Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/wG3GF-RbkWB6GmD1MArcTJRDmqg.roa
File: wG3GF-RbkWB6GmD1MArcTJRDmqg.roa (raw, json)
Hash identifier: xAx8S1MBNaqKGCu9ToG0KIhJ9W3o+uLSW08+q2umOHg=
Subject key identifier: C0:6D:C6:17:E4:5B:91:60:7A:1A:60:F5:30:0A:DC:4C:94:43:9A:A8
Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054
Certificate serial: 201B
Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/wG3GF-RbkWB6GmD1MArcTJRDmqg.roa
Signing time: Tue 26 Aug 2025 04:55:24 +0000
ROA not before: Tue 26 Aug 2025 04:55:24 +0000
ROA not after: Mon 03 Aug 2026 08:44:40 +0000
asID: 4808
IP address blocks: 103.227.80.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8219 (0x201b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054
Validity
Not Before: Aug 26 04:55:24 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=C06DC617E45B91607A1A60F5300ADC4C94439AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0a:0c:b2:79:8d:bb:54:14:08:5d:be:02:a3:
91:1d:ba:9f:06:ed:24:80:b2:84:08:99:48:d6:c9:
7d:f5:75:67:be:2a:6d:dc:11:b7:1f:d3:15:8e:8c:
e4:80:be:fb:60:0d:32:e2:dd:33:ff:2e:a1:25:f3:
c6:95:29:51:79:0a:8a:f7:4b:b4:df:82:51:6f:75:
bc:2c:76:16:1a:31:03:04:f1:e5:1f:59:28:b9:8f:
d7:b5:71:09:65:6a:b7:50:23:85:2e:ae:67:8d:4e:
be:b3:c8:e1:36:24:9b:be:b4:89:9c:2b:b3:5c:5b:
6e:e8:47:54:c9:1a:b8:ed:62:81:80:b6:c9:5c:63:
b0:bb:21:06:23:4b:47:52:ba:ea:a8:80:dd:90:a6:
96:49:33:9a:d4:2e:45:62:c5:88:a7:c4:28:57:14:
c4:06:68:a4:fd:22:cf:32:4e:59:8e:4d:d0:3d:52:
21:45:db:2e:0d:84:8b:e7:72:7f:db:a6:c3:95:76:
d5:91:1e:dd:77:d3:0d:e2:77:14:7e:55:eb:de:b4:
5c:98:94:41:b5:a4:bc:a7:82:c1:92:42:a4:4e:8d:
69:b1:80:bb:9d:e7:9a:3c:d8:43:75:12:14:96:ed:
31:6d:f6:ce:bb:2f:a4:63:84:a8:db:a6:0e:c4:14:
02:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:6D:C6:17:E4:5B:91:60:7A:1A:60:F5:30:0A:DC:4C:94:43:9A:A8
X509v3 Authority Key Identifier:
keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/wG3GF-RbkWB6GmD1MArcTJRDmqg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.80.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:fa:96:d2:1f:54:8c:41:af:03:22:ac:dc:27:84:f4:87:43:
a2:c8:21:0d:af:fd:32:74:3a:0d:93:91:6f:82:51:3b:79:cd:
32:ab:0b:6f:6d:ee:26:13:c9:81:46:fb:10:94:d8:bc:3a:c6:
62:28:52:ca:d1:27:58:a4:57:82:d3:1c:43:97:6c:7c:5b:21:
b6:27:f8:1f:12:02:af:33:4f:29:20:c4:ee:6b:d6:c2:b4:23:
a1:fa:01:2a:3c:b4:8d:cb:0d:a3:fb:e5:6c:55:aa:0b:53:70:
5d:db:a8:09:5b:5a:79:cc:9a:b1:0d:7b:fd:e8:0c:8b:aa:dd:
f5:6e:91:fa:80:13:03:9f:3f:b6:3d:d4:f6:30:9c:58:76:49:
d6:db:d1:47:c1:f7:85:0b:e3:63:00:79:c2:3d:94:c6:8a:04:
a9:77:74:d1:4c:de:f3:44:cd:91:49:10:9e:29:ea:11:7d:78:
7a:5e:a4:f9:02:12:20:a6:a6:b0:84:2d:74:9b:e7:9b:79:97:
96:e3:f7:97:10:df:c9:ce:2c:6f:5e:b5:98:cd:2b:28:60:ff:
08:3d:6b:49:7a:f9:87:f5:e7:94:ce:b0:8a:82:2d:86:d1:6d:
10:61:d4:69:4a:72:43:53:54:95:6a:75:07:66:e8:c1:76:ec:
ff:a1:24:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 09:25:49 2025 by rpki-client