Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/yFbXIFqq-i0cWvtBpK39nuKKDBs.roa
File: yFbXIFqq-i0cWvtBpK39nuKKDBs.roa (raw, json)
Hash identifier: k/XDHmBkSLcYEyYyqgfvd2zcfX+EwcAGHMGk2qAjxdA=
Subject key identifier: C8:56:D7:20:5A:AA:FA:2D:1C:5A:FB:41:A4:AD:FD:9E:E2:8A:0C:1B
Certificate issuer: /CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Certificate serial: 0912
Authority key identifier: 77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/yFbXIFqq-i0cWvtBpK39nuKKDBs.roa
Signing time: Mon 27 Jan 2025 17:55:19 +0000
ROA not before: Mon 27 Jan 2025 17:55:19 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 139076
IP address blocks: 113.31.64.0/21 maxlen: 24
113.31.72.0/21 maxlen: 24
113.31.128.0/21 maxlen: 24
113.31.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2322 (0x912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7770B739B9EFCEB8BC1FDA0560E4785561F2BCBF
Validity
Not Before: Jan 27 17:55:19 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=C856D7205AAAFA2D1C5AFB41A4ADFD9EE28A0C1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ce:e1:50:a4:55:96:9e:62:6c:cb:65:79:43:
a0:d4:1c:9d:68:2b:3b:d3:13:f6:fc:37:ce:f6:e8:
bf:a8:48:d0:55:27:43:e4:bf:e6:a5:46:a7:0e:17:
d0:68:18:7a:98:c4:9f:fa:21:3c:9b:6a:e6:0b:a5:
cc:2f:76:cf:e1:47:89:c6:39:5e:09:f0:7b:78:ca:
56:cf:e9:a2:6b:cd:8c:80:8d:68:24:cd:86:f8:9c:
4c:b0:b8:59:ce:60:5d:d9:83:49:1a:c2:6f:4c:ee:
4c:18:73:38:f3:6e:e6:74:f3:81:b5:8c:8f:07:73:
c0:1c:6b:3a:bb:63:29:9e:18:20:08:cc:da:4e:b8:
aa:9f:f4:04:8e:85:36:cf:c1:78:78:df:f9:7e:9e:
c5:e1:c5:ff:dc:04:d8:b5:e5:e6:0f:15:4b:02:90:
29:d1:f0:8a:14:05:ce:3e:1d:4f:bc:34:d2:43:eb:
c7:dd:15:31:80:de:22:75:f8:b6:d2:82:bc:c7:80:
89:01:52:cb:ba:6b:79:df:35:61:e1:51:94:f5:71:
ed:11:4a:85:2c:4d:2b:03:67:63:cc:70:09:57:f6:
c6:0b:ae:10:46:85:01:d2:2e:79:e1:56:52:e4:97:
85:a9:11:68:87:8c:89:f6:6b:b9:8a:d5:8f:48:d9:
d8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:56:D7:20:5A:AA:FA:2D:1C:5A:FB:41:A4:AD:FD:9E:E2:8A:0C:1B
X509v3 Authority Key Identifier:
keyid:77:70:B7:39:B9:EF:CE:B8:BC:1F:DA:05:60:E4:78:55:61:F2:BC:BF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/d3C3Obnvzri8H9oFYOR4VWHyvL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/d3C3Obnvzri8H9oFYOR4VWHyvL8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/yFbXIFqq-i0cWvtBpK39nuKKDBs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.31.64.0/20
113.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
21:21:2c:78:4f:61:1e:43:e2:61:90:ef:12:f7:02:85:7f:fb:
c3:53:14:f9:06:aa:ac:9e:d0:5b:c6:b9:34:7c:c9:17:de:11:
a2:73:7b:c2:0d:43:f1:d4:06:64:61:39:47:dd:52:40:4a:65:
0b:6d:6b:87:a4:04:62:02:0a:5e:bf:01:9f:6b:69:56:27:f5:
c3:ec:c1:11:39:24:a6:39:8d:ea:21:b5:36:f3:02:3c:9b:07:
85:d1:4a:cf:8e:35:0a:db:df:ef:15:8f:ad:b4:b3:ef:fe:78:
a8:b4:28:bf:0e:64:e9:56:5f:a3:09:63:93:2e:82:92:86:8e:
9e:ab:b7:0e:44:c8:a9:88:42:7c:ca:2a:06:cf:3d:34:82:63:
8c:18:a9:e5:9e:c3:1e:44:4a:b8:fc:27:e8:0d:bb:e3:02:d1:
58:98:3f:f9:e0:01:79:fb:e3:6a:4d:fe:0c:f3:55:bc:a4:c6:
48:e8:55:cf:01:1b:ef:33:a2:72:82:95:04:25:f8:a2:bd:dc:
55:98:d7:93:bb:0b:5a:2e:2d:a6:a9:3c:19:57:38:1f:f1:c4:
66:b9:dd:36:0e:74:93:11:d4:50:dc:73:02:de:56:2a:d0:c3:
ca:9f:86:f4:49:37:96:1d:3c:93:48:8b:50:7e:01:30:c5:45:
e2:cc:4b:86
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun May 18 06:47:50 2025 by rpki-client