Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3168/hF2Je7DAQzD0DJja_MAMdY4clls.roa
File: hF2Je7DAQzD0DJja_MAMdY4clls.roa (raw, json)
Hash identifier: ECBTqSGhjfNqgmlPS+51bX54ipuP1a3kzzh7obJu5iM=
Subject key identifier: 84:5D:89:7B:B0:C0:43:30:F4:0C:98:DA:FC:C0:0C:75:8E:1C:96:5B
Certificate issuer: /CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Certificate serial: 0E1F
Authority key identifier: 24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/hF2Je7DAQzD0DJja_MAMdY4clls.roa
Signing time: Sat 27 Jul 2024 07:45:18 +0000
ROA not before: Sat 27 Jul 2024 07:45:18 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 211392
IP address blocks: 103.79.228.0/24 maxlen: 24
103.79.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3615 (0xe1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Validity
Not Before: Jul 27 07:45:18 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=845D897BB0C04330F40C98DAFCC00C758E1C965B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3e:be:45:14:37:79:bc:85:2f:28:ec:cf:01:
b0:d3:7a:6a:41:fa:c8:80:5b:f9:fb:1d:35:fd:21:
f4:9e:8c:b7:24:c6:7e:e4:04:9e:f0:ed:d6:a5:e1:
cc:aa:b1:be:e3:8f:d0:f4:34:2e:84:15:cf:69:78:
71:b5:47:3e:62:6e:29:42:1d:4a:9a:8d:71:91:d9:
27:d8:5e:35:75:c1:0b:e1:00:e1:29:a4:8d:20:4c:
d4:9c:f5:f0:4a:15:a3:51:aa:d5:2b:d7:b3:82:12:
22:4a:73:18:6d:f3:2f:86:8c:12:84:d0:8d:a5:a7:
10:44:ef:9d:3f:31:d7:04:6a:11:27:71:1d:31:0d:
48:b0:4b:d8:85:63:b4:d0:5c:ab:06:8d:e6:41:06:
d3:d3:63:83:42:fb:9d:bd:aa:00:b6:ed:26:4f:96:
7c:6c:69:d4:e3:0a:ff:37:13:20:7e:cd:9e:3f:2b:
fc:af:8f:2e:9e:01:5d:03:6f:f9:09:bd:f7:58:c5:
00:6f:30:ea:24:4d:0b:06:64:e2:da:8b:08:b7:ba:
e7:b9:31:9f:74:95:bd:74:c7:2f:41:50:00:7d:93:
c4:6b:eb:68:e9:c5:6d:ec:1a:c9:f5:49:5c:8c:f4:
7c:2d:82:c5:9c:9c:67:a0:61:25:53:49:84:e3:d9:
e7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5D:89:7B:B0:C0:43:30:F4:0C:98:DA:FC:C0:0C:75:8E:1C:96:5B
X509v3 Authority Key Identifier:
keyid:24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/hF2Je7DAQzD0DJja_MAMdY4clls.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.79.228.0/23
Signature Algorithm: sha256WithRSAEncryption
88:4d:ad:63:0e:db:59:cc:bb:ae:d7:15:b3:14:33:2f:84:4d:
57:ae:96:83:1a:2c:b6:5f:2a:9b:e6:d2:61:26:05:51:2c:ab:
62:94:39:53:00:4b:f5:c6:96:a0:98:d2:61:20:90:dc:1c:69:
61:68:63:3b:31:18:00:ef:b2:81:5e:f8:2f:c2:be:bf:55:00:
64:25:43:48:d5:2d:d9:9b:b1:4d:bd:de:02:fb:20:64:27:31:
9c:a4:8f:4d:44:15:f1:81:31:0d:cf:ef:95:3a:08:d3:13:74:
fc:e1:6f:41:b7:1a:ef:80:2d:28:1c:0b:54:c0:c1:52:67:98:
32:2c:e8:b3:19:f3:15:e2:41:8b:37:6f:c4:7a:73:37:c9:9f:
75:6e:61:95:72:85:17:b5:c5:99:21:fb:e0:41:bd:9f:5c:24:
92:7c:7e:55:95:0c:11:12:39:cd:4a:96:76:ad:08:87:2e:25:
44:d1:ee:d2:5c:84:54:ab:55:e6:72:21:0d:ac:41:25:2e:e3:
01:31:a6:f5:ac:82:d3:53:46:af:3d:7f:2f:ef:b4:32:12:68:
1d:cf:a5:fa:d1:ae:3d:b5:e5:51:57:ce:d9:12:ce:86:df:65:
68:54:41:96:3a:7d:8a:e6:49:5e:6c:6b:9a:f5:a6:a1:74:16:
fd:08:9b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:38:44 2025 by rpki-client