Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/Hsj1DwLtAQ-GhaU47Xw8Odt07gk.roa
File: Hsj1DwLtAQ-GhaU47Xw8Odt07gk.roa (raw, json)
Hash identifier: ATBczkK2gvRO+wnqAJu7T4yf6ydBpzdW4P4BuF26AP0=
Subject key identifier: 1E:C8:F5:0F:02:ED:01:0F:86:85:A5:38:ED:7C:3C:39:DB:74:EE:09
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0768
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/Hsj1DwLtAQ-GhaU47Xw8Odt07gk.roa
Signing time: Thu 23 Jan 2025 07:25:01 +0000
ROA not before: Thu 23 Jan 2025 07:25:01 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1896 (0x768)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 23 07:25:01 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=1EC8F50F02ED010F8685A538ED7C3C39DB74EE09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:93:83:88:51:43:40:25:e9:c1:f0:5f:18:48:
8a:ed:3f:c0:b5:55:32:f6:b0:90:96:a5:f2:a8:e9:
31:e5:f7:e2:21:10:1f:6d:22:7b:f6:e1:e7:2a:46:
e2:78:7a:e7:50:35:3d:6b:6f:1d:2a:bc:16:8f:fd:
1b:55:1d:60:f9:25:48:2a:61:d3:6b:99:9a:e6:53:
30:58:75:e9:ee:24:67:14:00:e5:4a:2a:1a:6d:64:
29:9b:6e:e1:28:93:92:e8:89:e4:a1:f5:b4:56:58:
2c:fb:cc:55:70:b6:a5:34:69:c2:a1:30:26:62:50:
0b:1e:6c:4c:5b:f8:22:bf:89:83:63:cb:37:27:c4:
f0:7a:fb:12:25:22:cd:da:58:ec:41:2f:0f:d7:72:
a1:3c:55:ce:80:e1:ff:d2:41:b6:36:8b:4e:aa:f3:
c0:86:e0:c7:33:a5:d2:f3:84:2a:bc:62:77:41:cb:
4b:72:c0:ae:b6:a6:fd:53:fb:f6:30:72:cc:06:db:
63:16:1b:2e:2f:6f:73:b5:e5:51:b4:14:05:6b:b5:
13:c2:9c:73:fc:9e:9d:53:0d:69:65:cb:0a:4c:ed:
96:20:d1:a1:60:c7:4e:71:eb:59:07:42:51:d8:9d:
8f:5e:f9:16:89:f3:01:ec:4f:12:08:8c:ae:30:32:
1b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C8:F5:0F:02:ED:01:0F:86:85:A5:38:ED:7C:3C:39:DB:74:EE:09
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/Hsj1DwLtAQ-GhaU47Xw8Odt07gk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
60:7e:67:8e:ca:87:b2:72:d0:58:71:20:78:2e:d8:eb:12:17:
e2:15:d2:57:96:b1:12:52:a5:ce:09:f7:99:49:e6:0a:c9:6c:
68:84:09:b0:50:45:1f:f3:83:d3:c5:7a:0b:af:b0:7c:45:ef:
74:fa:5e:5a:e1:3b:55:33:81:2f:b1:06:53:41:b9:ef:c3:af:
53:03:df:ed:90:bb:9a:48:fa:67:5e:50:a3:49:d7:d2:44:1b:
46:7d:ba:d8:24:45:87:59:8a:80:53:70:b2:0d:a6:ed:ad:1f:
78:91:54:d6:cf:8d:2c:0e:5f:e0:1f:28:d3:a4:27:49:1e:bd:
ea:1a:38:43:f3:ad:28:d1:f8:98:aa:fb:1d:cc:5b:e0:99:e7:
5c:c1:50:c0:ff:34:2e:2a:85:65:e1:86:7d:4a:3d:04:d2:82:
aa:9c:31:64:b4:fc:ff:72:fb:19:19:22:25:ac:5f:53:b8:5d:
47:18:df:25:ef:20:c3:2e:64:db:62:0b:0d:2d:60:89:d0:d9:
c5:28:46:ac:fa:2d:85:b7:1b:8f:d2:1c:49:2f:94:5a:1f:8b:
ef:e5:ad:8d:0a:aa:c0:4d:1b:cc:bd:ba:32:e5:87:7f:55:15:
b5:be:2c:33:74:de:32:d4:61:7e:a4:80:08:e9:0a:f6:cf:b6:
ae:18:fe:a8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon May 19 09:21:16 2025 by rpki-client