Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/hH5b59vdxcRo_QNdr-bmWQ_u16U.roa
File: hH5b59vdxcRo_QNdr-bmWQ_u16U.roa (raw, json)
Hash identifier: fury3XV+GAh8JvoUXzP9iUVeTuH+PtR54i/UoS5/M+c=
Subject key identifier: 84:7E:5B:E7:DB:DD:C5:C4:68:FD:03:5D:AF:E6:E6:59:0F:EE:D7:A5
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 078E
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/hH5b59vdxcRo_QNdr-bmWQ_u16U.roa
Signing time: Thu 23 Jan 2025 16:55:04 +0000
ROA not before: Thu 23 Jan 2025 16:55:04 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1934 (0x78e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 23 16:55:04 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=847E5BE7DBDDC5C468FD035DAFE6E6590FEED7A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1c:71:7b:d3:e7:de:a7:e0:17:b4:41:dc:1a:
01:e3:f3:04:45:a9:9d:dc:08:0a:7f:35:fe:34:66:
72:1f:27:ee:61:e0:38:94:0e:f3:64:35:6f:cd:44:
ab:72:68:ce:10:2a:76:9f:27:02:89:4c:18:7a:4d:
d9:92:4d:83:d5:e8:8d:47:1a:7c:e8:a7:ae:0a:a6:
2c:b6:6d:9c:62:a6:73:d0:f6:48:a7:ba:e7:fc:5a:
01:87:48:4e:35:ff:7b:cd:c1:94:af:40:f2:7e:1c:
17:ec:db:a9:8d:bf:c9:1a:56:61:d6:00:e5:f9:4d:
22:a9:92:e2:d9:f0:80:0e:1b:79:e4:46:42:8e:3c:
03:fa:f5:16:e6:ef:06:4b:ab:c9:0b:df:42:c2:ac:
c0:2e:94:3d:1e:cd:f5:0b:2f:c5:34:09:57:69:97:
bc:49:2a:71:bb:74:c1:1b:c4:11:ce:ce:c1:13:10:
eb:6f:d5:43:cd:f9:75:10:c2:78:21:4c:aa:93:c4:
23:a1:39:3a:07:38:77:0c:5c:6b:fa:35:eb:ee:a0:
1a:6e:bd:35:5a:5d:ae:64:19:97:ac:0f:56:5c:dd:
64:d2:24:df:d8:46:fe:03:78:29:8a:da:3e:b8:ce:
22:d2:46:de:8a:29:ea:b8:aa:b0:e3:85:69:8a:dd:
15:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:7E:5B:E7:DB:DD:C5:C4:68:FD:03:5D:AF:E6:E6:59:0F:EE:D7:A5
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/hH5b59vdxcRo_QNdr-bmWQ_u16U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
1c:75:e7:20:e1:48:de:20:10:17:d4:49:d9:29:af:95:06:49:
82:55:0f:14:6e:03:68:ae:4d:15:fe:d4:83:d1:a1:86:b9:f6:
2e:1e:5b:a7:22:7d:70:31:9b:a4:39:5e:6c:e0:e1:8b:84:4c:
4d:29:f3:79:13:e8:f9:4f:4d:f9:f7:d4:a2:08:ad:4e:de:a8:
4a:6a:dc:61:62:a6:50:4f:21:fa:d7:3e:83:ba:da:a8:35:16:
07:84:cd:3a:d9:09:f9:3c:9e:81:fd:7c:94:94:dd:15:2b:56:
1b:bc:c6:1c:23:38:b4:52:be:10:2b:6b:49:3b:77:7a:80:5b:
7b:30:21:7c:2b:83:ac:97:58:43:ab:d5:9c:aa:9e:41:63:ae:
60:55:79:e7:f8:dd:45:5b:3a:11:23:ff:a6:b6:1b:59:67:a2:
df:47:58:65:81:cd:12:f3:c4:a0:92:dc:68:a3:7e:5f:95:6b:
15:24:1d:7a:6c:9c:1d:b3:3b:d5:fe:27:8a:03:c8:3b:2f:ef:
e1:3d:ac:19:c6:41:1e:b2:64:4b:ce:35:8d:4b:d1:84:dc:06:
b6:fd:02:84:3a:f2:57:35:7b:db:bf:0b:84:9c:0f:ed:35:eb:
14:16:44:c9:3a:7d:d2:01:38:d9:db:1e:b3:78:d5:3f:6e:09:
7b:f2:58:7f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:31 2025 by rpki-client