05:29:c1:77:30:8b:
50:de:42:ec:c9:d4:68:dd:04:7f:ee:ee:08:38:51:
43:1a:50:6d:d8:a2:fe:f6:87:4c:db:e9:ef:12:c5:
ed:5c:c0:1d:bc:77:e1:83:21:1a:54:8d:3a:f3:d0:
ed:20:4a:8f:6c:a3:44:46:82:7c:31:62:60:44:ef:
7f:70:43:98:60:24:c4:27:f2:96:6b:2a:54:51:da:
ba:0f:4a:88:fa:ec:ef:a8:dd:4a:9e:39:0d:50:18:
fc:ee:51:15:f5:bb:a2:2c:d5:da:68:4f:4c:1b:57:
d2:c5:ed:16:ba:f0:17:9d:ac:df:b3:b7:e7:60:8d:
44:68:30:43:b6:e5:7e:aa:dd:d3:14:ec:5c:84:c7:
97:0d:4c:a4:9e:59:74:f0:07:3e:ec:83:49:bb:91:
24:99:3f:f0:c2:5a:e0:a8:d4:42:8f:66:10:31:a0:
c2:c9:b3:10:7d:65:7a:e9:ff:96:7b:c5:9a:bb:a8:
c3:a7:de:38:7d:78:09:9f:d2:ef:93:c1:d5:c3:ce:
59:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:00:CC:26:74:D7:AB:CA:52:35:4A:29:65:A4:D1:7F:6C:9C:65:64
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/_wDMJnTXq8pSNUopZaTRf2ycZWQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.0.0/19
113.31.56.0/21
113.31.80.0/21
Signature Algorithm: sha256WithRSAEncryption
46:b3:a0:0d:37:ef:ac:69:40:fd:94:99:3f:00:f6:3f:95:cf:
93:f3:0d:b0:76:f2:e2:05:e2:e8:bb:78:1d:8f:2b:f1:da:54:
cc:23:4c:e5:ed:f3:20:e7:fd:5a:af:0b:43:48:59:ce:13:a8:
dc:fc:2a:ce:3d:c3:d9:0b:76:59:8c:42:f2:c4:aa:27:a3:3e:
c0:56:24:a9:b5:0f:1a:7d:88:49:c3:36:1e:f4:b6:fa:16:e8:
4d:51:ae:42:4d:63:31:ab:fa:8a:25:80:21:6c:d3:fc:9e:1f:
99:e9:0e:b0:8e:08:5e:53:31:f3:76:a8:b2:a1:2c:6e:c3:0b:
37:bc:42:78:50:5c:17:c3:3e:a6:d2:56:10:37:45:b9:a5:d3:
d6:9f:7a:82:3e:18:f2:c8:60:d5:70:4e:75:4b:fd:92:f1:ab:
a7:58:67:c3:9e:19:cf:31:1d:b3:05:ba:b8:5b:a9:38:8b:c7:
33:37:89:79:ac:3e:b3:7f:31:a7:a0:56:65:e3:fa:1b:e7:af:
9c:87:b7:78:c5:3c:2c:2f:c7:1b:54:02:89:36:13:59:28:cd:
a1:67:28:ec:48:89:b3:ca:c6:6a:90:33:80:58:d5:03:9c:8c:
64:11:bd:7b:eb:74:bb:5d:d4:35:51:cb:6c:0b:1b:bd:c2:13:
24:f0:b8:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:47:30 2025 by rpki-client