Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/24jzKULKMdXeM06-zv0eysNHNDs.roa
File: 24jzKULKMdXeM06-zv0eysNHNDs.roa (raw, json)
Hash identifier: Q8fs727StRj6TiHht/ixedb1s8vp+ho7RYY7a0l6/3Q=
Subject key identifier: DB:88:F3:29:42:CA:31:D5:DE:33:4E:BE:CE:FD:1E:CA:C3:47:34:3B
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0A7E
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/24jzKULKMdXeM06-zv0eysNHNDs.roa
Signing time: Fri 31 Jan 2025 12:55:31 +0000
ROA not before: Fri 31 Jan 2025 12:55:31 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 31 12:55:31 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=DB88F32942CA31D5DE334EBECEFD1ECAC347343B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d5:26:27:7f:59:0c:e1:da:51:47:5f:3a:7d:
66:78:d3:35:27:46:91:1a:5a:6e:10:08:cc:a7:5f:
b7:98:c9:39:c9:2c:c1:16:43:b4:bb:11:6f:0d:b3:
22:2b:e6:12:d3:3c:03:36:5e:54:7d:c2:15:e7:c9:
94:b8:1f:87:84:7d:8d:50:ca:35:d3:33:26:e3:8b:
29:d7:f6:f8:be:06:1a:f0:a7:74:8e:61:5d:d4:de:
e5:08:4d:6d:75:e3:6f:54:9c:f3:4c:56:82:78:68:
67:28:a4:9a:8d:b6:75:c8:30:b1:ec:75:87:1b:29:
01:9e:2e:99:9a:f8:6b:e6:c3:e6:fe:21:bd:71:21:
7c:6f:43:0c:ff:a3:8b:96:63:1b:3b:9e:fe:4f:04:
72:10:55:6b:93:25:d0:9f:71:c6:8c:62:a9:fe:1c:
4a:67:1e:07:78:48:ed:dd:94:4d:90:69:a2:52:9c:
04:5a:be:eb:c9:64:c7:c5:27:bb:7a:e1:30:da:3f:
71:c0:28:b8:ed:7f:30:b1:d5:b4:d8:47:9d:08:b0:
aa:e8:d0:1b:8a:9a:94:94:80:b0:09:6c:ac:27:56:
f8:2d:11:8b:cd:b7:6c:f6:c1:0c:be:52:64:a4:33:
79:0d:60:43:bc:50:e8:01:a7:63:ad:e5:63:b8:fb:
da:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:88:F3:29:42:CA:31:D5:DE:33:4E:BE:CE:FD:1E:CA:C3:47:34:3B
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/24jzKULKMdXeM06-zv0eysNHNDs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
21:8a:71:00:85:78:82:ed:56:9b:93:2d:66:b4:50:04:a8:aa:
25:b7:36:21:a0:ac:44:65:c1:6f:68:96:af:f2:c4:47:83:2c:
71:b8:81:bc:64:f3:26:bd:11:c7:6b:85:23:d5:27:b4:a6:19:
75:40:e5:5a:81:73:97:1f:80:12:8e:df:1d:24:94:01:38:e9:
ab:72:f4:10:3f:a6:42:a8:44:f4:e5:97:bc:fc:8d:dd:6c:85:
25:a8:5d:48:b0:e0:5b:f2:b7:d6:e8:57:ef:05:02:cf:d8:dc:
92:66:32:a3:5a:29:36:68:dc:6a:2b:ee:84:78:1b:a4:eb:c9:
09:62:4c:6d:72:bc:36:1c:61:66:0b:a1:a1:27:cd:2c:c2:be:
d7:be:a4:05:0c:c6:6b:83:6c:2b:2a:3c:a3:0e:db:4d:a5:6d:
72:5e:75:4c:d4:80:47:89:7a:1a:68:ef:c9:49:f2:f6:9d:1d:
05:3c:22:2d:3c:98:20:7d:5c:8b:79:6c:c2:09:e1:5d:7f:e3:
0b:54:d8:76:4c:df:d3:1b:60:e5:2b:2b:84:b4:71:b1:6c:d8:
99:b5:b8:7c:42:3e:bf:f4:60:9b:de:41:70:84:bf:79:f7:8b:
22:83:ba:ce:2f:9e:6e:77:03:51:00:c1:92:97:37:fb:9c:94:
08:35:70:bc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat May 17 21:57:47 2025 by rpki-client