Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/GUgXNVclovzOeikV4gN6R9twlsY.roa
File: GUgXNVclovzOeikV4gN6R9twlsY.roa (raw, json)
Hash identifier: FqVKV1u91mkhmJ5ABcQOrQZgTDPrywiFY2HfBZj1fD0=
Subject key identifier: 19:48:17:35:57:25:A2:FC:CE:7A:29:15:E2:03:7A:47:DB:70:96:C6
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0B24
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/GUgXNVclovzOeikV4gN6R9twlsY.roa
Signing time: Sun 02 Feb 2025 06:27:31 +0000
ROA not before: Sun 02 Feb 2025 06:27:31 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2852 (0xb24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 2 06:27:31 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=194817355725A2FCCE7A2915E2037A47DB7096C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:66:1c:f6:63:03:3a:dd:84:1a:4b:e5:ff:38:
9b:48:9f:ed:36:0e:d1:b8:1f:90:1c:2f:0d:2a:e7:
8d:17:a2:67:25:6c:1a:38:4c:0d:7c:e1:51:de:c5:
20:36:11:88:1b:81:0f:18:bc:20:06:59:c5:9c:b2:
91:35:78:65:a3:5a:d3:88:74:c5:e9:87:61:7e:7e:
24:1c:ce:93:36:e3:54:27:6b:32:b0:0d:9b:51:1f:
05:5e:f6:8f:b8:86:33:b0:8b:5d:e6:fc:3c:fe:d6:
1c:ee:89:e9:1e:0a:47:67:aa:f1:d7:02:92:a8:7c:
93:6a:79:4a:e0:73:47:cf:aa:ff:e6:df:db:14:49:
0c:23:68:53:e4:01:f1:a1:c0:00:d7:04:2b:2f:21:
7b:bc:37:9f:3e:77:92:3b:f2:b7:a8:ce:a4:2a:a1:
c3:4a:60:e7:e1:86:c5:4d:37:8e:21:7a:f0:e9:0a:
8d:11:25:74:2c:91:f1:6e:fe:9b:92:56:32:26:1f:
8e:96:a3:30:4f:86:c7:12:6c:37:24:6b:93:5c:e4:
e3:63:b3:53:30:31:d9:2b:71:22:17:b1:d6:ec:40:
5b:40:a7:8d:70:a2:55:cf:ba:08:4b:6f:26:f7:e2:
ec:7c:54:b4:2c:b5:cf:88:64:e9:7b:8a:40:7f:7d:
89:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:48:17:35:57:25:A2:FC:CE:7A:29:15:E2:03:7A:47:DB:70:96:C6
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/GUgXNVclovzOeikV4gN6R9twlsY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:4b:be:d6:db:47:97:60:dd:89:e9:9b:fa:6b:5d:c2:d0:46:
fe:22:a7:b4:1d:0f:8b:ce:21:fd:fc:8a:33:c6:dc:85:af:6b:
59:d8:fb:e8:71:fe:05:3b:2f:bc:22:1b:df:41:57:c4:7f:7f:
4b:b6:bb:c7:a3:74:0c:b3:0d:74:70:d9:eb:4e:35:5f:e7:7f:
07:3c:b9:16:a5:12:52:4c:d3:81:08:0c:c0:57:cf:ff:ad:9e:
a9:93:3c:9f:80:75:ab:c1:b6:af:5b:e6:9c:29:83:ed:9a:01:
9c:d8:0b:42:8c:0a:a6:c0:f8:90:f3:65:fc:b1:be:91:ed:be:
e5:3a:c6:95:45:88:61:15:cc:c8:ba:42:7f:6e:32:65:c6:47:
14:08:5c:a0:03:61:84:8e:5b:ea:ba:96:b9:fd:7e:87:36:92:
b9:8f:37:5c:6a:62:50:a1:d1:4f:44:4a:59:79:0b:14:bd:19:
7c:22:a5:0c:34:2d:20:16:e6:f4:b5:79:f5:ac:98:72:6a:3a:
e7:d7:1c:89:c3:c9:d0:8c:7a:53:f7:0a:08:16:6b:69:b1:07:
47:1f:45:67:d5:d2:98:0f:6b:89:db:d9:b4:37:39:c4:4a:bb:
63:f0:c6:f5:bf:99:7d:e8:ef:da:e8:e1:75:e4:67:29:a9:1b:
4b:4b:6e:be
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 18 10:01:22 2025 by rpki-client