Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/dIwk5k-_wCTrPyXYHgedtGOdhds.roa
File: dIwk5k-_wCTrPyXYHgedtGOdhds.roa (raw, json)
Hash identifier: 4C3m9OD2XWkxzLcUa7JwTH1Aydi9PRFOQoPW+Y6N9Io=
Subject key identifier: 74:8C:24:E6:4F:BF:C0:24:EB:3F:25:D8:1E:07:9D:B4:63:9D:85:DB
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 06A6
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/dIwk5k-_wCTrPyXYHgedtGOdhds.roa
Signing time: Tue 21 Jan 2025 06:54:54 +0000
ROA not before: Tue 21 Jan 2025 06:54:54 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1702 (0x6a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 21 06:54:54 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=748C24E64FBFC024EB3F25D81E079DB4639D85DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:69:de:90:e6:f1:3e:51:0b:7b:27:a7:13:6d:
06:1f:ea:f8:19:4e:13:14:27:49:72:ca:05:51:dc:
69:a3:7c:63:13:a8:6b:ff:35:66:f9:87:a1:86:e1:
77:bc:24:81:cd:81:6d:bf:4b:9c:a5:d7:e7:15:07:
53:7f:9f:bd:12:75:34:0f:09:92:97:b1:d6:30:2f:
22:ae:a3:3a:3a:12:c1:df:c0:a2:ea:f3:05:e9:6c:
6c:a7:23:8f:81:0d:87:b4:7c:ac:2b:05:94:de:bf:
72:09:30:ee:72:4f:52:d9:4b:1b:f6:54:af:eb:a4:
b0:97:be:14:98:c2:78:16:6e:b6:8c:f4:61:d8:e6:
ff:4d:ed:82:e5:ba:e2:47:40:2e:84:a0:e3:e6:ee:
cf:37:9e:74:85:cb:cd:67:e0:14:8b:68:62:05:26:
60:3f:1d:5e:6f:cc:cc:1e:65:c0:63:c9:bb:0f:fc:
17:83:5f:9f:c2:f3:75:31:b6:57:1a:4d:73:87:3e:
72:20:91:37:5a:eb:14:95:e8:13:8c:08:c4:2f:42:
d1:d2:89:bb:92:45:f7:43:84:e1:0a:c3:7d:4d:e0:
f1:6e:a7:5c:ae:1b:69:3e:b2:02:4b:5a:0f:6a:c9:
3a:ed:b0:c5:4e:c9:f1:2a:a3:a5:7d:82:90:47:c1:
cf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8C:24:E6:4F:BF:C0:24:EB:3F:25:D8:1E:07:9D:B4:63:9D:85:DB
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/dIwk5k-_wCTrPyXYHgedtGOdhds.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:86:b8:d1:88:d7:b5:8e:d2:c2:af:73:48:ce:03:be:cc:83:
87:58:29:be:10:b9:b6:ad:46:ea:ef:19:d9:d8:ae:2c:08:c2:
1e:97:d8:f5:1b:26:f4:49:3c:43:f6:92:f2:b9:33:5c:17:0a:
35:2a:8e:a8:50:77:34:d4:9f:ca:49:8d:9f:82:1e:07:e2:35:
49:0b:2e:5c:59:3b:96:f5:9b:fb:42:18:0f:29:aa:4f:97:23:
6c:49:62:72:4e:b6:86:6f:5a:fe:94:3b:dc:5b:31:ba:62:8a:
49:ac:dd:c9:e0:be:65:3c:42:98:13:b9:ac:ed:6c:db:f1:a9:
f0:ee:fd:33:ab:17:59:b2:3f:ea:55:6d:8b:dc:4d:6f:eb:69:
c4:87:fc:ae:c4:c7:c6:a4:63:ca:4e:e6:9e:b0:52:45:d4:c3:
88:37:f2:44:00:10:44:41:ad:07:37:3b:71:83:d1:c2:44:bc:
b6:a0:1d:43:71:53:99:fa:c7:27:3a:64:32:cd:6d:ce:e9:31:
14:e3:2f:63:be:ef:f0:53:6c:22:87:95:9a:ec:6f:d2:02:ac:
12:d7:6e:37:bf:9b:6f:85:a3:65:7b:d2:b4:7a:a2:f7:0c:1c:
e6:cf:d4:62:7b:a0:d7:ff:38:86:6a:76:08:db:e2:94:cf:c5:
b2:8e:46:c4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat May 17 19:52:34 2025 by rpki-client