Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/68VRUyFbdb8muZTEw1VN3Y227zw.roa
File: 68VRUyFbdb8muZTEw1VN3Y227zw.roa (raw, json)
Hash identifier: MzkD26bpSWgRUmjZVpklP5wvIntz/b8Wv0150KDtn+M=
Subject key identifier: EB:C5:51:53:21:5B:75:BF:26:B9:94:C4:C3:55:4D:DD:8D:B6:EF:3C
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 05D0
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/68VRUyFbdb8muZTEw1VN3Y227zw.roa
Signing time: Mon 12 Aug 2024 04:09:44 +0000
ROA not before: Mon 12 Aug 2024 04:09:44 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 2914
IP address blocks: 124.175.104.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 01:37:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1488 (0x5d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Aug 12 04:09:44 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=EBC55153215B75BF26B994C4C3554DDD8DB6EF3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:26:0e:50:dc:23:03:12:5f:0d:68:40:2b:b3:
38:cb:05:a5:96:c5:3e:c5:87:36:7b:1d:01:6a:d0:
97:69:a1:6d:51:2a:6b:d8:8a:a9:ad:fd:92:db:bc:
f7:55:84:23:4d:4c:c6:d8:69:2d:2f:0f:ec:c2:71:
ef:38:63:fb:f3:97:94:f8:29:b1:d9:e8:df:74:d8:
de:6e:6d:30:58:cf:5d:00:82:9b:e0:e1:5a:95:2f:
0f:56:59:7b:b7:25:15:82:45:89:92:14:f9:e8:98:
dc:e3:c1:2b:3d:19:d1:12:19:3d:d0:7a:8f:f2:a1:
39:28:d0:86:d5:98:9c:18:9d:e5:3e:41:36:62:c8:
58:a4:82:bb:85:47:1b:be:a9:24:f4:7d:3f:88:9a:
b7:f0:45:e1:4d:63:7d:0e:08:34:85:51:47:df:18:
58:29:97:3b:9f:3a:59:a0:9d:30:ec:42:f6:b9:e0:
21:b8:a5:a2:55:0e:80:b6:aa:cd:c7:7a:9c:cc:0d:
9e:63:93:12:5f:25:45:2a:11:2a:fd:35:9d:10:5f:
5a:46:32:6b:2b:a8:ea:45:4a:35:d9:a5:df:c5:06:
57:b2:d2:90:57:91:a8:f1:fc:7b:34:16:9b:ee:2b:
9a:29:46:5a:25:ff:11:36:db:6b:3e:2a:a4:58:61:
c2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C5:51:53:21:5B:75:BF:26:B9:94:C4:C3:55:4D:DD:8D:B6:EF:3C
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/68VRUyFbdb8muZTEw1VN3Y227zw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.175.104.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:e8:eb:65:92:2c:84:6a:b4:50:4c:49:89:7d:36:53:be:50:
36:ed:af:8b:32:a0:2d:66:15:cd:2f:0f:d8:7f:d4:55:5e:c4:
44:fc:99:80:07:c5:f4:b1:08:19:74:af:70:90:2c:9d:98:86:
46:bc:9e:e6:d0:6b:d5:55:1d:35:1d:67:fb:86:3c:d8:fb:54:
3d:ea:f1:0b:95:16:4d:d9:94:27:53:b5:5c:5a:e4:d8:da:b4:
70:1f:ac:34:d8:de:e5:fe:c5:73:91:a9:98:22:0e:7c:4a:de:
13:54:95:8f:c8:f2:0d:99:4d:7c:02:8c:14:bb:4d:cf:c9:fc:
eb:50:c5:40:60:66:d8:9d:0c:e2:13:04:de:ae:62:70:82:b1:
9c:6a:c1:a1:b3:a6:01:06:10:e7:1d:63:5e:5c:e2:76:c5:4d:
67:83:5f:18:9d:9b:9e:12:69:6c:fe:d2:6d:c2:1a:2a:4b:97:
98:a3:9e:bf:bb:8f:95:fe:79:9a:15:47:3a:7c:2b:d4:18:b4:
d3:86:d3:14:2e:9c:29:92:2d:0d:fd:b4:e6:0b:e2:b2:4f:4c:
71:bd:f9:59:ef:7a:4d:b3:8e:34:85:4c:f0:d9:51:1f:55:be:
81:1f:14:95:e5:c8:04:17:62:f8:fd:48:7a:90:2d:04:8c:2e:
bf:4f:d5:fc
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICBdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4
MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDA4MTIw
NDA5NDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEVCQzU1MTUzMjE1Qjc1
QkYyNkI5OTRDNEMzNTU0REREOERCNkVGM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgJg5Q3CMDEl8NaEArszjLBaWWxT7FhzZ7HQFq0JdpoW1RKmvY
iqmt/ZLbvPdVhCNNTMbYaS0vD+zCce84Y/vzl5T4KbHZ6N902N5ubTBYz10Agpvg
4VqVLw9WWXu3JRWCRYmSFPnomNzjwSs9GdESGT3Qeo/yoTko0IbVmJwYneU+QTZi
yFikgruFRxu+qST0fT+ImrfwReFNY30OCDSFUUffGFgplzufOlmgnTDsQva54CG4
paJVDoC2qs3HepzMDZ5jkxJfJUUqESr9NZ0QX1pGMmsrqOpFSjXZpd/FBley0pBX
kajx/Hs0FpvuK5opRlol/xE222s+KqRYYcKFAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU68VRUyFbdb8muZTEw1VN3Y227zwwHwYDVR0jBBgwFoAUlIG05AkBXY630D82
A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s
SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT
BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw
MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp
LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvNjhWUlV5RmJkYjhtdVpURXcx
Vk4zWTIyN3p3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu
L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3yv
aDANBgkqhkiG9w0BAQsFAAOCAQEAnOjrZZIshGq0UExJiX02U75QNu2vizKgLWYV
zS8P2H/UVV7ERPyZgAfF9LEIGXSvcJAsnZiGRrye5tBr1VUdNR1n+4Y82PtUPerx
C5UWTdmUJ1O1XFrk2Nq0cB+sNNje5f7Fc5GpmCIOfEreE1SVj8jyDZlNfAKMFLtN
z8n861DFQGBm2J0M4hME3q5icIKxnGrBobOmAQYQ5x1jXlzidsVNZ4NfGJ2bnhJp
bP7SbcIaKkuXmKOev7uPlf55mhVHOnwr1Bi004bTFC6cKZItDf205gvisk9Mcb35
We96TbOONIVM8NlRH1W+gR8UleXIBBdi+P1IepAtBIwuv0/V/A==
-----END CERTIFICATE-----
Generated at Wed Sep 4 03:33:39 2024 by rpki-client on console-ams.rpki-client.org