Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/rk8LOddJOBhhxvQJFb1rzct59W4.roa
File: rk8LOddJOBhhxvQJFb1rzct59W4.roa (raw, json)
Hash identifier: AoBzn1LdGNLs9DIRbifoTI+7O6Y/D6peuMQQXMFaz/U=
Subject key identifier: AE:4F:0B:39:D7:49:38:18:61:C6:F4:09:15:BD:6B:CD:CB:79:F5:6E
Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221
Certificate serial: 0B9C
Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/rk8LOddJOBhhxvQJFb1rzct59W4.roa
Signing time: Sun 01 Oct 2023 09:36:02 +0000
ROA not before: Sun 01 Oct 2023 09:36:02 +0000
ROA not after: Tue 24 Sep 2024 02:11:20 +0000
asID: 7018
IP address blocks: 180.223.16.0/20 maxlen: 24
180.223.32.0/20 maxlen: 24
180.223.48.0/20 maxlen: 24
180.223.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2972 (0xb9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221
Validity
Not Before: Oct 1 09:36:02 2023 GMT
Not After : Sep 24 02:11:20 2024 GMT
Subject: CN=AE4F0B39D749381861C6F40915BD6BCDCB79F56E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:9d:3c:e1:f3:a5:b7:51:44:78:9d:c6:bf:79:
55:04:e5:58:e2:2d:e7:f9:ff:ea:bb:7f:f3:c3:18:
26:89:16:e2:e3:bf:47:de:dd:47:84:a9:90:30:42:
ab:eb:30:fc:f5:fc:c6:a4:7f:3d:fe:ac:7a:17:74:
ee:13:f0:74:16:9d:34:ee:82:9d:6c:08:11:ea:71:
af:12:61:9c:1d:39:0e:a2:f7:2f:98:2a:d0:d0:7e:
91:d8:f5:6a:2d:13:0a:c9:a7:41:e1:de:5d:ec:c2:
ee:87:49:e3:a8:f1:e9:30:d2:3b:63:8c:00:2c:72:
36:6b:3a:b1:b6:59:ad:38:4a:0e:fa:b0:38:20:f4:
ac:0e:60:07:2d:21:f2:f8:df:5e:7f:35:78:2c:bb:
e3:75:7a:45:f4:3c:31:b3:aa:bf:38:93:02:68:8e:
22:d4:3d:47:a1:d4:80:65:6a:29:09:50:11:1e:98:
07:95:d6:74:e7:ac:a6:2b:c9:b4:8d:1f:40:56:1c:
fb:6a:4c:10:70:8e:cb:6c:92:0a:a9:ac:46:1e:ae:
9e:e6:74:32:17:d4:a3:6f:b9:09:60:7b:a7:a4:46:
e6:f0:03:8c:33:e9:6c:b4:d1:ea:55:ad:a0:a2:d7:
fc:15:d1:da:97:00:20:25:21:6c:6f:a9:5d:35:fb:
7c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:4F:0B:39:D7:49:38:18:61:C6:F4:09:15:BD:6B:CD:CB:79:F5:6E
X509v3 Authority Key Identifier:
keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/rk8LOddJOBhhxvQJFb1rzct59W4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.223.16.0-180.223.127.255
Signature Algorithm: sha256WithRSAEncryption
c0:6e:c7:d9:f2:66:2b:fd:02:00:94:7e:96:92:4b:22:6b:a6:
0f:4c:cd:4b:49:de:78:63:9a:1e:14:69:f4:e6:88:3b:81:48:
c1:42:55:22:ea:be:34:ba:cd:a3:85:17:73:12:ef:d7:44:fb:
49:b4:98:71:51:17:23:4a:3a:46:b9:8b:4d:e3:66:67:6c:8a:
1a:31:c3:6b:d6:de:f4:94:63:18:ad:97:93:b3:44:0a:66:c8:
7e:69:65:87:40:0f:ad:73:8e:6f:4e:e9:78:1f:a2:ab:18:d1:
1b:6f:d9:ab:d2:46:d0:db:5a:f3:c2:63:56:ab:97:8e:64:1a:
5a:8b:c2:86:a2:af:7c:6a:52:6e:1c:91:a7:e0:23:fe:47:44:
4c:82:6f:9f:7c:91:25:9b:57:c2:d0:07:a9:29:7a:a1:1c:7c:
4f:61:81:45:d8:d4:da:22:5b:15:37:e2:57:2e:6f:77:2b:f5:
92:f7:0e:8b:50:88:bc:05:b4:9a:35:f1:ce:67:15:d6:85:be:
3e:ee:ad:f4:53:06:24:51:2c:76:9d:1f:c4:6e:45:3e:da:50:
30:64:28:e9:c4:21:ac:f6:d8:35:ad:cf:62:0a:6c:2a:f9:ba:
ba:e3:95:f1:6c:99:36:04:21:05:20:9f:3b:2e:51:0b:75:7f:
79:0b:b2:ab
-----BEGIN CERTIFICATE-----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Generated at Sat Oct 21 02:15:59 2023 by rpki-client on console-fra.rpki-client.org