Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/wiGspkM5TffYY5VD82HAnK09yZ4.roa
File: wiGspkM5TffYY5VD82HAnK09yZ4.roa (raw, json)
Hash identifier: 7FBDm61xVfaHqm8UulkvYeDt3xrt70mRiqvZy01hPYU=
Subject key identifier: C2:21:AC:A6:43:39:4D:F7:D8:63:95:43:F3:61:C0:9C:AD:3D:C9:9E
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0C42
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/wiGspkM5TffYY5VD82HAnK09yZ4.roa
Signing time: Wed 05 Feb 2025 05:55:46 +0000
ROA not before: Wed 05 Feb 2025 05:55:46 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3138 (0xc42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 5 05:55:46 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=C221ACA643394DF7D8639543F361C09CAD3DC99E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:88:ae:bf:77:21:88:96:85:63:c9:46:7a:58:
3b:93:0c:cf:b3:c0:1c:a1:5f:3b:77:87:72:01:02:
6f:13:bc:e7:92:1c:c0:ce:1c:f7:2f:75:34:68:41:
1f:aa:a9:3a:cd:e6:67:8d:c9:30:cb:bb:19:ad:83:
33:be:69:64:e5:e8:75:f8:7b:2b:95:44:90:b2:5e:
10:ab:ce:39:47:60:af:5c:4d:5e:9d:85:b8:a0:1f:
bc:be:c4:f7:44:64:6f:28:85:1a:b6:70:1e:ae:69:
c0:bd:59:cc:b3:e4:b8:61:22:52:22:01:fa:8a:8d:
6f:57:a9:77:65:2d:ba:6f:af:aa:84:b4:ed:7d:ce:
89:2a:80:ed:11:d7:de:7f:df:a8:44:58:6b:20:ef:
4d:4a:12:d1:73:c7:fe:12:32:87:89:e3:d0:fa:3b:
ac:7f:6b:3d:17:d1:65:59:e4:2e:ef:ce:42:d8:a9:
e8:7b:e5:81:bd:9b:49:c3:1e:e4:af:f0:cf:ee:64:
66:b3:17:06:03:ff:d2:27:b9:9e:47:ca:68:74:87:
9c:76:ca:70:04:16:45:bc:62:ca:a0:b2:80:a7:cb:
54:19:42:c9:c0:2e:7b:80:d3:77:e3:da:ac:e7:2f:
9c:bc:53:82:53:f1:c4:eb:98:32:f0:2f:3e:b0:59:
f9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:21:AC:A6:43:39:4D:F7:D8:63:95:43:F3:61:C0:9C:AD:3D:C9:9E
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/wiGspkM5TffYY5VD82HAnK09yZ4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
15:ea:0c:48:da:f5:03:11:ab:d4:12:b6:d1:6e:b8:62:83:13:
f6:70:df:e7:65:98:a6:25:1d:fc:c2:68:df:80:06:75:8f:ec:
2a:6b:2e:73:5e:7b:e3:dc:6e:73:8c:ba:c8:1d:0a:a1:68:ef:
0b:5f:20:03:6d:4d:fd:b2:19:75:8e:88:c3:4c:ba:cd:96:21:
0b:66:c9:fb:8c:fa:95:7a:f0:ca:7e:de:5f:dc:c2:5d:44:51:
a2:d4:f0:21:99:ac:0e:aa:9f:79:0b:d8:c8:ba:ef:2c:bf:0c:
e9:8a:99:56:37:1f:37:6f:7f:99:f7:16:55:c0:72:01:6c:3f:
cb:66:bf:56:f0:32:fe:e4:72:64:c2:29:54:44:e6:d2:d0:26:
11:ad:58:cd:f8:15:07:0f:e5:16:50:b7:72:6e:46:17:f6:c7:
b9:b2:f2:e3:9a:40:b6:80:73:4a:46:d3:07:e9:3e:b8:1b:a3:
b7:9d:f7:45:b3:3a:93:be:9a:5c:e3:5b:67:0e:f6:e2:75:6d:
c0:e1:0f:41:65:3f:c2:11:f4:4f:65:38:0a:56:a0:fe:bf:af:
6c:b8:99:81:0e:d9:2d:8b:be:8e:5b:dd:07:99:f0:04:26:2e:
b8:97:14:62:b7:b2:c4:8f:bb:8a:05:9f:b7:9e:4e:85:03:0f:
4f:33:8f:ed
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3
MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNTAyMDUw
NTU1NDZaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEMyMjFBQ0E2NDMzOTRE
RjdEODYzOTU0M0YzNjFDMDlDQUQzREM5OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqiK6/dyGIloVjyUZ6WDuTDM+zwByhXzt3h3IBAm8TvOeSHMDO
HPcvdTRoQR+qqTrN5meNyTDLuxmtgzO+aWTl6HX4eyuVRJCyXhCrzjlHYK9cTV6d
hbigH7y+xPdEZG8ohRq2cB6uacC9Wcyz5LhhIlIiAfqKjW9XqXdlLbpvr6qEtO19
zokqgO0R195/36hEWGsg701KEtFzx/4SMoeJ49D6O6x/az0X0WVZ5C7vzkLYqeh7
5YG9m0nDHuSv8M/uZGazFwYD/9InuZ5Hymh0h5x2ynAEFkW8YsqgsoCny1QZQsnA
LnuA03fj2qznL5y8U4JT8cTrmDLwLz6wWfkzAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUwiGspkM5TffYY5VD82HAnK09yZ4wHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF
YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw
L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL3dpR3Nwa001VGZmWVk1
VkQ4MkhBbkswOXlaNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD
BARxH0ADBARxH4AwDQYJKoZIhvcNAQELBQADggEBABXqDEja9QMRq9QSttFuuGKD
E/Zw3+dlmKYlHfzCaN+ABnWP7CprLnNee+PcbnOMusgdCqFo7wtfIANtTf2yGXWO
iMNMus2WIQtmyfuM+pV68Mp+3l/cwl1EUaLU8CGZrA6qn3kL2Mi67yy/DOmKmVY3
Hzdvf5n3FlXAcgFsP8tmv1bwMv7kcmTCKVRE5tLQJhGtWM34FQcP5RZQt3JuRhf2
x7my8uOaQLaAc0pG0wfpPrgbo7ed90WzOpO+mlzjW2cO9uJ1bcDhD0FlP8IR9E9l
OApWoP6/r2y4mYEO2S2Lvo5b3QeZ8AQmLriXFGK3ssSPu4oFn7eeToUDD08zj+0=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:17:26 2025 by rpki-client