Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/6_fHtiAqn5dAocEJQw0VvuXuZvo.roa
File: 6_fHtiAqn5dAocEJQw0VvuXuZvo.roa (raw, json)
Hash identifier: Bc4wto2LEylfhyuh+o2EjSjxL8jME1achSs8DbO0dc8=
Subject key identifier: EB:F7:C7:B6:20:2A:9F:97:40:A1:C1:09:43:0D:15:BE:E5:EE:66:FA
Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA
Certificate serial: 0812
Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/6_fHtiAqn5dAocEJQw0VvuXuZvo.roa
Signing time: Fri 23 May 2025 07:17:23 +0000
ROA not before: Fri 23 May 2025 07:17:23 +0000
ROA not after: Fri 03 Apr 2026 08:00:09 +0000
asID: 56040
IP address blocks: 223.160.224.0/21 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2066 (0x812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA
Validity
Not Before: May 23 07:17:23 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=EBF7C7B6202A9F9740A1C109430D15BEE5EE66FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a4:79:bc:cd:ca:33:a6:e9:40:9f:04:85:86:
26:20:26:bf:40:c6:6c:1f:e5:cf:02:bb:76:0b:ef:
06:e4:79:f6:d4:fb:dc:83:37:a6:0b:f3:23:18:59:
0b:03:ce:f3:1f:ea:43:df:3a:39:6b:5d:13:e5:e5:
c5:2a:27:f9:50:51:ab:9f:9b:99:d7:69:fc:67:10:
b3:ee:e4:ee:a9:0b:e7:51:97:79:dc:e6:15:a4:90:
11:6b:d6:52:bf:91:8f:1c:06:74:67:15:21:e1:11:
b3:9f:dc:ef:02:62:db:bc:cc:d8:e4:72:9e:f7:94:
c9:72:5f:32:8e:24:48:cf:af:7f:f6:43:8c:a4:7a:
46:c2:58:64:45:84:83:a6:e3:d3:2b:80:f4:1e:21:
b6:47:b8:74:fc:af:b6:df:e0:55:05:ba:4c:bd:16:
c1:64:1f:5a:db:29:19:37:4a:2d:cf:dc:85:46:3f:
32:6a:e2:f0:5c:92:8e:04:61:27:5e:b5:24:b7:42:
df:ad:50:7a:e4:5e:48:7f:a7:91:3b:26:a7:ec:60:
72:9d:a1:a0:5c:a9:77:7b:9f:ce:b2:b7:9f:f2:31:
3d:08:30:1d:4c:4f:fb:b6:c8:e1:00:be:4f:41:a8:
76:c5:b4:1a:8a:95:ff:db:29:10:d2:56:5c:28:62:
e2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F7:C7:B6:20:2A:9F:97:40:A1:C1:09:43:0D:15:BE:E5:EE:66:FA
X509v3 Authority Key Identifier:
keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/6_fHtiAqn5dAocEJQw0VvuXuZvo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.160.224.0/21
Signature Algorithm: sha256WithRSAEncryption
48:48:7d:9a:12:27:78:54:6d:13:e1:73:d3:9b:dc:69:55:b3:
39:b4:ae:d2:10:11:eb:d9:6c:37:b4:fd:2b:16:8a:fe:8f:5d:
4e:24:77:45:16:47:22:a9:06:4a:1c:aa:e0:78:34:b5:3b:ee:
14:07:e8:47:39:c8:88:14:88:de:b2:48:0b:7d:c3:ee:a3:2a:
9e:24:fa:31:89:bd:fc:2f:53:98:1e:15:3f:2b:05:06:a9:8c:
b9:58:82:f9:84:5d:3c:2c:5c:d0:e7:dc:dd:3c:0c:22:d1:92:
1e:bf:51:33:27:7f:0f:df:10:22:d9:fc:7e:11:ed:d2:f9:c5:
9d:07:1f:3e:13:81:a5:7f:49:78:61:6d:15:72:6b:87:57:ef:
dd:80:e7:22:d2:ab:ae:9a:ed:ec:85:54:09:78:07:3f:f3:dc:
86:65:cd:7e:33:ab:40:c0:03:a9:4f:93:d4:e4:2d:a4:7c:53:
87:8f:4a:14:33:1e:6e:9c:4f:5c:8d:c2:9c:09:ea:b1:18:0d:
af:dc:9d:01:b0:c5:15:7a:c6:a6:47:a0:d1:7f:6f:e1:c9:e2:
59:39:ed:e1:96:b7:5b:b4:9c:9e:1b:ca:e8:35:e1:0d:b8:e3:
b4:83:76:c4:ac:c3:f7:62:4b:aa:8d:fb:82:c7:a1:be:2d:35:
24:30:1b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 01:00:07 2025 by rpki-client