Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/geR0sdYDHh_Gwi94_p0HNivpZA8.roa
File: geR0sdYDHh_Gwi94_p0HNivpZA8.roa (raw, json)
Hash identifier: mfd1FTwEpuE3Wvux1oO0SV/vL0enfpB9rq11XXDmIX8=
Subject key identifier: 81:E4:74:B1:D6:03:1E:1F:C6:C2:2F:78:FE:9D:07:36:2B:E9:64:0F
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0AE8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/geR0sdYDHh_Gwi94_p0HNivpZA8.roa
Signing time: Sat 01 Feb 2025 15:25:37 +0000
ROA not before: Sat 01 Feb 2025 15:25:37 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 1 15:25:37 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=81E474B1D6031E1FC6C22F78FE9D07362BE9640F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:25:6b:1b:4a:3a:76:a7:4f:5b:2b:5e:c2:45:
1f:17:bf:b1:2b:74:c4:67:06:ef:35:e1:71:62:73:
a8:b3:4a:ed:4b:ac:39:88:30:4a:48:80:37:3d:71:
36:09:bd:c9:1a:2a:09:ff:b1:73:53:f5:21:f1:ed:
1f:f1:8f:48:5f:8f:5f:a8:10:8a:53:0a:62:6c:1b:
3c:08:2c:ec:31:49:61:30:41:cd:b9:61:60:eb:e4:
c6:33:b5:a5:57:fd:08:19:6b:e6:21:08:9a:94:c4:
95:7d:8a:5c:2e:3e:4d:88:90:1f:95:d6:8a:bc:0f:
6a:5d:0e:72:40:34:df:2e:5b:58:b7:01:e7:40:ca:
d4:0e:c3:aa:ac:b7:08:c2:4d:1e:94:5b:91:7c:38:
7d:e5:32:da:84:80:d1:7e:43:bb:b9:05:e1:70:47:
8d:5d:cf:09:1e:5e:09:c9:30:8c:0b:fb:96:da:26:
31:99:ab:87:72:92:c3:93:b5:2b:2b:d9:44:af:2c:
88:c2:57:d0:3f:35:c1:61:ee:e9:cd:58:f1:40:c7:
44:d7:0b:58:83:1f:3b:08:42:04:b3:20:b7:80:4f:
25:95:41:a1:f7:43:fd:94:c1:e6:51:ac:e7:54:20:
90:0e:3c:3f:59:f8:b3:17:ab:5e:bd:2f:51:6a:7e:
ba:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E4:74:B1:D6:03:1E:1F:C6:C2:2F:78:FE:9D:07:36:2B:E9:64:0F
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/geR0sdYDHh_Gwi94_p0HNivpZA8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
5f:d6:e6:f8:02:1e:54:1f:d4:04:02:39:83:97:f6:37:ee:3b:
6b:13:97:a0:3f:9a:c3:87:ef:8a:80:b7:c0:93:e0:66:f8:6b:
fb:c2:dc:66:6b:43:33:3e:ff:a5:28:2a:a3:9e:1a:3b:55:02:
5d:24:34:d5:2b:e8:d8:6c:a4:f4:a9:05:2b:e0:f1:53:f8:17:
b0:65:b9:dc:8a:ba:10:79:01:f6:b2:7b:76:2c:7d:7c:00:be:
21:76:f5:59:31:2b:53:0c:dd:35:96:34:11:d4:72:3e:32:2f:
5f:49:40:49:68:27:84:44:0f:94:dd:e5:31:c8:20:d4:9a:5f:
36:50:2a:a2:f3:3b:26:fe:a0:ae:f6:b3:3f:f8:81:01:57:ab:
8c:17:38:d7:a7:c5:32:87:06:56:99:65:40:86:82:b8:43:58:
a0:86:2a:10:01:1a:c7:9e:c9:ec:b1:84:03:57:6f:50:a7:1a:
0f:a3:44:f6:0c:e0:fe:b6:f1:3e:f8:cd:c4:4f:52:08:66:21:
10:7a:54:66:2e:5c:9c:d6:3e:8d:f7:10:2f:69:b3:97:40:e2:
07:33:66:d5:69:60:c6:56:d8:3a:5f:92:ef:f8:08:ca:21:c5:
cf:0f:8a:c8:1b:e2:36:52:9d:a8:60:e5:48:03:96:3e:5b:65:
43:8a:90:c4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jun 4 02:12:46 2025 by rpki-client