Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/dobOv5aYZB_59O1ok-_z8SZKWrg.roa
File: dobOv5aYZB_59O1ok-_z8SZKWrg.roa (raw, json)
Hash identifier: REusiEYEkrwSnk7IHNpZ6iyoPFKQd24qq+tTWVLz/Pg=
Subject key identifier: 76:86:CE:BF:96:98:64:1F:F9:F4:ED:68:93:EF:F3:F1:26:4A:5A:B8
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 05B6
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/dobOv5aYZB_59O1ok-_z8SZKWrg.roa
Signing time: Sat 18 Jan 2025 18:54:46 +0000
ROA not before: Sat 18 Jan 2025 18:54:46 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1462 (0x5b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 18 18:54:46 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=7686CEBF9698641FF9F4ED6893EFF3F1264A5AB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:32:00:a8:28:ed:14:25:3c:50:3b:47:2d:c9:
44:be:27:18:89:b6:93:24:c8:59:d0:e1:1c:7f:db:
2e:a1:95:43:42:8c:ac:7c:74:2c:a6:41:b3:d1:56:
53:4f:b4:ed:29:68:58:10:e8:8d:0b:66:5b:93:67:
28:5d:e1:41:a3:6f:3e:57:16:82:ba:eb:40:8a:2d:
75:a2:15:6a:d7:b6:45:d9:75:ac:b5:67:56:db:e3:
06:ee:74:81:c4:4b:aa:eb:7d:c1:af:bd:e8:fe:c0:
44:23:6d:4b:72:4a:87:64:2d:f2:f5:57:5c:38:39:
1d:96:6f:38:ce:29:46:53:9f:61:f9:b1:6d:a2:6f:
92:d8:59:23:dd:eb:39:49:31:8a:e0:72:ac:af:16:
d4:ea:16:17:4c:56:b4:ce:89:d7:f4:fb:12:44:b6:
c8:92:23:79:29:e0:f7:df:78:00:9c:3d:b1:0a:6d:
a5:60:74:5c:28:b5:b8:6c:5f:4a:cb:c0:21:5f:58:
57:ae:aa:79:aa:1f:63:5b:da:88:b4:d1:d6:a9:ef:
a8:d6:c5:3e:7e:9d:70:ec:10:f5:e7:89:99:af:c6:
fb:cb:24:bf:64:79:05:64:e7:2d:58:3f:bb:a0:82:
55:d6:66:1f:68:9d:86:33:06:21:ad:19:3d:7a:30:
3f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:86:CE:BF:96:98:64:1F:F9:F4:ED:68:93:EF:F3:F1:26:4A:5A:B8
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/dobOv5aYZB_59O1ok-_z8SZKWrg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
9f:49:95:6c:e8:d9:81:2e:50:26:b5:68:3f:90:f5:21:a9:24:
c4:dc:db:62:5e:4f:ef:0c:c4:86:fc:fe:d2:de:8d:5a:14:5e:
31:ce:6c:4d:af:6b:96:3f:10:72:de:e0:45:fe:28:37:d3:80:
2d:30:83:8a:95:97:e9:13:9c:dd:fd:61:0c:06:89:e8:59:ba:
15:3e:d4:2f:e9:c2:63:76:43:96:ed:53:95:f6:92:49:bd:ca:
03:b9:a8:62:a8:c7:5e:73:8b:78:36:02:6d:8b:5a:e2:39:39:
3f:9e:00:4b:31:60:68:79:5b:58:76:91:16:03:ac:c6:63:52:
66:2c:a2:d9:a3:51:97:39:a8:1c:20:ea:ce:bb:72:47:fa:62:
15:90:c0:a9:b4:8b:14:78:48:02:13:75:06:9a:6b:bb:b3:19:
f7:67:79:d0:80:5c:54:f8:69:25:8f:e1:62:06:de:12:d6:31:
46:88:32:14:da:c4:f4:f1:af:3f:c7:09:6e:38:56:5f:32:6b:
34:c2:e2:b4:78:0c:70:f0:35:62:bf:39:5d:98:64:66:a5:85:
4a:3e:62:0c:b1:db:f5:85:a5:a2:33:47:ac:64:e0:da:22:7a:
32:77:fe:ae:21:6c:f9:33:50:d3:ff:8f:05:c3:0c:4a:03:fb:
5b:38:70:c1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:19:33 2025 by rpki-client