Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/XPhQPLCkylqFCF864LERatn-gcQ.roa
File: XPhQPLCkylqFCF864LERatn-gcQ.roa (raw, json)
Hash identifier: LlRaYUHKQMR0XG8HbDW4Hwl6FvnBvUzXK1A7xyDYYSU=
Subject key identifier: 5C:F8:50:3C:B0:A4:CA:5A:85:08:5F:3A:E0:B1:11:6A:D9:FE:81:C4
Certificate issuer: /CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Certificate serial: 0A13
Authority key identifier: 5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/XPhQPLCkylqFCF864LERatn-gcQ.roa
Signing time: Wed 20 Sep 2023 06:55:51 +0000
ROA not before: Wed 20 Sep 2023 06:55:51 +0000
ROA not after: Sat 06 Jan 2024 08:35:17 +0000
asID: 151492
IP address blocks: 103.186.136.0/24 maxlen: 24
103.186.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2579 (0xa13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Validity
Not Before: Sep 20 06:55:51 2023 GMT
Not After : Jan 6 08:35:17 2024 GMT
Subject: CN=5CF8503CB0A4CA5A85085F3AE0B1116AD9FE81C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2c:f6:35:e3:61:ef:a6:fe:8d:d0:72:a0:e7:
04:5c:a5:e6:dd:3d:07:69:57:86:cc:84:35:eb:3d:
9d:d7:75:ea:d5:c1:d6:71:9b:bd:0f:92:42:ab:97:
f4:b6:5a:e5:ef:d7:9c:95:7c:a6:a3:46:2f:30:34:
08:64:2b:a9:00:a2:66:d1:87:23:da:29:fb:11:db:
21:94:bd:f9:e9:7d:64:e4:6f:bf:ff:83:55:b1:03:
6c:1f:59:9d:65:ac:fa:3c:35:b3:6b:57:3f:3b:3e:
52:5f:0b:86:b7:67:ff:ff:74:27:bc:94:43:51:47:
af:20:82:72:30:98:5e:e8:f1:49:50:8c:2c:61:cb:
05:ef:09:77:68:ec:ee:b0:98:ae:03:b7:97:d1:7c:
67:96:13:72:65:43:ca:db:42:78:0c:4f:4f:f2:d7:
d0:72:f0:2b:01:0f:f4:3a:7e:a4:2e:22:de:97:bd:
c6:2f:2b:fd:1d:93:9a:d7:a0:9c:8f:49:05:19:61:
ca:83:b6:1b:b4:d6:90:7b:d0:a8:5d:d2:fc:4d:ac:
a5:81:7f:b5:65:20:da:ae:1a:d8:1d:13:7b:c4:81:
6b:05:a4:c3:53:62:28:e7:37:53:3d:47:bc:55:39:
84:26:54:32:81:82:7e:51:3b:26:13:48:80:0d:5e:
6b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F8:50:3C:B0:A4:CA:5A:85:08:5F:3A:E0:B1:11:6A:D9:FE:81:C4
X509v3 Authority Key Identifier:
keyid:5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/XPhQPLCkylqFCF864LERatn-gcQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.136.0/23
Signature Algorithm: sha256WithRSAEncryption
08:68:5c:c1:6f:cf:d5:95:5f:7a:8d:09:0b:4d:3c:5c:8a:93:
32:7d:42:fc:ed:cc:e0:e4:7b:f7:4b:7e:18:92:98:02:54:bb:
a7:dc:f6:7b:71:dd:b5:57:37:8e:16:22:84:f5:61:f6:25:91:
6b:64:22:79:0d:27:ac:28:48:63:91:ac:c0:ed:eb:3c:97:46:
8f:52:35:9d:4c:49:db:a2:2a:97:5a:60:d2:58:07:fb:10:6c:
62:4a:b8:b0:63:9b:06:3c:85:5f:02:ac:c1:e7:aa:ca:a2:99:
ad:09:6a:30:30:a1:81:6f:d0:4b:d3:93:4d:ce:ed:b5:b0:21:
e9:e3:71:a7:94:47:90:b2:cb:0a:df:9d:77:7a:18:b5:f5:c2:
d6:bd:1c:d6:13:47:b9:fd:37:26:9e:d2:0d:4a:aa:ce:48:35:
1a:d6:c9:27:72:74:76:1c:5b:26:c6:19:66:fe:91:86:bd:33:
12:91:83:74:a0:50:a2:6a:1d:e0:dc:b1:90:c2:9f:5b:ca:c5:
f9:df:a5:b0:ae:67:1f:6d:7f:fe:9a:56:e4:2d:04:60:dd:a4:
e7:b9:62:4f:18:fb:dc:5e:1a:35:83:a8:2e:29:d7:44:e5:f4:
c5:bc:44:c7:cc:20:8d:59:ce:29:df:11:e5:f8:e0:d2:dc:86:
2e:4b:df:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:36:40 2024 by rpki-client on console-ams.rpki-client.org