Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/d8ECsvf2Wxrjx3OMHFd2Q2wN26w.roa
File: d8ECsvf2Wxrjx3OMHFd2Q2wN26w.roa (raw, json)
Hash identifier: N5zwms00Stls3MyTxRFouZOayjDfw9AgbILiEmGlsa8=
Subject key identifier: 77:C1:02:B2:F7:F6:5B:1A:E3:C7:73:8C:1C:57:76:43:6C:0D:DB:AC
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0CA8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d8ECsvf2Wxrjx3OMHFd2Q2wN26w.roa
Signing time: Thu 06 Feb 2025 07:25:47 +0000
ROA not before: Thu 06 Feb 2025 07:25:47 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3240 (0xca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 6 07:25:47 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=77C102B2F7F65B1AE3C7738C1C5776436C0DDBAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:57:5d:a2:5d:52:96:b7:83:83:82:0f:58:dc:
87:a8:65:b0:51:b0:66:b2:e5:22:b8:78:35:dc:1a:
df:ae:88:3d:9f:e8:83:36:da:87:96:56:b3:73:5e:
b1:22:a6:07:e9:91:4c:76:e2:0e:ca:5b:96:0b:69:
af:ec:44:d5:81:38:02:f5:41:f8:b7:0e:fb:16:17:
10:75:01:47:5c:e7:bc:dc:6e:1c:0c:ce:a7:aa:e6:
29:23:99:39:c6:0d:b9:0a:c1:fb:6d:39:ba:c2:28:
f5:c2:39:df:47:d6:e2:e2:31:f0:f0:c1:61:d2:9b:
0d:de:aa:20:6e:d2:f7:7a:64:b9:9a:a0:02:37:98:
17:26:1c:f7:9a:30:d0:22:aa:a7:87:10:73:5a:11:
79:9f:46:73:04:2d:b3:ef:04:cc:13:89:86:59:22:
bf:65:21:0f:6f:87:99:d6:a2:26:f1:87:85:b0:aa:
34:2e:7d:d9:93:9d:dd:47:6d:db:6c:75:e2:22:12:
59:07:61:5e:00:95:57:be:20:7b:ba:58:0a:3c:60:
2b:ec:d7:74:b8:63:e1:98:3e:07:f0:85:d3:d1:fe:
0c:7f:45:dd:56:59:54:eb:1a:26:8a:7e:b4:02:89:
d2:aa:76:7c:05:ab:11:11:2d:e8:56:74:54:b1:37:
78:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C1:02:B2:F7:F6:5B:1A:E3:C7:73:8C:1C:57:76:43:6C:0D:DB:AC
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d8ECsvf2Wxrjx3OMHFd2Q2wN26w.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
77:ab:d1:e6:3e:06:4f:14:db:b4:c2:d9:9d:1c:b7:11:c4:01:
7f:6c:50:5f:64:9b:d8:80:03:61:27:02:8c:c4:29:b5:19:bb:
ec:91:4b:d0:b1:2b:d9:ab:b8:05:41:dd:b3:da:c1:6d:45:34:
a8:d2:ea:78:59:75:fd:2f:19:5f:1d:b5:38:5e:82:e5:4f:5e:
5a:0c:c6:87:46:02:ac:cb:d9:67:ab:99:de:ab:8c:80:70:d4:
74:4e:df:10:13:9f:b2:5f:93:98:cd:fc:6c:23:ad:cc:48:84:
2f:f2:30:75:2a:b9:a9:95:6f:87:b3:ef:da:90:51:a4:a2:1e:
7b:ae:f3:f8:c4:f2:29:47:53:06:d2:12:02:7c:66:60:d8:09:
a1:82:dd:59:f2:45:25:fb:bc:08:40:81:72:ea:e8:09:0e:01:
ce:60:f4:5d:4a:63:a8:36:a5:2b:1c:ff:f5:7f:5b:a7:51:08:
87:9f:87:f2:2e:f6:9a:ac:48:32:2a:56:8a:76:89:df:ef:13:
da:44:d3:f0:45:b7:4b:7e:b2:d2:b7:9a:29:e4:c8:d0:b7:a0:
f7:ae:b8:66:38:bf:95:aa:e0:4e:65:9d:29:79:02:b1:5f:18:
55:6b:81:d0:0c:79:7e:c5:d0:20:db:17:03:2b:d9:b8:d3:de:
d8:f7:c7:a6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:41:31 2025 by rpki-client