Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3168/pWGwNeOkwbMfMQUZBNpoRQh3qCQ.roa
File: pWGwNeOkwbMfMQUZBNpoRQh3qCQ.roa (raw, json)
Hash identifier: DpfC07Y1+qgtZgv90RkhiMY5csu0m5Cqzw3eRtwtJ+A=
Subject key identifier: A5:61:B0:35:E3:A4:C1:B3:1F:31:05:19:04:DA:68:45:08:77:A8:24
Certificate issuer: /CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Certificate serial: 06E4
Authority key identifier: 24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/pWGwNeOkwbMfMQUZBNpoRQh3qCQ.roa
Signing time: Thu 20 Jul 2023 06:02:55 +0000
ROA not before: Thu 20 Jul 2023 06:02:55 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 146806
IP address blocks: 103.79.228.0/24 maxlen: 24
103.79.229.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1764 (0x6e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094
Validity
Not Before: Jul 20 06:02:55 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=A561B035E3A4C1B31F31051904DA68450877A824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a6:9b:ca:cb:1e:53:08:90:d4:1c:8e:c7:5b:
da:70:4f:ba:ff:9e:ad:1b:05:47:72:d6:f7:23:65:
f8:48:9e:1d:58:8e:2a:6c:c1:b8:44:18:1e:ad:95:
83:6c:da:d5:ac:2b:e9:c1:44:5f:3e:11:9a:8a:dd:
04:83:ae:29:15:45:9a:3a:32:55:72:b4:e3:e5:42:
8b:8a:44:cb:94:c7:c6:5b:e3:72:7e:1a:a7:a3:cf:
e4:ff:78:46:dd:d2:0a:10:ea:c7:31:fd:c1:3f:f3:
c9:35:9b:ee:4d:b8:b4:b6:ff:a1:e5:30:b0:b2:14:
f9:cd:13:73:44:11:c5:6f:e2:db:3f:1c:cb:2a:4a:
17:a8:9b:54:02:dd:8a:a8:af:2f:33:99:da:f7:f2:
a7:a8:29:21:ef:2f:f1:ab:a2:be:e8:01:56:9c:de:
c9:fd:b7:b1:33:cd:df:69:74:5f:9a:00:5c:1c:36:
3e:20:c4:ba:bb:e6:03:55:d3:3b:d3:c3:84:93:71:
c4:09:ea:8d:0d:6c:7c:29:c2:52:fe:d2:a5:6c:92:
7a:1e:58:78:d8:4a:07:21:9d:5a:f5:fc:7c:35:f6:
b6:00:ac:0d:05:7d:db:cf:41:dc:43:32:40:e4:57:
f7:cb:a3:af:c1:e6:47:46:e5:ac:f2:a9:80:0a:f5:
fc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:61:B0:35:E3:A4:C1:B3:1F:31:05:19:04:DA:68:45:08:77:A8:24
X509v3 Authority Key Identifier:
keyid:24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/pWGwNeOkwbMfMQUZBNpoRQh3qCQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.79.228.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:13:d2:01:6a:7c:4a:8a:1d:3a:8b:cc:fe:a6:ad:28:c2:d4:
0d:39:24:91:57:02:1c:1d:c5:cd:87:af:f2:c8:51:a4:00:a4:
8d:6a:23:11:84:de:c0:54:dc:88:43:de:d2:5a:c4:d1:e4:f7:
8d:2d:c0:5f:a2:27:12:d5:75:d6:84:bf:b9:f6:f5:ee:c6:72:
44:9a:ef:eb:2e:c5:c9:a5:8b:91:6c:eb:0a:c8:ea:3d:17:f8:
10:53:3b:c5:37:16:8b:8c:ee:9d:60:fa:d6:aa:9f:b8:0f:e9:
1d:a6:76:6a:eb:18:40:bc:53:21:51:d3:bc:86:05:ca:6b:ec:
77:8b:d1:f5:25:6f:ec:0c:0c:4f:61:17:34:36:25:11:44:a3:
fa:e6:a0:c0:ed:41:0a:ba:cb:96:ab:eb:a8:84:f3:4a:4e:96:
13:0f:8a:67:29:c7:a0:e5:ae:93:c4:59:8b:40:86:13:98:b5:
f0:75:30:9b:14:60:23:4f:25:e2:81:41:2f:b8:2f:3c:65:0b:
63:57:11:e1:64:14:d2:d4:ca:b0:25:5a:08:94:a7:fa:d1:3c:
57:01:c3:f8:1a:0c:f0:a9:7e:5e:91:5c:42:43:be:30:76:16:
63:6e:9f:b7:47:da:89:16:ca:1a:f2:50:dc:27:81:70:3a:d2:
ec:bc:2d:b2
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICBuQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjQw
OTg3RjQwQTYwMzBDREZBMzNERUQxRUVFN0NGNERDN0MzMDA5NDAeFw0yMzA3MjAw
NjAyNTVaFw0yNDA2MDcwMjE2MTFaMDMxMTAvBgNVBAMTKEE1NjFCMDM1RTNBNEMx
QjMxRjMxMDUxOTA0REE2ODQ1MDg3N0E4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDWppvKyx5TCJDUHI7HW9pwT7r/nq0bBUdy1vcjZfhInh1Yjips
wbhEGB6tlYNs2tWsK+nBRF8+EZqK3QSDrikVRZo6MlVytOPlQouKRMuUx8Zb43J+
Gqejz+T/eEbd0goQ6scx/cE/88k1m+5NuLS2/6HlMLCyFPnNE3NEEcVv4ts/HMsq
Sheom1QC3Yqory8zmdr38qeoKSHvL/Gror7oAVac3sn9t7Ezzd9pdF+aAFwcNj4g
xLq75gNV0zvTw4STccQJ6o0NbHwpwlL+0qVsknoeWHjYSgchnVr1/Hw19rYArA0F
fdvPQdxDMkDkV/fLo6/B5kdG5azyqYAK9fwXAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUpWGwNeOkwbMfMQUZBNpoRQh3qCQwHwYDVR0jBBgwFoAUJAmH9ApgMM36M97R
7ufPTcfDAJQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2
OC9KQW1IOUFwZ01NMzZNOTdSN3VmUFRjZkRBSlEuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0pBbUg5QXBnTU0zNk05N1I3dWZQVGNmREFKUS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjgvcFdHd05lT2t3Yk1m
TVFVWkJOcG9SUWgzcUNRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAWdP5DANBgkqhkiG9w0BAQsFAAOCAQEAwxPSAWp8SoodOovM/qatKMLUDTkk
kVcCHB3FzYev8shRpACkjWojEYTewFTciEPe0lrE0eT3jS3AX6InEtV11oS/ufb1
7sZyRJrv6y7FyaWLkWzrCsjqPRf4EFM7xTcWi4zunWD61qqfuA/pHaZ2ausYQLxT
IVHTvIYFymvsd4vR9SVv7AwMT2EXNDYlEUSj+uagwO1BCrrLlqvrqITzSk6WEw+K
ZynHoOWuk8RZi0CGE5i18HUwmxRgI08l4oFBL7gvPGULY1cR4WQU0tTKsCVaCJSn
+tE8VwHD+BoM8Kl+XpFcQkO+MHYWY26ft0faiRbKGvJQ3CeBcDrS7Lwtsg==
-----END CERTIFICATE-----
Generated at Sat Apr 26 14:42:22 2025 by rpki-client