Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/J9RHlJIH2V6exAgIywcjzzpUVkU.roa
File: J9RHlJIH2V6exAgIywcjzzpUVkU.roa (raw, json)
Hash identifier: HHCnWEEPvaAlxnyboIsuRjgPK0qTJlNKd0RY3UONYJk=
Subject key identifier: 27:D4:47:94:92:07:D9:5E:9E:C4:08:08:CB:07:23:CF:3A:54:56:45
Certificate issuer: /CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Certificate serial: 0A12
Authority key identifier: 5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/J9RHlJIH2V6exAgIywcjzzpUVkU.roa
Signing time: Wed 20 Sep 2023 06:55:51 +0000
ROA not before: Wed 20 Sep 2023 06:55:51 +0000
ROA not after: Sat 06 Jan 2024 08:35:17 +0000
asID: 151492
IP address blocks: 103.186.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2578 (0xa12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Validity
Not Before: Sep 20 06:55:51 2023 GMT
Not After : Jan 6 08:35:17 2024 GMT
Subject: CN=27D447949207D95E9EC40808CB0723CF3A545645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:2a:f2:21:ab:e6:b9:03:58:b8:2c:8c:4e:40:
ac:6f:42:88:59:67:b3:95:09:ca:70:f6:6c:74:ce:
3b:59:32:f4:c2:ee:f1:b8:59:55:95:0c:e6:86:bb:
94:88:4d:de:50:92:7e:41:ae:1f:c3:9f:97:1e:45:
42:61:48:ee:96:3c:64:36:17:06:bb:80:fb:21:2f:
9e:c7:11:36:f1:55:0f:d0:cb:ca:1b:a9:9c:9e:9b:
cf:0a:0b:f9:4a:dd:32:df:77:8c:d0:76:be:54:cb:
97:76:16:e4:09:f4:74:29:38:f2:dd:a1:8c:99:28:
98:ef:14:69:54:d9:5e:1f:42:ac:42:e0:c0:0b:54:
c9:2d:be:9e:4d:57:03:a3:37:02:c6:66:aa:39:45:
f5:b9:8a:fd:6c:e4:21:b0:b5:7b:ac:e3:02:61:88:
b8:3e:a6:86:a4:0d:23:b7:8d:6f:3c:8a:21:b0:8d:
fe:27:6e:8d:c3:30:ff:26:ca:da:cb:13:17:f9:04:
43:58:c9:48:50:73:d9:54:34:36:72:6d:39:3a:92:
7f:b2:9b:e3:26:04:b4:05:b8:ae:e9:87:a6:c9:70:
25:7c:2a:90:08:3c:5d:40:ba:a3:58:4c:09:61:a7:
b7:d0:73:69:2c:e1:5f:f2:23:38:78:cb:bf:74:a3:
1a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D4:47:94:92:07:D9:5E:9E:C4:08:08:CB:07:23:CF:3A:54:56:45
X509v3 Authority Key Identifier:
keyid:5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/J9RHlJIH2V6exAgIywcjzzpUVkU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.136.0/23
Signature Algorithm: sha256WithRSAEncryption
90:30:35:66:8f:0b:f4:36:52:ff:fe:22:3b:a2:8d:ce:e4:8b:
88:11:6e:b7:6c:5f:8b:d9:f7:7f:0c:6a:ff:80:0a:b3:37:1b:
60:71:fc:4c:af:53:ad:e0:de:a3:fe:2e:93:89:33:1e:28:16:
68:64:ab:94:30:89:00:a6:03:1d:3c:f9:b1:6e:b2:b4:e6:2c:
cf:4e:1c:57:25:11:e6:8b:37:b2:95:c4:23:9a:ff:7f:31:0a:
07:c6:6a:10:51:38:48:63:ba:2f:3a:6d:1a:b9:45:4c:aa:97:
b2:96:0c:c8:49:d8:3f:5d:dd:7f:99:9a:48:97:df:75:b6:6c:
f8:cc:fc:f8:28:91:ab:e9:87:87:1d:ba:66:5d:33:e6:c5:6e:
c2:64:76:d7:14:2e:ba:cc:ff:31:e3:87:88:ed:a6:8d:b6:32:
e8:bc:d3:99:2e:22:fc:fa:fa:68:b1:c8:de:47:66:da:13:6f:
e0:89:29:1c:a5:2b:63:1a:df:2f:42:8c:47:ba:c6:da:48:7f:
60:28:7c:70:f4:b5:9b:31:3c:ee:2f:0f:d4:c4:ae:37:be:92:
ab:b3:58:ab:47:e3:29:7f:40:62:8d:f8:9f:76:69:c3:37:e8:
5f:5d:50:b5:af:1a:0e:cf:19:f8:e9:90:01:06:46:d8:0f:89:
70:4c:ea:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:36:40 2024 by rpki-client on console-ams.rpki-client.org