Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/0rN5QCe1qXeRMg7_U0Y1WmWY_lY.roa
File: 0rN5QCe1qXeRMg7_U0Y1WmWY_lY.roa (raw, json)
Hash identifier: sqIUT9gSo6FkqtCGMogTQFRQD8UTJ8C5K3PjSnOD/3A=
Subject key identifier: D2:B3:79:40:27:B5:A9:77:91:32:0E:FF:53:46:35:5A:65:98:FE:56
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 05DC
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/0rN5QCe1qXeRMg7_U0Y1WmWY_lY.roa
Signing time: Mon 12 Aug 2024 04:09:48 +0000
ROA not before: Mon 12 Aug 2024 04:09:48 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 2914
IP address blocks: 124.175.160.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 01:36:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1500 (0x5dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Aug 12 04:09:48 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=D2B3794027B5A97791320EFF5346355A6598FE56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:17:70:4d:62:66:1f:ec:c8:4f:bd:cb:01:8c:
d0:f0:50:63:7b:07:90:65:b9:20:d1:ff:b5:66:76:
4f:18:ab:12:3c:a3:db:8a:99:25:5d:90:d6:cc:3e:
98:56:5c:fc:f6:06:61:c2:b9:05:0e:65:d0:7d:51:
db:07:32:97:c7:14:e1:2b:60:70:cb:86:e4:87:b8:
e4:39:d2:79:a5:e8:a7:31:ef:57:86:cb:57:2b:f9:
a6:bd:81:50:87:d5:50:fa:6d:23:20:70:8c:bb:0e:
c2:23:34:78:cb:ba:71:45:b2:3f:ef:91:68:29:81:
47:08:31:b2:a8:c3:84:58:fc:0f:05:d5:01:20:7b:
90:94:10:91:78:20:eb:a4:be:da:32:8e:47:6e:d4:
3a:20:66:bb:57:f6:86:55:a9:6d:92:2c:62:63:60:
7d:e6:5d:fc:6a:2b:ad:88:9c:d5:ac:0b:5d:ba:e1:
ce:f3:83:bc:1a:3f:75:58:0c:dd:ee:c2:87:44:56:
fb:8f:dd:00:dc:16:82:03:24:6f:28:fc:d7:df:a3:
eb:30:c8:d4:62:0b:b6:1d:67:41:5b:d4:e5:a8:62:
a9:bf:3c:34:25:d7:d5:45:fd:d3:6c:9b:1e:d8:ad:
75:6d:62:b4:5e:e1:37:93:d9:2f:0a:c8:99:dd:ed:
5a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B3:79:40:27:B5:A9:77:91:32:0E:FF:53:46:35:5A:65:98:FE:56
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/0rN5QCe1qXeRMg7_U0Y1WmWY_lY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.175.160.0/21
Signature Algorithm: sha256WithRSAEncryption
27:09:4a:f0:51:ab:71:d6:72:b4:a9:0f:b2:89:12:5c:e3:06:
6f:b3:af:f1:b6:e8:7d:cf:f5:69:a8:e4:64:a7:7a:5a:20:d0:
02:da:8d:bf:7a:b2:97:dc:99:53:f7:01:f1:b9:31:0a:ce:a9:
fe:25:a4:75:aa:6f:c2:11:6b:9d:8c:4a:89:d7:e6:91:4d:77:
ba:16:96:82:68:09:71:2e:63:88:4b:49:ce:89:77:d6:bd:0e:
31:ab:94:f7:f6:3d:2c:31:1c:3d:27:62:fd:c7:24:13:12:59:
85:f4:0a:11:a6:20:30:e1:d6:cf:10:29:23:55:b4:de:c0:7b:
ff:98:82:d5:97:d4:a4:d5:42:c3:b0:4d:78:67:2b:6e:5a:a8:
15:8c:ef:7c:12:27:72:98:07:29:7b:6a:0e:fd:f6:f5:49:ba:
0e:8e:e5:b7:aa:9c:fc:29:3d:f5:6a:9a:73:f7:3c:a4:b1:cc:
03:64:36:00:5b:fa:3b:5e:8c:ae:c6:ac:a0:b5:e8:56:52:ca:
ea:93:26:13:17:b3:f7:07:bb:3d:05:68:8c:6e:aa:37:c1:d0:
51:d7:c0:10:03:a0:7a:6b:09:db:da:1e:40:10:61:83:1f:da:
29:a3:0d:d2:d2:27:7b:f3:b9:e7:4e:cc:ee:dc:40:f7:f5:f1:
1c:06:78:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 03:24:24 2024 by rpki-client on console-fra.rpki-client.org