Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/lZ0ZNO_Irb240ADBE3UeumYiDm4.roa
File: lZ0ZNO_Irb240ADBE3UeumYiDm4.roa (raw, json)
Hash identifier: 1WdMndpSao4Z0xJYYmLz055wifVQFJOXY3Mdenttujo=
Subject key identifier: 95:9D:19:34:EF:C8:AD:BD:B8:D0:00:C1:13:75:1E:BA:66:22:0E:6E
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 155B
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lZ0ZNO_Irb240ADBE3UeumYiDm4.roa
Signing time: Wed 11 Sep 2024 04:01:44 +0000
ROA not before: Wed 11 Sep 2024 04:01:44 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 139259
IP address blocks: 103.221.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5467 (0x155b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Sep 11 04:01:44 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=959D1934EFC8ADBDB8D000C113751EBA66220E6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3d:e4:f6:f5:df:bd:52:1e:37:5b:67:6c:cf:
43:6c:cb:cd:21:6e:64:74:35:ea:5e:a0:7e:65:c0:
41:d7:87:f4:68:e4:d0:a1:d4:ed:da:07:77:6a:5f:
4f:9d:19:5e:53:7e:f4:75:47:61:70:ac:ba:7a:b7:
d1:39:39:df:42:89:89:75:62:98:72:c8:da:71:29:
d2:95:44:da:67:e6:bb:e4:8f:a1:a1:43:fb:ac:10:
3c:60:a5:96:0c:c4:54:85:f9:ae:67:56:74:38:2d:
ad:14:ee:84:ee:c6:fe:00:29:3a:7a:51:08:34:53:
f7:0f:88:37:e5:c2:83:5c:b5:2f:0d:a1:bb:05:6c:
1a:5a:5b:7a:21:54:f1:13:46:cf:86:91:f2:24:fb:
a1:4a:b5:fa:dd:a7:5d:f9:e3:18:6f:da:bf:eb:16:
d7:2c:2e:e3:c0:1f:ac:e8:59:9c:5e:20:90:9b:e8:
50:6e:68:ff:07:68:af:2a:0c:a3:31:34:59:9a:d8:
0d:83:78:0b:09:49:f1:42:b6:a7:fc:ff:94:17:2d:
7e:40:54:87:1d:23:54:ab:b1:56:79:36:27:fe:78:
df:9d:c3:5f:17:4f:24:44:3a:cc:2e:44:05:7a:fd:
1e:bd:0a:bf:52:a5:d3:82:86:cd:55:c9:de:ff:a1:
58:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9D:19:34:EF:C8:AD:BD:B8:D0:00:C1:13:75:1E:BA:66:22:0E:6E
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/lZ0ZNO_Irb240ADBE3UeumYiDm4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.39.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:eb:0b:1a:d2:e6:a4:9b:45:9e:48:47:7c:ba:99:34:94:58:
f4:43:f0:7e:1a:3a:14:e0:c4:55:bb:18:ce:0d:d6:d8:12:da:
64:49:16:f8:0b:4d:26:aa:6c:23:e9:0b:27:2a:f9:7e:bb:bc:
45:35:27:09:d9:a7:42:0c:76:cc:61:15:14:73:ed:9d:f3:1c:
f9:86:b2:b3:d3:bb:4f:47:50:0f:20:42:01:33:f3:64:17:60:
f7:4c:c0:89:70:b8:6b:cc:6b:45:c0:df:ea:80:a9:39:a0:27:
4a:8e:99:eb:6a:f6:75:8c:28:aa:35:d9:dd:d4:4f:9c:93:ef:
d6:69:4a:2e:f3:cf:74:22:64:5b:00:8c:51:ff:f4:ce:bf:5f:
83:4b:a9:95:93:d5:ec:b5:24:01:85:5a:e4:d1:63:50:bd:96:
04:3a:b8:e6:f6:20:70:2a:bd:84:90:99:12:a8:b7:55:b2:3e:
81:50:19:7c:04:69:61:a6:88:34:0f:f4:72:89:17:d5:c1:c3:
eb:0f:60:dd:29:cb:8b:f4:cc:84:32:04:7c:00:34:3f:3f:8d:
ca:21:63:f3:2e:e7:76:3e:c9:59:fd:29:36:09:ff:3b:56:fd:
71:b2:30:2b:3b:5c:3f:d2:b2:78:ec:98:fe:e7:ba:8c:8a:cb:
1c:68:6f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 07:44:20 2025 by rpki-client