Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/508/UwI293Y5hF5uYhO69WoGcEjcrxQ.roa
File: UwI293Y5hF5uYhO69WoGcEjcrxQ.roa (raw, json)
Hash identifier: s1gz99xfRDksaBoffYwCjuimAwS5FnaGuweieaGNUm0=
Subject key identifier: 53:02:36:F7:76:39:84:5E:6E:62:13:BA:F5:6A:06:70:48:DC:AF:14
Certificate issuer: /CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76
Certificate serial: 165E
Authority key identifier: 9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/UwI293Y5hF5uYhO69WoGcEjcrxQ.roa
Signing time: Mon 13 Jan 2025 05:46:51 +0000
ROA not before: Mon 13 Jan 2025 05:46:51 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 55996
IP address blocks: 2405:b300::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5726 (0x165e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76
Validity
Not Before: Jan 13 05:46:51 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=530236F77639845E6E6213BAF56A067048DCAF14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:62:f7:a6:be:fb:c1:3f:75:d7:af:9b:51:
b9:61:3f:7b:ad:07:6f:8b:2e:1c:6b:9c:c9:db:c6:
9c:26:46:4b:44:e0:b7:d2:55:00:55:ea:1a:6e:5a:
4f:a4:38:f3:e9:0a:dc:fa:25:b0:be:a2:61:b0:cc:
24:3c:23:1a:84:82:72:5d:81:ca:bc:03:1a:b7:d0:
9e:b3:3c:fd:eb:e7:73:a6:47:ae:62:05:d1:4c:d7:
04:bb:8c:45:d6:cc:a4:c2:86:9c:8e:fb:61:b3:4c:
46:21:0b:be:99:05:8a:8a:43:60:4a:b6:e1:80:05:
43:b7:db:73:49:97:e5:b0:70:40:ce:bb:ec:86:81:
a2:12:24:7e:fd:95:46:e2:8e:e1:80:36:9f:17:4a:
a1:bd:e1:d9:75:f9:a9:70:01:4e:b7:9f:d0:03:41:
c7:4c:b1:ed:42:b0:58:eb:9d:06:53:cb:77:0a:ea:
70:5d:86:cd:31:2f:f8:b4:a5:1c:15:fb:4a:5e:b1:
33:41:66:ec:0c:fe:33:87:fa:fc:08:f6:48:a8:7c:
3e:8c:62:01:fc:21:bc:55:17:16:2b:c2:17:62:9b:
f9:c4:e9:25:46:56:14:ed:24:50:ec:e9:0a:2d:44:
00:bc:90:6f:8c:15:1c:77:c7:56:7d:aa:2c:ea:d5:
c1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:02:36:F7:76:39:84:5E:6E:62:13:BA:F5:6A:06:70:48:DC:AF:14
X509v3 Authority Key Identifier:
keyid:9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/UwI293Y5hF5uYhO69WoGcEjcrxQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b300::/32
Signature Algorithm: sha256WithRSAEncryption
c9:6c:21:1e:21:82:70:28:86:a2:d4:90:84:70:77:ca:7f:fc:
93:5b:26:6a:ce:6f:fd:e6:7d:67:96:ce:5a:62:aa:a5:7e:8d:
26:51:15:a8:b5:47:ac:a6:e7:35:07:90:b7:37:67:f7:25:57:
f9:11:04:9f:76:71:3b:b4:9b:b9:58:e4:a8:22:3d:c3:9d:01:
94:1f:db:37:92:cd:d9:42:6e:b2:5a:db:dc:c6:07:e8:a6:6c:
d1:ce:72:72:06:91:ad:44:15:5d:a5:01:ba:a0:ff:78:de:6b:
73:ae:7f:05:3f:63:86:b5:f7:c8:f5:b0:2b:ae:06:c1:d3:c6:
be:8f:1e:1a:13:8e:b1:7a:4a:2f:99:07:8f:5b:7c:3d:3f:19:
85:0c:d5:d3:31:fb:9e:b1:ac:55:02:f3:78:cc:77:dc:a3:50:
66:38:bf:2c:b5:f3:7c:9e:53:cc:d7:85:21:fa:61:84:ff:14:
ef:2d:66:2c:0d:35:97:42:f1:6a:73:99:97:65:2b:6b:0d:20:
af:3e:da:b2:ce:bc:7d:c1:7b:20:76:b7:31:13:e0:18:44:88:
33:20:b6:35:c4:4b:9b:9b:a2:84:47:59:0d:b9:d8:a6:60:65:
37:d5:51:ae:78:6c:db:a2:58:4f:1a:19:77:d5:64:f3:fd:59:
23:c1:ff:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:42:13 2025 by rpki-client