Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/76cx8fquGQlU67eDFsoViD7rZXg.roa
File: 76cx8fquGQlU67eDFsoViD7rZXg.roa (raw, json)
Hash identifier: n9L11ufu3a/2aLZGTCC1juQpzKRigFfe6Jl/VTLRgWE=
Subject key identifier: EF:A7:31:F1:FA:AE:19:09:54:EB:B7:83:16:CA:15:88:3E:EB:65:78
Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Certificate serial: 1E78
Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/76cx8fquGQlU67eDFsoViD7rZXg.roa
Signing time: Wed 13 Mar 2024 01:21:36 +0000
ROA not before: Wed 13 Mar 2024 01:21:36 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 134762
IP address blocks: 43.226.50.0/23 maxlen: 23
43.226.76.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7800 (0x1e78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Validity
Not Before: Mar 13 01:21:36 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=EFA731F1FAAE190954EBB78316CA15883EEB6578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9f:bb:95:17:f9:44:95:e8:b6:87:a9:60:a9:
dd:cc:a8:10:21:c2:08:c6:8d:c2:9b:ef:9f:13:ad:
cd:39:4e:91:a3:e9:9e:df:d1:06:ac:b3:87:d2:c3:
68:66:21:05:7d:3b:f9:8f:5d:63:91:20:fc:37:60:
b7:f7:80:55:d4:b2:5a:f6:56:21:48:0f:5a:a0:6c:
e5:88:35:dc:7f:6e:62:0f:6a:76:72:d7:43:fb:c3:
b2:6c:3f:52:78:cb:5b:6f:01:bc:d6:a8:1f:85:57:
34:0f:fe:cc:0f:b3:b2:88:6c:d7:bc:09:6f:9f:a6:
3a:e9:2c:bf:2c:51:9f:db:13:e4:63:aa:29:b5:84:
85:56:85:99:4b:dd:47:e5:de:44:30:5d:ca:e0:8d:
c0:63:e0:63:5e:91:05:ed:32:9e:7f:da:49:71:c4:
7e:5b:62:0d:18:dd:c4:42:f3:c6:a5:67:ac:aa:94:
eb:89:5b:08:6f:2e:22:95:56:f1:3d:54:ba:d6:3c:
17:23:7c:47:ec:e7:53:8d:65:2b:ea:b4:c9:08:76:
4a:c7:98:04:77:33:40:03:3d:d2:c3:38:ef:16:e5:
6b:c8:5f:8d:c6:24:08:ee:e2:a6:37:21:31:09:cd:
14:99:75:64:af:f9:5b:28:f9:ae:7b:24:8e:b4:2e:
a6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A7:31:F1:FA:AE:19:09:54:EB:B7:83:16:CA:15:88:3E:EB:65:78
X509v3 Authority Key Identifier:
keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/76cx8fquGQlU67eDFsoViD7rZXg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.50.0/23
43.226.76.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:7b:34:1a:7d:c5:25:77:ca:9e:ab:36:e9:e8:2f:5d:19:85:
ac:86:69:37:7f:10:66:5d:21:9f:4a:ee:b3:36:3e:4f:ae:4f:
e9:9a:6a:64:ce:e5:1b:77:03:72:cb:89:60:b1:fc:52:ba:c7:
66:2b:ec:6b:2c:8b:f6:fe:ab:c2:2b:30:63:04:00:da:c3:ba:
03:ff:96:d1:01:83:e1:fb:30:13:ee:95:59:95:d8:3c:ec:bc:
e1:46:e6:89:5e:7a:ef:88:25:0f:bb:f1:04:ae:05:a6:a9:2e:
f9:ad:2e:61:9f:69:f5:41:c2:07:e5:59:48:60:3e:d4:4d:5c:
f0:01:02:57:55:22:7e:3b:e6:d4:d5:27:5a:0e:5a:39:f7:bb:
93:16:91:2d:71:f1:24:40:53:ab:e1:23:63:d2:ae:da:33:81:
ef:72:e7:7c:31:7f:2d:be:57:0c:b3:a2:d5:da:b8:5f:a7:d4:
e1:cd:75:1c:21:3c:c6:40:ee:4b:76:a5:89:eb:34:f2:ef:c3:
62:af:25:d0:cb:67:c7:51:57:35:fb:db:3d:fd:96:f2:81:c2:
e3:db:a7:8f:1f:87:21:bd:8e:9a:e1:0b:d6:e6:88:b9:38:0a:
34:81:8b:d8:6e:5a:f6:2b:1a:fa:4b:dd:9a:c5:c7:4f:64:2e:
37:79:11:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:36:19 2025 by rpki-client