Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/lWgIao83kdGoIBNtOyMrI7_LcRQ.roa
File: lWgIao83kdGoIBNtOyMrI7_LcRQ.roa (raw, json)
Hash identifier: VJMA5InR3B67pbZoQGsHdkPksRf1tzjuxX4SSsOS6mA=
Subject key identifier: 95:68:08:6A:8F:37:91:D1:A8:20:13:6D:3B:23:2B:23:BF:CB:71:14
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 14E9
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lWgIao83kdGoIBNtOyMrI7_LcRQ.roa
Signing time: Wed 11 Sep 2024 02:26:07 +0000
ROA not before: Wed 11 Sep 2024 02:26:07 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 13444
IP address blocks: 103.221.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5353 (0x14e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 02:26:07 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9568086A8F3791D1A820136D3B232B23BFCB7114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:02:d3:51:c0:48:55:ba:f1:c8:5f:6d:30:
26:8d:f6:07:ec:33:47:50:16:ad:9c:3d:7e:d3:45:
fb:7e:d7:65:0e:05:fa:46:1c:61:d3:5a:e1:42:d9:
e8:de:cb:89:ef:a4:29:47:16:8f:23:b5:27:12:83:
4b:ca:aa:3b:99:1a:38:09:c6:68:5a:e8:86:8e:10:
42:c4:f3:88:11:74:17:05:b8:75:ab:c6:5a:d2:ee:
62:ee:2a:88:d8:37:3f:94:58:0f:a6:5c:df:49:94:
f0:56:44:0e:ba:cc:70:4b:b3:c3:db:1a:ba:ce:38:
0a:8a:a7:11:5e:c0:af:64:31:17:9d:cc:c0:97:28:
0b:90:b4:8d:e4:cb:fe:81:f8:ab:e0:76:71:a7:59:
f0:b9:53:91:f6:c7:88:d9:c5:30:82:04:96:a5:0a:
9d:e3:35:b5:df:98:ed:68:4c:a9:db:0c:27:0a:4d:
7d:eb:6b:00:26:0a:0c:6b:0e:3b:40:c0:5f:e6:ec:
9f:fc:ad:ae:7e:d3:b5:f2:ab:6c:8a:19:eb:42:65:
31:df:46:cc:7c:f1:ac:cd:19:01:ac:fd:3c:a1:7a:
f6:1d:39:01:d8:c9:9c:3f:a5:28:f6:eb:e6:1b:9d:
22:bb:f4:10:e0:2e:8a:88:dd:13:3b:75:3a:ac:a6:
8b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:68:08:6A:8F:37:91:D1:A8:20:13:6D:3B:23:2B:23:BF:CB:71:14
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lWgIao83kdGoIBNtOyMrI7_LcRQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.16.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:1a:c6:39:67:d5:24:b6:4f:4b:1d:bc:b4:e7:c1:d2:7f:26:
4b:ce:05:74:b2:48:f2:ef:4e:f6:d8:17:ff:a3:17:81:c6:a1:
fe:7d:12:4a:19:18:32:46:42:3e:76:db:0e:0e:c6:cb:19:f1:
94:b4:40:16:ad:ee:5f:3e:f0:ea:c2:8d:c4:44:56:f4:40:78:
36:6a:cc:e8:1f:69:88:09:36:a2:0b:24:3b:46:b7:55:da:f0:
ad:12:b2:84:eb:3d:7a:7b:94:fc:12:07:f5:cb:d8:71:b0:3e:
22:aa:56:11:fd:b6:94:a6:6e:c6:e0:d2:82:60:e4:27:ae:61:
fd:2b:89:6b:00:50:31:8f:d2:2a:8a:33:84:e1:82:8c:b7:8a:
ce:02:58:36:74:9c:31:08:77:9c:07:8e:4f:ff:44:4f:eb:53:
8c:96:9d:32:3a:4d:b3:de:3d:bb:51:23:c5:95:ba:0b:2c:ff:
6b:2b:53:b8:59:39:f7:01:70:c5:db:c4:92:76:1a:b0:c7:31:
c6:50:2c:f4:51:1f:1a:50:90:f5:cc:57:de:43:c4:56:4e:c6:
9a:18:e9:bc:8f:de:47:51:c6:ac:37:dc:ad:69:c2:a2:6c:2e:
25:50:58:70:bf:d2:12:c4:a9:c1:49:1d:4b:cb:af:cb:f4:ad:
1e:d8:79:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:36:23 2025 by rpki-client