Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/y_VYCCyJb6n5SiGLGffvUAr1k1k.roa
File: y_VYCCyJb6n5SiGLGffvUAr1k1k.roa (raw, json)
Hash identifier: Y3Wtfcsmpslx0yYeo+fqyz8qhQfXgev4P7lOr7z+rKQ=
Subject key identifier: CB:F5:58:08:2C:89:6F:A9:F9:4A:21:8B:19:F7:EF:50:0A:F5:93:59
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0BD4
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/y_VYCCyJb6n5SiGLGffvUAr1k1k.roa
Signing time: Tue 04 Feb 2025 02:26:54 +0000
ROA not before: Tue 04 Feb 2025 02:26:54 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3028 (0xbd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 4 02:26:54 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=CBF558082C896FA9F94A218B19F7EF500AF59359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f1:59:52:b1:a1:8e:72:48:50:66:50:db:d4:
09:ea:f3:9e:ba:cf:0f:0c:40:93:42:01:08:3a:10:
95:43:3b:10:8f:d9:59:22:13:62:a6:80:5c:8c:83:
36:12:db:ab:fb:4d:0d:41:4f:88:6d:14:d8:6d:a9:
0c:d3:2d:43:d9:65:4e:15:18:4d:87:bd:61:02:2c:
06:80:ee:e1:53:ef:90:27:66:7c:03:39:3d:6f:c6:
21:0a:99:8d:9d:49:9f:9c:45:8c:34:ae:a4:35:44:
bb:81:e7:29:8b:d4:6b:22:70:22:31:67:09:a1:33:
d6:a5:6e:6e:3e:30:1e:56:2f:ae:b2:a7:8a:d0:03:
ea:51:c8:90:17:81:0a:51:ab:07:b7:68:f8:1d:8e:
20:50:3a:93:d4:45:dd:1a:fd:f2:fd:37:57:e1:e9:
dc:81:3d:21:ab:22:2c:ef:7f:c1:9f:5e:bd:9a:ae:
e9:f9:de:59:f3:9f:5a:9e:1c:30:d7:2e:2e:7d:ad:
f9:03:e5:ec:c2:cd:d3:17:76:f6:52:64:ff:7a:b3:
4a:c4:e1:9a:45:fa:92:26:1c:d1:25:1d:78:b2:fa:
8b:24:20:07:17:c7:7c:f3:a3:ca:51:38:60:d0:a0:
54:6e:44:ca:fb:2e:8e:45:2f:10:d3:26:60:5c:42:
4b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F5:58:08:2C:89:6F:A9:F9:4A:21:8B:19:F7:EF:50:0A:F5:93:59
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/y_VYCCyJb6n5SiGLGffvUAr1k1k.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
23:a7:51:ee:70:37:46:92:ad:de:8b:6e:85:e2:e6:68:c5:9e:
03:72:40:61:81:db:c9:3a:3c:ff:05:b1:5a:18:ab:6b:e2:b0:
eb:3d:be:cf:8c:61:a0:ef:59:85:c0:54:1e:aa:25:69:a0:a6:
88:2b:93:c7:30:7c:26:92:50:0e:56:40:43:f9:c2:60:3e:eb:
bd:66:4f:b5:4b:0c:d3:2c:a0:95:5f:24:75:7c:1c:d1:d4:c5:
7e:a5:1c:d7:1c:6c:71:84:42:24:59:24:7c:09:cb:65:ef:58:
64:dc:f8:fa:f2:1d:5b:27:65:b9:32:1d:ad:b8:d7:99:f3:c2:
76:e8:a3:ca:c2:54:88:75:1a:11:0b:91:4a:81:cb:69:0e:75:
e1:8a:da:e2:a1:df:d1:6d:8b:ae:c0:4f:27:d1:2a:7a:09:6e:
bb:4f:c6:bd:76:3c:01:36:ca:a7:79:9b:d1:9b:ea:32:70:6e:
4d:1d:74:7d:aa:ee:5e:3a:b6:d6:2f:0b:ea:97:25:da:e0:6b:
10:c1:d1:c2:6a:fc:67:f4:34:e8:6b:60:e0:d3:fa:cc:fe:71:
0f:d2:44:dd:03:ef:ca:76:4c:3a:e2:99:d9:48:5c:37:5f:02:
f5:bb:01:8b:3b:8d:a7:11:79:27:70:56:e9:9e:67:38:de:12:
27:5c:95:44
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:21:52 2025 by rpki-client