Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/621/6rrByWSFd0xmzlDQzCyvfu1oUyI.roa
File: 6rrByWSFd0xmzlDQzCyvfu1oUyI.roa (raw, json)
Hash identifier: Krow/cDI+laUxcvJED/i7Q6qMJ+9adzLHytVqb6osr4=
Subject key identifier: EA:BA:C1:C9:64:85:77:4C:66:CE:50:D0:CC:2C:AF:7E:ED:68:53:22
Certificate issuer: /CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Certificate serial: 15CC
Authority key identifier: E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/6rrByWSFd0xmzlDQzCyvfu1oUyI.roa
Signing time: Wed 13 Mar 2024 01:23:56 +0000
ROA not before: Wed 13 Mar 2024 01:23:56 +0000
ROA not after: Sat 10 Aug 2024 07:41:13 +0000
asID: 58854
IP address blocks: 103.27.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5580 (0x15cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Validity
Not Before: Mar 13 01:23:56 2024 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=EABAC1C96485774C66CE50D0CC2CAF7EED685322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f3:f0:61:1b:7e:7e:60:4e:19:42:5f:23:77:
a7:b7:81:2e:4f:06:f3:2b:db:5a:3c:f2:b8:04:56:
56:f0:a3:a8:22:f4:50:59:76:77:7e:79:bd:33:48:
1f:e5:7a:95:4c:81:3c:56:3f:5c:3d:b8:f1:27:23:
9b:2f:f3:69:c9:90:19:00:e5:2e:f5:cb:8a:03:e8:
c5:97:96:73:bb:19:c0:f1:35:5a:8a:39:79:33:0e:
e9:54:08:3a:54:f9:fc:39:e8:6f:51:1e:46:61:cc:
9c:3c:a3:a9:07:ff:af:dc:ea:0a:ce:2f:95:78:a0:
35:8d:7f:d3:91:c1:0c:97:0a:eb:1b:de:7c:d4:8a:
73:4c:00:10:3a:c2:f4:99:bf:d4:4f:22:42:9d:f5:
b8:fe:63:ac:2b:b2:22:b4:f2:73:58:94:b7:3a:08:
29:a1:8a:49:fa:3e:a9:ce:76:90:a1:d9:a5:95:0b:
1c:6f:91:a1:a7:46:d1:6d:bf:dd:68:e9:f9:4d:29:
5b:8c:18:31:4f:42:1d:b3:4f:61:c0:03:63:52:05:
62:bb:00:a7:72:c7:8b:83:84:ea:08:5b:3b:b6:62:
bb:46:ee:dd:ab:2a:bb:e1:ff:96:c9:be:6d:86:25:
c2:96:68:13:8f:2d:98:80:56:dd:f0:3c:62:11:21:
72:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BA:C1:C9:64:85:77:4C:66:CE:50:D0:CC:2C:AF:7E:ED:68:53:22
X509v3 Authority Key Identifier:
keyid:E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/6rrByWSFd0xmzlDQzCyvfu1oUyI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.27.4.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:c9:34:58:74:41:f5:21:0c:ed:c4:e1:dc:66:96:bd:ce:cd:
00:6f:fc:fd:1c:a8:b9:d6:c8:54:9c:8e:eb:7e:27:c4:13:47:
8c:62:3b:c2:9d:ec:b0:27:b5:30:7f:9d:31:59:ad:1b:49:b7:
c1:e1:62:b8:74:b0:e2:c7:2b:b8:9f:cf:f9:b5:ad:6f:8c:10:
55:64:a1:84:52:89:b6:6b:c8:07:f4:42:7f:54:a5:2d:24:f3:
4b:2a:68:e7:d6:a5:71:7c:9a:f5:1e:e7:09:4f:da:ea:3f:54:
14:b9:c9:56:90:8e:21:8e:1d:2b:c1:5d:3d:b1:5d:24:a2:fd:
07:df:ae:03:49:d8:97:29:f4:00:b7:28:e5:51:56:c3:35:f9:
70:6e:dc:9b:f4:73:2f:04:ec:16:dc:2b:59:23:f4:a1:50:11:
a5:31:4d:48:94:a9:fd:0d:c6:1b:2c:28:8e:9a:23:68:4e:09:
50:85:e2:e2:8f:56:40:88:4f:8d:22:4d:dd:13:8a:45:f5:81:
60:94:96:cf:ce:6c:4a:b7:1d:a4:7f:48:e5:8d:67:42:6e:cd:
73:d8:ac:a7:7b:05:4f:13:b6:42:9d:77:da:96:26:0b:c9:a3:
62:7d:6d:34:93:2c:c0:ff:1b:1f:b8:88:33:0c:f7:08:54:a7:
cb:c8:22:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 01:59:57 2024 by rpki-client on console-fra.rpki-client.org