Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3252/ScC9buZiSw4_qpiy_ulqUgHpdtU.roa
File: ScC9buZiSw4_qpiy_ulqUgHpdtU.roa (raw, json)
Hash identifier: KknuZqonEbcddI68l7NTJGRWer4QzBvj+7ijYZMGv+Q=
Subject key identifier: 49:C0:BD:6E:E6:62:4B:0E:3F:AA:98:B2:FE:E9:6A:52:01:E9:76:D5
Certificate issuer: /CN=EA1DD0A5BE3961989984E1C447C241FFC16DAA33
Certificate serial: 57
Authority key identifier: EA:1D:D0:A5:BE:39:61:98:99:84:E1:C4:47:C2:41:FF:C1:6D:AA:33
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6h3Qpb45YZiZhOHER8JB_8FtqjM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/ScC9buZiSw4_qpiy_ulqUgHpdtU.roa
Signing time: Thu 18 Jan 2024 07:51:17 +0000
ROA not before: Thu 18 Jan 2024 07:51:17 +0000
ROA not after: Wed 01 Jan 2025 02:06:08 +0000
asID: 63538
IP address blocks: 2401:70e0::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EA1DD0A5BE3961989984E1C447C241FFC16DAA33
Validity
Not Before: Jan 18 07:51:17 2024 GMT
Not After : Jan 1 02:06:08 2025 GMT
Subject: CN=49C0BD6EE6624B0E3FAA98B2FEE96A5201E976D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:91:d3:6f:b8:1b:be:7a:3d:40:d3:26:51:b8:
6f:26:6a:66:22:47:7f:4a:4b:2a:00:fb:8d:ee:3c:
e6:cd:d3:02:b4:3a:bc:e8:b7:d7:63:3f:43:95:dd:
5e:68:ad:56:f6:1f:60:2d:df:1c:96:00:db:0d:51:
74:be:67:3b:75:c5:16:e2:b6:b7:32:df:ee:c5:0b:
2e:ff:f3:e2:80:1d:11:c2:2d:8a:cd:44:f6:09:e0:
17:2e:5f:d4:e7:df:68:7a:03:f6:68:91:34:01:8f:
b5:8d:e5:5e:91:ce:18:e8:78:f2:c5:4a:66:66:90:
3c:2c:bb:38:27:1a:8b:9b:7c:79:01:3b:61:49:3d:
ab:5b:2f:3a:07:a5:43:8d:34:59:d7:45:05:3b:5a:
23:a2:2e:d0:00:fc:3f:5b:17:05:76:e1:88:ab:df:
40:38:71:a6:b5:06:62:61:78:6c:c7:f5:5d:0e:3f:
e3:db:e2:4c:fd:7e:72:ad:d2:67:7f:56:f4:42:03:
43:89:99:d6:05:0a:30:62:45:77:df:37:da:47:21:
88:b6:b4:c1:95:c2:b5:58:41:48:0f:d0:33:0d:71:
9c:88:95:24:df:0e:e8:95:b8:43:62:08:79:b6:67:
b6:f9:43:0e:07:82:ef:e2:ec:5a:b8:18:73:d8:8d:
e5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C0:BD:6E:E6:62:4B:0E:3F:AA:98:B2:FE:E9:6A:52:01:E9:76:D5
X509v3 Authority Key Identifier:
keyid:EA:1D:D0:A5:BE:39:61:98:99:84:E1:C4:47:C2:41:FF:C1:6D:AA:33
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/6h3Qpb45YZiZhOHER8JB_8FtqjM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6h3Qpb45YZiZhOHER8JB_8FtqjM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/ScC9buZiSw4_qpiy_ulqUgHpdtU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:70e0::/32
Signature Algorithm: sha256WithRSAEncryption
05:d9:4a:fc:8d:4f:ef:09:51:eb:4c:c6:ba:9a:7e:31:60:5a:
45:43:9c:07:2d:be:ca:66:b6:39:2b:c7:5e:3c:75:10:66:be:
89:53:bf:0d:4b:74:a9:85:05:26:fb:f9:11:67:12:35:0a:82:
eb:8f:1b:9d:12:4c:a7:99:41:a3:ee:82:79:c6:b3:d8:e1:b7:
e5:5b:58:81:03:c0:ec:39:69:b2:59:c5:d1:50:14:86:8b:8e:
b9:05:65:5a:f0:60:ce:8e:09:d1:f0:98:d2:cb:62:7f:83:32:
28:12:23:ee:18:73:7d:d1:e0:03:ff:62:11:ca:8f:5b:00:89:
50:d4:f1:ce:aa:18:ea:4f:ce:38:a7:f0:25:f8:30:04:c7:1a:
23:39:46:81:99:4f:b0:6c:88:e2:0c:ea:84:1b:03:15:ef:72:
10:17:63:cb:ea:81:a4:94:05:e1:86:07:f8:9c:6f:e8:87:37:
9c:ef:2f:ac:19:dc:b1:fe:bb:e2:13:58:ea:1e:4f:52:40:25:
04:97:4f:60:9c:e4:b0:9f:63:af:37:d3:4a:98:9e:1c:3a:b6:
3c:98:d8:b8:a2:69:b5:ca:8d:07:20:9c:a7:8d:71:97:2b:0b:
da:0f:2f:02:78:8a:0f:d4:6d:b0:c5:d8:4d:02:6c:d7:c2:17:
de:f3:6b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:33:09 2025 by rpki-client