Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa
File: 9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa (raw, json)
Hash identifier: HI7bNEM2v6YnEaabTFCNifxaIefAPVp+TCEal4K6UEw=
Subject key identifier: F6:0B:77:B0:EE:05:F1:50:20:09:A0:64:01:82:C0:47:AA:95:11:A6
Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Certificate serial: 1D8C
Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa
Signing time: Thu 12 Sep 2024 11:20:03 +0000
ROA not before: Thu 12 Sep 2024 11:20:03 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 212237
IP address blocks: 2403:6380:50::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7564 (0x1d8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267
Validity
Not Before: Sep 12 11:20:03 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F60B77B0EE05F1502009A0640182C047AA9511A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:65:63:97:2e:20:d6:be:d0:02:37:d4:a7:00:
8a:db:a5:fb:f7:3d:c3:5a:bb:88:7c:c4:8d:f2:cb:
26:6e:c5:e5:37:2c:f0:a3:44:d0:34:76:df:9d:92:
96:dd:1b:f8:83:61:fe:d8:b2:33:33:86:0f:af:c2:
a0:7b:9c:28:57:c5:45:8f:26:5c:9e:be:13:09:8e:
03:13:b2:4f:f7:1a:e0:8b:09:96:24:00:cc:da:c0:
37:ce:8f:97:81:41:47:81:ba:d3:56:70:d1:ab:8c:
96:90:33:40:15:af:f9:5e:0e:f9:2a:3e:cd:aa:ea:
a0:3e:43:ac:71:eb:3e:9b:93:d4:ee:b5:db:4e:9f:
55:0c:8a:a8:57:e7:0f:87:35:97:91:ea:07:8f:83:
9b:7c:d7:d5:a9:9a:86:6d:0f:54:b8:f4:06:fe:2f:
5f:8c:46:58:09:86:7f:83:5e:63:d0:1e:2d:3c:e0:
88:42:bf:e0:da:cd:07:bb:5e:ed:45:63:e1:35:61:
e6:4c:d0:9d:77:e6:48:1e:ec:42:89:db:d4:c3:f9:
e8:f9:10:f9:9d:fc:29:11:21:56:3b:d5:e5:77:eb:
ce:d4:d2:e4:1d:68:83:90:f1:37:d9:8f:b8:40:b3:
eb:59:1b:21:37:c9:fc:d8:d2:4b:41:1c:64:74:ec:
30:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:0B:77:B0:EE:05:F1:50:20:09:A0:64:01:82:C0:47:AA:95:11:A6
X509v3 Authority Key Identifier:
keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/9gt3sO4F8VAgCaBkAYLAR6qVEaY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:6380:50::/44
Signature Algorithm: sha256WithRSAEncryption
20:a0:0b:2e:34:a1:87:2b:50:22:28:8c:de:43:15:12:24:65:
ef:a8:90:49:0c:a0:c4:20:68:36:30:8f:d5:0f:3b:38:a2:52:
e1:e6:50:aa:7e:da:c9:8a:36:40:b3:2c:4f:29:4a:e0:26:7d:
f5:63:a8:ce:5d:81:42:3d:b4:4b:73:fb:07:81:5e:bf:ef:e1:
58:80:cc:47:fa:57:ba:01:19:27:58:a4:cf:09:af:32:d2:89:
51:5e:e6:24:bf:a3:b1:0f:e3:64:3c:e3:69:d8:d9:a5:6e:95:
6d:09:33:65:9c:df:8a:4f:82:b4:d4:85:b0:49:d4:d6:6a:51:
75:d0:a8:a5:cf:fe:3f:c9:3c:ce:2c:ce:1e:47:1e:1f:64:97:
db:1b:7c:22:dd:04:34:c1:83:6c:8d:6e:ab:41:a6:56:89:74:
ab:c6:07:96:c7:4c:18:60:08:bc:13:56:20:92:af:85:44:25:
01:9d:30:97:8d:4d:46:48:5f:0e:3c:49:18:b2:57:49:db:92:
1a:9b:fa:07:04:20:a0:9c:69:f5:76:f1:08:d3:72:82:46:3d:
64:5e:b1:7a:2c:52:45:25:06:e0:ac:b2:b0:cc:cf:a9:3e:a4:
83:29:7c:9c:15:93:64:54:a6:19:cc:cb:e2:c6:09:7f:16:92:
de:6a:c8:bf
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:44:41 2025 by rpki-client