Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/DHM7pgDOkVvY-ZLgcuwPclQaYyI.roa
File: DHM7pgDOkVvY-ZLgcuwPclQaYyI.roa (raw, json)
Hash identifier: 1Y7S5VvyOZEYmYGLoh8COou92m9TKtmsqMsYIUq90rY=
Subject key identifier: 0C:73:3B:A6:00:CE:91:5B:D8:F9:92:E0:72:EC:0F:72:54:1A:63:22
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 05B4
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/DHM7pgDOkVvY-ZLgcuwPclQaYyI.roa
Signing time: Sat 18 Jan 2025 18:24:46 +0000
ROA not before: Sat 18 Jan 2025 18:24:46 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1460 (0x5b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 18 18:24:46 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=0C733BA600CE915BD8F992E072EC0F72541A6322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:a7:b3:e8:e0:38:32:3f:1d:dc:71:87:fd:
a9:1c:e7:6e:a4:90:c3:44:23:0a:cc:41:54:64:0f:
f0:89:4f:53:45:7d:50:25:0b:22:1f:96:ff:05:c0:
f0:b8:fc:38:09:d1:42:37:ef:6c:d7:5f:f5:24:32:
91:92:46:dd:ae:b2:92:44:48:5f:32:ef:27:fb:cd:
26:69:e5:93:62:c9:0f:0b:43:70:a5:2d:71:18:c9:
08:70:15:6c:22:9d:23:37:01:e0:9f:37:80:ad:aa:
43:0a:be:63:28:9e:2c:1f:99:d3:1c:50:5a:72:5a:
d1:de:e1:ed:b1:35:71:88:00:4b:0d:63:7a:10:db:
a1:bb:d8:42:d1:b1:46:15:ee:eb:fd:8a:7e:d9:de:
f3:66:7f:52:17:55:57:af:02:70:cd:1a:27:bb:f3:
d1:a4:a8:70:07:05:cf:1a:87:a8:1b:c1:ca:c8:b0:
0a:34:d0:07:df:e4:2b:14:ae:ca:05:4e:1a:41:09:
55:5f:ae:f3:2d:68:6b:f8:47:86:48:b2:20:46:c9:
c1:fa:18:c0:f6:da:e5:65:e9:2c:89:ea:7e:92:91:
c6:29:c6:ec:0a:b3:88:9f:7f:f4:e9:84:f7:a5:3a:
30:c3:82:f1:90:53:f9:49:0c:dc:2f:97:eb:4b:bf:
20:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:73:3B:A6:00:CE:91:5B:D8:F9:92:E0:72:EC:0F:72:54:1A:63:22
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/DHM7pgDOkVvY-ZLgcuwPclQaYyI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:7e:97:6a:10:cb:90:c7:0c:4d:0f:c2:ad:b1:6a:61:71:b0:
6e:ad:f2:ec:46:d9:05:16:c4:30:fb:44:f8:03:ea:73:a3:aa:
1a:eb:05:66:cd:31:a3:78:1d:a4:47:21:6a:2e:39:57:4f:de:
39:91:4a:c1:8d:f0:28:70:30:9a:79:33:eb:b9:c6:31:c4:9a:
08:56:c4:02:88:a3:a2:32:33:8d:9e:fd:59:a5:52:13:d6:07:
27:14:97:b9:1d:f3:d2:fe:76:fb:a8:16:12:a2:3d:6f:fa:88:
d9:00:c2:a5:a9:a3:6b:e5:50:2b:2e:87:39:cc:96:d5:35:4d:
04:a0:92:22:93:57:a5:0e:cb:6a:78:fd:31:8a:cc:4e:d2:10:
55:2d:52:84:0c:90:83:97:b4:dd:bc:50:dd:51:8f:33:4e:a4:
06:b0:15:c3:c8:57:3b:dc:0d:62:00:9b:e7:72:1a:2b:ae:81:
9f:2a:e9:b2:f3:ca:c5:07:6a:db:1d:00:5d:f9:f1:67:f4:0a:
7f:e1:e1:88:b4:a9:00:bb:7f:d0:df:81:15:b7:df:00:52:86:
ff:56:78:c5:c4:d2:7e:12:b6:04:84:7a:ca:66:36:bc:4e:7d:
de:87:99:f7:f6:ad:eb:b2:02:66:fe:c8:46:93:10:b2:b0:6b:
16:cd:cf:2e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 18 04:53:12 2025 by rpki-client