Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3168/OUXcSKjKyxQfnELn3zJCw9NZJxA.roa
File: OUXcSKjKyxQfnELn3zJCw9NZJxA.roa (raw, json)
Hash identifier: M1CbHMM6pfNiYzl372XljSrcrUiwHiBXwdg6yt+0/0Q=
Subject key identifier: 39:45:DC:48:A8:CA:CB:14:1F:9C:42:E7:DF:32:42:C3:D3:59:27:10
Certificate issuer: /CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Certificate serial: 0CDA
Authority key identifier: 24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/OUXcSKjKyxQfnELn3zJCw9NZJxA.roa
Signing time: Fri 24 May 2024 02:24:42 +0000
ROA not before: Fri 24 May 2024 02:24:42 +0000
ROA not after: Sat 10 Aug 2024 07:41:13 +0000
asID: 209242
IP address blocks: 103.79.228.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3290 (0xcda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Validity
Not Before: May 24 02:24:42 2024 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=3945DC48A8CACB141F9C42E7DF3242C3D3592710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:95:0a:61:7a:cc:e7:79:ea:00:dd:b5:a1:95:
c2:16:1b:98:6f:74:ce:d9:5b:ee:45:64:0a:69:50:
3e:19:24:bb:fa:a5:4b:69:d2:c7:e4:86:2e:c8:3c:
7d:50:c4:3a:45:e5:90:62:32:76:4f:40:c4:d9:1e:
78:c5:45:d6:e3:82:c4:66:bd:91:73:53:d0:48:b9:
47:88:22:c1:4e:4a:fb:30:d7:d4:90:af:a0:ca:b0:
5a:00:49:cd:ef:18:0d:cb:23:44:2f:4a:e4:22:25:
44:e2:18:3a:ae:6b:ae:2a:f1:fa:fd:2a:f4:4b:d3:
a2:fd:c6:52:c0:02:3f:ee:b7:78:86:a2:79:26:5d:
95:40:ff:e3:2d:28:de:86:36:64:0e:79:17:14:c2:
14:cb:7f:b5:e2:48:4a:d4:7b:1b:5f:c9:9b:ed:90:
ea:83:62:50:fd:7a:7c:5a:6b:6d:5f:c7:35:d8:c9:
51:e5:b9:c9:94:39:79:40:7b:4d:88:e4:46:48:1f:
c2:bf:32:1b:fd:48:33:2b:d2:c1:21:b1:44:c6:1d:
35:73:1e:cb:dd:09:c2:89:a1:39:d6:d9:39:41:d7:
25:9e:04:69:2c:20:0f:49:79:17:ba:b1:e9:18:1e:
77:69:ff:83:4f:20:8d:58:57:56:2b:75:6b:ef:77:
ec:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:45:DC:48:A8:CA:CB:14:1F:9C:42:E7:DF:32:42:C3:D3:59:27:10
X509v3 Authority Key Identifier:
keyid:24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/OUXcSKjKyxQfnELn3zJCw9NZJxA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.79.228.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:ac:d0:f8:3b:48:21:c2:08:a4:82:92:5c:a8:e5:fb:9f:a3:
dd:91:36:03:e3:da:9b:74:ca:b9:57:81:2f:1d:bc:3e:ce:c2:
00:3e:bb:4f:1b:d9:08:17:4c:d4:0a:64:b3:4c:3f:1f:89:48:
0b:7b:11:ad:c0:ab:0e:80:6a:87:80:f4:a5:fa:34:03:a7:c2:
5a:85:62:c6:66:eb:e3:d2:d1:e1:ee:e5:51:d6:61:4b:f2:40:
ae:35:87:b2:1d:21:be:37:c0:47:71:bf:1e:2b:bd:be:57:6b:
c4:cf:25:11:9a:7e:d3:17:2c:6e:61:11:69:62:13:3a:c8:23:
e6:c7:eb:f7:62:92:c3:a3:2e:3b:8a:f9:96:c2:04:67:e6:9e:
6b:99:62:2e:f0:a3:ac:8d:55:bb:24:d7:97:86:e0:40:f4:ab:
69:70:d0:de:7b:07:b1:72:01:69:77:ab:96:9e:20:58:cd:8d:
ff:21:c1:6e:9c:76:ac:21:e3:e3:da:21:97:5b:ec:dd:55:2a:
65:50:a8:72:78:65:d3:f6:3d:fe:de:b5:5a:03:7f:7b:39:31:
6d:9f:cd:a5:51:36:32:aa:65:47:40:44:e3:4c:1a:a6:da:f5:
2a:af:4f:fe:04:a9:4f:b0:96:26:54:42:a6:5e:28:c0:f9:ba:
c7:a1:29:c1
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICDNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjQw
OTg3RjQwQTYwMzBDREZBMzNERUQxRUVFN0NGNERDN0MzMDA5NDAeFw0yNDA1MjQw
MjI0NDJaFw0yNDA4MTAwNzQxMTNaMDMxMTAvBgNVBAMTKDM5NDVEQzQ4QThDQUNC
MTQxRjlDNDJFN0RGMzI0MkMzRDM1OTI3MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDllQpheszneeoA3bWhlcIWG5hvdM7ZW+5FZAppUD4ZJLv6pUtp
0sfkhi7IPH1QxDpF5ZBiMnZPQMTZHnjFRdbjgsRmvZFzU9BIuUeIIsFOSvsw19SQ
r6DKsFoASc3vGA3LI0QvSuQiJUTiGDqua64q8fr9KvRL06L9xlLAAj/ut3iGonkm
XZVA/+MtKN6GNmQOeRcUwhTLf7XiSErUextfyZvtkOqDYlD9enxaa21fxzXYyVHl
ucmUOXlAe02I5EZIH8K/Mhv9SDMr0sEhsUTGHTVzHsvdCcKJoTnW2TlB1yWeBGks
IA9JeRe6sekYHndp/4NPII1YV1YrdWvvd+zfAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUOUXcSKjKyxQfnELn3zJCw9NZJxAwHwYDVR0jBBgwFoAUJAmH9ApgMM36M97R
7ufPTcfDAJQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2
OC9KQW1IOUFwZ01NMzZNOTdSN3VmUFRjZkRBSlEuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0pBbUg5QXBnTU0zNk05N1I3dWZQVGNmREFKUS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjgvT1VYY1NLakt5eFFm
bkVMbjN6SkN3OU5aSnhBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAWdP5DANBgkqhkiG9w0BAQsFAAOCAQEAbKzQ+DtIIcIIpIKSXKjl+5+j3ZE2
A+Pam3TKuVeBLx28Ps7CAD67TxvZCBdM1Apks0w/H4lIC3sRrcCrDoBqh4D0pfo0
A6fCWoVixmbr49LR4e7lUdZhS/JArjWHsh0hvjfAR3G/Hiu9vldrxM8lEZp+0xcs
bmERaWITOsgj5sfr92KSw6MuO4r5lsIEZ+aea5liLvCjrI1VuyTXl4bgQPSraXDQ
3nsHsXIBaXerlp4gWM2N/yHBbpx2rCHj49ohl1vs3VUqZVCocnhl0/Y9/t61WgN/
ezkxbZ/NpVE2MqplR0BE40waptr1Kq9P/gSpT7CWJlRCpl4owPm6x6EpwQ==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:48:51 2025 by rpki-client