Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/7QI824M0nLWQWMualhUKU9zohVs.roa
File: 7QI824M0nLWQWMualhUKU9zohVs.roa (raw, json)
Hash identifier: yeBlcb4jFQfldkbmT3uS2Ik29lsDxLRp9ZYiFar05rM=
Subject key identifier: ED:02:3C:DB:83:34:9C:B5:90:58:CB:9A:96:15:0A:53:DC:E8:85:5B
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0818
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/7QI824M0nLWQWMualhUKU9zohVs.roa
Signing time: Sat 25 Jan 2025 03:25:52 +0000
ROA not before: Sat 25 Jan 2025 03:25:52 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2072 (0x818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 25 03:25:52 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=ED023CDB83349CB59058CB9A96150A53DCE8855B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4e:63:97:78:63:90:28:ae:b8:55:52:ad:93:
95:69:c7:7b:2d:66:5b:73:b4:40:d8:91:d1:9e:60:
49:29:67:9a:d7:26:f1:44:dd:de:9f:ab:68:f7:97:
92:07:30:88:09:a4:76:0a:fe:51:f8:70:5d:7b:79:
f6:37:32:b7:d0:f4:7b:87:1f:56:ab:87:b1:cc:c7:
76:9f:b0:44:8e:0b:1e:ef:83:99:71:dc:5b:2a:1a:
43:51:a7:35:f9:0b:85:42:37:a6:a1:77:87:8c:87:
30:24:b9:e8:71:79:42:35:89:b9:7c:ce:a0:1b:e3:
ab:1b:89:46:69:0b:e5:c0:e1:b2:fe:1e:f7:7a:c3:
a7:f7:9a:60:20:2e:1a:b6:59:25:dc:75:0f:be:97:
de:b2:19:1b:62:aa:6e:ea:d2:0a:18:02:3e:ae:1e:
6a:95:73:7b:32:4c:ed:bf:a2:27:03:50:55:3c:20:
f7:e0:db:e8:85:0b:87:01:82:50:02:51:7b:73:50:
d5:4b:47:c1:71:db:2f:40:0c:aa:dc:c6:db:61:83:
fe:0d:3e:d3:06:df:ff:25:e3:6c:f2:54:3a:2d:1f:
4a:43:73:73:2c:e3:1f:e6:c0:f3:ec:d1:62:4c:3d:
75:52:d6:3f:30:f5:72:b3:be:6a:b8:be:7f:2f:a4:
2e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:02:3C:DB:83:34:9C:B5:90:58:CB:9A:96:15:0A:53:DC:E8:85:5B
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/7QI824M0nLWQWMualhUKU9zohVs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:dd:74:ae:d8:86:ad:ca:e9:a9:09:cc:fc:28:6b:ed:fd:43:
1d:58:7f:fc:ee:c2:00:84:4e:31:67:16:0c:1b:8d:df:1e:58:
71:4c:ef:02:7b:37:fc:db:61:e5:dc:da:b8:d1:b2:1e:cf:6d:
0c:58:5c:d7:05:7b:42:46:fb:78:ce:be:17:db:e5:c7:90:3d:
db:20:74:3f:5a:b8:ce:b0:6d:10:e5:99:0e:57:43:f7:cc:2d:
3a:fc:5a:ca:91:aa:f8:b4:11:ad:7c:b3:af:b8:6f:a1:65:0f:
2c:67:9d:6d:b3:a6:9a:ef:6f:fd:3e:0d:09:f5:b8:19:66:35:
9c:af:5b:f4:4b:c7:28:f6:a9:d7:59:7d:6b:3b:e5:0f:26:02:
99:3b:70:46:b0:4b:09:5c:3a:85:51:23:6b:e9:71:5c:06:da:
1c:33:43:8e:86:9e:a3:ff:1b:69:db:86:8b:f4:31:7b:ad:54:
37:d6:d1:c8:7c:61:4e:c8:45:80:e1:63:e5:f1:6c:8a:90:8b:
40:78:ad:9f:e8:03:dc:74:31:a7:1e:5a:2f:c8:71:0a:83:b4:
23:29:a5:b3:3f:e1:b5:a4:83:90:d6:1e:ad:0a:73:0d:87:e8:
4e:61:93:2a:78:55:1a:ab:ea:b4:2d:4e:c0:e4:77:00:82:ca:
a2:5b:52:04
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzc3
MEI3MzlCOUVGQ0VCOEJDMUZEQTA1NjBFNDc4NTU2MUYyQkNCRjAeFw0yNTAxMjUw
MzI1NTJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEVEMDIzQ0RCODMzNDlD
QjU5MDU4Q0I5QTk2MTUwQTUzRENFODg1NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXTmOXeGOQKK64VVKtk5Vpx3stZltztEDYkdGeYEkpZ5rXJvFE
3d6fq2j3l5IHMIgJpHYK/lH4cF17efY3MrfQ9HuHH1arh7HMx3afsESOCx7vg5lx
3FsqGkNRpzX5C4VCN6ahd4eMhzAkuehxeUI1ibl8zqAb46sbiUZpC+XA4bL+Hvd6
w6f3mmAgLhq2WSXcdQ++l96yGRtiqm7q0goYAj6uHmqVc3syTO2/oicDUFU8IPfg
2+iFC4cBglACUXtzUNVLR8Fx2y9ADKrcxtthg/4NPtMG3/8l42zyVDotH0pDc3Ms
4x/mwPPs0WJMPXVS1j8w9XKzvmq4vn8vpC6FAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQU7QI824M0nLWQWMualhUKU9zohVswHwYDVR0jBBgwFoAUd3C3Obnvzri8H9oF
YOR4VWHyvL8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw
L2QzQzNPYm52enJpOEg5b0ZZT1I0VldIeXZMOC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvZDNDM09ibnZ6cmk4SDlvRllPUjRWV0h5dkw4LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwLzdRSTgyNE0wbkxXUVdN
dWFsaFVLVTl6b2hWcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD
BARxH0ADBARxH4AwDQYJKoZIhvcNAQELBQADggEBABvddK7Yhq3K6akJzPwoa+39
Qx1Yf/zuwgCETjFnFgwbjd8eWHFM7wJ7N/zbYeXc2rjRsh7PbQxYXNcFe0JG+3jO
vhfb5ceQPdsgdD9auM6wbRDlmQ5XQ/fMLTr8WsqRqvi0Ea18s6+4b6FlDyxnnW2z
pprvb/0+DQn1uBlmNZyvW/RLxyj2qddZfWs75Q8mApk7cEawSwlcOoVRI2vpcVwG
2hwzQ46GnqP/G2nbhov0MXutVDfW0ch8YU7IRYDhY+XxbIqQi0B4rZ/oA9x0Mace
Wi/IcQqDtCMppbM/4bWkg5DWHq0Kcw2H6E5hkyp4VRqr6rQtTsDkdwCCyqJbUgQ=
-----END CERTIFICATE-----
Generated at Sun May 18 01:58:29 2025 by rpki-client