Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3326/-E89D4N6_glvPRY1QjTF7U_BKPE.roa
File: -E89D4N6_glvPRY1QjTF7U_BKPE.roa (raw, json)
Hash identifier: vcEwDUMVm4BKqrJYztgMB2bUw8q3Hfj0LJXlqSKeocU=
Subject key identifier: F8:4F:3D:0F:83:7A:FE:09:6F:3D:16:35:42:34:C5:ED:4F:C1:28:F1
Certificate issuer: /CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C
Certificate serial: 0578
Authority key identifier: 6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/-E89D4N6_glvPRY1QjTF7U_BKPE.roa
Signing time: Fri 01 Aug 2025 06:34:44 +0000
ROA not before: Fri 01 Aug 2025 06:34:44 +0000
ROA not after: Fri 03 Apr 2026 08:00:09 +0000
asID: 134768
IP address blocks: 103.236.68.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1400 (0x578)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C
Validity
Not Before: Aug 1 06:34:44 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=F84F3D0F837AFE096F3D16354234C5ED4FC128F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:cc:d2:19:32:84:3f:67:07:f9:79:a9:69:
cd:e5:a4:37:f2:92:72:f7:76:29:5b:a8:fe:aa:10:
26:4d:89:a3:d9:fa:dc:5e:f2:35:23:0b:a8:34:4b:
8f:ea:d7:be:14:bf:c3:e2:56:0d:20:61:97:ca:96:
6f:15:3c:59:21:d0:23:3e:bf:af:76:d3:a0:ec:24:
5b:b7:ce:89:90:b6:fd:64:b0:87:6f:4a:6a:03:6e:
74:4c:75:c7:1b:24:b3:39:dd:0d:14:e6:ae:9d:3d:
4c:bd:57:66:7c:d7:c6:56:20:0c:8a:bc:6d:34:28:
36:51:aa:75:ca:13:da:93:0a:c0:78:02:30:94:bb:
d5:8b:00:2d:d6:fe:81:26:c5:5b:2a:5e:7d:bc:50:
d7:cf:f7:6d:31:41:41:7e:43:33:88:63:1c:b6:19:
07:dd:20:cb:70:97:42:27:a6:93:45:8c:08:e5:3f:
33:b7:78:f3:a1:2e:e0:eb:43:04:b6:bf:89:44:aa:
2c:cd:83:c5:42:eb:35:86:59:2c:93:c6:82:a7:70:
04:f6:1c:6d:55:ed:01:04:5d:30:53:5a:35:06:5f:
39:b7:05:b3:76:4f:75:08:86:f1:21:b0:9f:69:7f:
22:c1:cd:0e:3a:b8:fb:37:57:08:65:cc:4f:e5:bc:
18:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:4F:3D:0F:83:7A:FE:09:6F:3D:16:35:42:34:C5:ED:4F:C1:28:F1
X509v3 Authority Key Identifier:
keyid:6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/-E89D4N6_glvPRY1QjTF7U_BKPE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.236.68.0/24
Signature Algorithm: sha256WithRSAEncryption
53:7c:6b:d0:9c:cd:1e:a6:1a:01:1a:d9:22:41:ce:b1:10:41:
4f:d3:cf:aa:13:ae:ad:91:4f:ee:9a:43:c1:be:e0:d1:d9:dd:
b0:09:d0:d6:7a:61:f5:fc:90:2e:93:b4:35:01:b0:46:bf:de:
56:5b:ab:2a:57:f0:93:84:e7:b1:9f:0e:63:58:7d:c3:b0:1e:
11:ad:83:85:b1:8d:57:19:46:69:76:b4:01:a8:c7:6e:45:1e:
52:49:38:3b:29:a2:8b:ab:e9:d1:73:70:01:e1:e8:84:a3:f5:
74:69:57:e4:d4:35:7f:97:24:2a:54:84:90:83:28:36:cb:da:
de:df:4b:1f:b5:12:0e:10:de:a7:a3:c4:65:61:76:bc:5a:d3:
58:0e:7f:ad:16:e8:e4:f4:68:2e:66:72:9f:67:d2:8d:fd:8f:
36:79:69:ef:50:e3:66:76:75:3e:22:21:4d:ff:ee:67:fc:62:
7d:84:9a:84:16:8d:f6:61:26:7a:f8:5a:aa:fc:bf:b8:81:6d:
5c:86:53:2d:bc:94:82:9d:c0:ed:b0:b5:57:06:83:c0:15:da:
e8:27:04:51:d0:e8:97:ae:f9:64:cf:44:fe:cf:4e:84:d7:c6:
13:85:10:66:21:74:e5:a8:5b:03:3b:2c:39:62:e0:ad:78:79:
ce:df:cf:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:31:17 2025 by rpki-client