Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3040/93R8bTP6CO18v5ByDpZO0zylRiA.roa
File: 93R8bTP6CO18v5ByDpZO0zylRiA.roa (raw, json)
Hash identifier: 8nkWRArgfOS5z4iViWgQcp3Pq8/rmpiGRQBpUMs8SWY=
Subject key identifier: F7:74:7C:6D:33:FA:08:ED:7C:BF:90:72:0E:96:4E:D3:3C:A5:46:20
Certificate issuer: /CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5
Certificate serial: 1978
Authority key identifier: 03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/93R8bTP6CO18v5ByDpZO0zylRiA.roa
Signing time: Wed 13 Mar 2024 01:23:42 +0000
ROA not before: Wed 13 Mar 2024 01:23:42 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 131484
IP address blocks: 2406:d140::/32 maxlen: 48
2406:d140:8000::/34 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6520 (0x1978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5
Validity
Not Before: Mar 13 01:23:42 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=F7747C6D33FA08ED7CBF90720E964ED33CA54620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c2:e1:ae:f1:65:fd:76:4d:42:96:46:ae:e4:
61:10:de:52:6f:57:4b:d6:b1:a3:00:20:9a:7d:cc:
60:06:f0:aa:fa:ca:e0:d3:2d:6b:e0:11:be:34:18:
83:43:a9:c7:46:b1:37:fa:64:98:2b:53:f4:e7:a1:
52:75:93:c3:14:ac:ca:44:41:d2:41:82:88:8d:c0:
23:b0:2e:46:41:a8:99:c0:9a:2e:53:bc:2a:9e:e1:
d1:fe:4b:bd:77:f4:e4:ac:ba:61:70:3b:23:d8:23:
d5:e5:7c:13:b4:d3:48:4b:c2:40:a4:01:00:b8:78:
48:11:ff:95:83:92:99:83:d2:ab:1b:f5:c0:7b:bd:
37:54:a9:40:17:80:18:21:c4:f8:70:7d:58:e7:b5:
d6:cd:54:63:53:8c:a2:3a:8a:a7:b0:b7:24:9d:9e:
60:6b:11:e9:12:78:5d:f4:33:69:b5:1e:2f:13:be:
a9:38:ec:08:31:75:5a:1f:38:32:0f:1f:cc:99:b6:
45:48:47:7f:0e:34:cf:1c:2a:9b:68:a8:94:c6:cf:
80:e9:5e:5f:1b:25:0c:21:a2:81:f8:23:e4:eb:6a:
ec:d7:b9:e4:2f:54:1a:63:fe:a3:dd:42:47:79:77:
1d:cb:0b:22:c6:07:47:70:03:57:38:6e:60:bc:9c:
52:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:74:7C:6D:33:FA:08:ED:7C:BF:90:72:0E:96:4E:D3:3C:A5:46:20
X509v3 Authority Key Identifier:
keyid:03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/93R8bTP6CO18v5ByDpZO0zylRiA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:d140::/32
Signature Algorithm: sha256WithRSAEncryption
5b:3f:0b:f9:3a:13:d0:cb:27:c7:11:93:d8:91:98:5e:cc:5e:
bd:cf:29:71:b7:09:11:1c:6f:a0:31:6b:06:cc:07:cb:7c:68:
88:b1:9c:eb:31:de:09:d3:29:45:2b:6e:3f:f0:15:b1:cd:00:
79:c5:10:96:bf:3c:ac:41:ae:03:59:ff:c3:e3:8a:f7:25:4e:
b2:0b:d4:a1:a0:5a:c1:10:60:69:ea:25:fa:98:9a:66:0c:d0:
e7:d2:61:bc:7d:68:2d:0d:eb:e4:08:31:55:e2:56:a9:09:bd:
16:e3:33:2a:96:14:97:32:a8:7f:c9:85:ea:38:55:0b:45:64:
53:0f:7f:6f:0b:e4:8d:94:42:9f:f0:8f:ae:b7:d6:8a:b9:f7:
9f:30:15:1c:91:6b:eb:49:60:e1:9b:c6:78:f4:f7:d3:aa:65:
af:72:30:f1:f8:4b:30:64:c1:a7:ff:70:89:86:14:24:75:04:
92:f5:f2:77:55:15:62:d2:ed:e0:33:ec:6c:d0:50:66:31:cd:
b3:c9:a5:31:ee:07:47:90:c8:56:11:4c:ef:94:95:fd:2e:16:
11:26:14:90:b9:08:a5:3d:46:32:dc:c6:69:45:79:f2:98:4f:
f7:b1:95:8f:cd:8f:1d:aa:ba:cc:fa:ac:ed:fb:02:5a:3a:85:
98:d5:64:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:42:14 2025 by rpki-client