Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/fuezOIktO9dOvOYXr8E6Oxpl2Os.roa
File: fuezOIktO9dOvOYXr8E6Oxpl2Os.roa (raw, json)
Hash identifier: TwKCfkiFk5raDjJTId2ysNG0aNm6PiCZHkSIe5hLa0w=
Subject key identifier: 7E:E7:B3:38:89:2D:3B:D7:4E:BC:E6:17:AF:C1:3A:3B:1A:65:D8:EB
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0AA8
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/fuezOIktO9dOvOYXr8E6Oxpl2Os.roa
Signing time: Fri 31 Jan 2025 23:25:33 +0000
ROA not before: Fri 31 Jan 2025 23:25:33 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2728 (0xaa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 31 23:25:33 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=7EE7B338892D3BD74EBCE617AFC13A3B1A65D8EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ce:c4:ca:95:a1:f0:3a:82:1e:2b:d7:ef:2c:
9b:01:b8:1b:ca:65:3a:0f:63:10:06:8d:93:50:d7:
b5:9f:3a:c9:bb:d0:c9:e3:55:33:17:a4:f9:1b:0c:
32:f2:52:75:69:da:95:41:49:1a:03:80:a0:2f:6b:
49:07:bb:18:11:bb:a5:59:17:f1:1c:77:f2:82:b3:
a6:7e:1f:ea:fb:a4:c7:62:7a:0a:49:d9:51:18:be:
c7:4b:f6:69:f7:65:b7:07:2b:0f:a6:54:02:ea:94:
e6:e7:cf:f3:13:61:d2:1b:29:73:72:71:d5:54:9c:
21:03:60:9f:ee:9c:d3:36:3b:4f:06:37:fd:60:80:
45:ea:0d:45:41:11:66:7e:5a:d3:51:ea:40:7d:35:
f0:69:79:46:76:f4:4b:2b:61:4e:4b:d7:b2:ca:e1:
22:15:a1:ca:57:d4:e5:77:53:d9:f2:dd:d8:90:47:
39:ec:c4:bd:89:d5:4e:a5:11:05:e3:df:2d:02:38:
34:3b:be:63:30:c3:64:8f:04:c7:33:0d:8a:f8:fe:
af:25:ef:8c:bf:e5:2e:56:61:fc:05:23:74:a0:ab:
82:02:a6:eb:a7:0c:16:e2:d4:35:24:3e:2a:7a:af:
2b:08:65:a8:9b:76:02:d1:4d:f5:f4:2c:77:48:59:
37:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E7:B3:38:89:2D:3B:D7:4E:BC:E6:17:AF:C1:3A:3B:1A:65:D8:EB
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/fuezOIktO9dOvOYXr8E6Oxpl2Os.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
78:5f:fa:45:2d:f3:18:3c:5d:ff:28:87:a8:43:57:35:40:bd:
8a:9f:5a:73:05:ed:68:87:82:82:aa:13:2f:1f:86:9e:03:05:
9d:93:21:57:36:63:17:f0:01:d4:5a:d5:85:5c:57:e0:66:63:
2b:e6:15:d6:40:60:40:41:d5:b9:e1:93:1c:fa:6e:de:73:1e:
89:94:ca:f0:b9:f4:5a:b2:30:39:4f:45:f2:b0:da:c5:1f:8b:
6d:38:df:bd:f5:2e:7b:ef:8c:37:29:15:34:69:77:3d:b4:cf:
34:40:66:ad:a2:2d:b0:ea:14:31:39:27:f0:a3:58:9c:e1:75:
58:68:a4:62:8e:8a:a0:01:dd:41:83:21:03:c7:d1:c7:4f:2a:
a5:ea:af:9f:ae:52:67:ad:57:37:bd:08:13:cb:d6:cf:a4:3b:
0d:3f:f5:83:12:4c:ca:a2:e0:f8:0c:3f:03:f8:5a:ab:ee:d4:
78:01:1a:57:5f:8b:40:95:f3:cf:34:67:d0:f8:ea:9c:aa:3e:
ed:a2:3b:0b:f1:c0:32:cd:7c:c6:02:37:e2:79:38:12:3a:f8:
cb:24:34:aa:c0:a2:42:e1:e1:17:24:17:41:16:de:7c:32:af:
0d:40:79:97:ec:2c:52:c3:90:d1:31:a3:bb:54:12:88:a2:1f:
93:78:7c:4e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 18 05:56:36 2025 by rpki-client