Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/vmIj_kn4HxY1tLkqQhrLy3glNGg.roa
File: vmIj_kn4HxY1tLkqQhrLy3glNGg.roa (raw, json)
Hash identifier: eQAoupvefkDPAFu7TdMEiSAHf6Em9RbAFo4TcNAzh9A=
Subject key identifier: BE:62:23:FE:49:F8:1F:16:35:B4:B9:2A:42:1A:CB:CB:78:25:34:68
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0B7E
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/vmIj_kn4HxY1tLkqQhrLy3glNGg.roa
Signing time: Mon 03 Feb 2025 04:55:37 +0000
ROA not before: Mon 03 Feb 2025 04:55:37 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2942 (0xb7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Feb 3 04:55:37 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=BE6223FE49F81F1635B4B92A421ACBCB78253468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:87:95:fd:32:dd:4e:0f:cf:b1:6d:c1:9b:d6:
ea:25:16:74:21:36:a3:77:0f:77:e8:74:c4:9d:fe:
90:ba:5c:a3:3c:3a:81:a1:a2:e1:34:32:c3:f1:e0:
91:c2:6f:41:6e:9c:f3:0b:20:a2:91:f8:02:18:7a:
e5:f5:ca:ba:ed:a1:71:1d:61:2f:76:94:98:6b:4a:
6e:74:aa:fc:77:b0:61:f7:a8:5c:60:2a:5d:76:dd:
d6:ba:41:f0:40:ac:d3:1b:96:12:7e:69:89:64:85:
1f:7d:fa:0b:df:02:93:12:16:c6:c1:e0:e0:b1:b2:
b6:74:4e:3a:a6:1b:eb:6d:0f:20:4b:11:b6:e0:35:
d7:ef:c7:f1:51:e3:ae:7e:b2:61:b5:81:a7:c3:53:
1c:23:a6:51:a7:0b:d2:a3:ea:ff:d1:a6:fd:ae:5a:
cb:67:c8:4a:1d:22:aa:02:9b:95:d6:34:f6:56:6c:
c9:da:04:0d:4f:cc:eb:c2:f8:05:08:cd:b4:06:d9:
d4:a6:a3:d7:50:78:ea:2d:30:0b:6d:d6:de:13:47:
63:b7:05:64:7e:73:ed:9f:06:ec:65:95:b4:5a:37:
24:81:37:c9:73:4b:5a:15:5c:8f:ea:30:b8:37:b4:
f7:82:8f:65:2c:84:30:0c:78:3c:02:d8:ee:e9:0b:
94:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:62:23:FE:49:F8:1F:16:35:B4:B9:2A:42:1A:CB:CB:78:25:34:68
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/vmIj_kn4HxY1tLkqQhrLy3glNGg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
03:8a:4d:f0:83:1b:9d:33:92:a1:b9:85:f6:1b:a1:dc:be:f0:
c3:d0:f9:aa:62:47:39:12:ec:40:42:b7:1c:28:32:ec:b7:70:
1c:44:b8:da:b6:c8:54:c3:8d:e7:47:3b:80:52:60:75:10:d9:
7e:82:4d:62:ec:c1:1a:fb:df:8e:e7:15:91:fa:38:fd:fe:77:
41:b9:0e:95:03:ac:1a:61:e4:74:82:30:19:6d:e8:ce:ff:19:
87:94:44:87:e8:43:a0:ec:68:39:40:87:9a:29:f6:43:b0:1c:
e3:13:69:33:80:4f:99:28:b6:60:9d:0a:24:04:6f:32:86:f9:
1c:0f:a6:17:3c:65:35:dd:78:7c:0f:ac:97:df:5e:ce:df:bd:
46:bc:86:c6:66:c5:89:f2:30:d3:6c:ba:ee:d9:e9:a1:db:1a:
35:e2:cf:47:a7:62:fc:dd:11:22:da:c0:91:69:1d:55:c3:91:
81:f8:a0:6e:5e:40:fb:d1:87:c7:b1:41:df:57:4d:8a:e4:1a:
69:6f:07:9e:54:df:23:a2:84:97:4f:63:18:e4:95:43:50:b9:
7f:d7:ac:6b:e8:ae:0c:38:f6:d8:e4:e7:5e:70:2b:d1:7b:4d:
e8:86:19:c0:f4:88:7c:7e:7f:92:a1:86:65:c9:65:08:e5:2e:
ff:da:f7:7c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat May 17 21:06:56 2025 by rpki-client