Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/E82DRc1GVwuOkApgZNdvVdmW0lc.roa
File: E82DRc1GVwuOkApgZNdvVdmW0lc.roa (raw, json)
Hash identifier: Sxgtb3Am2acBGUSEru7AJYYQ2NS3PhwViJ10dnG2y3M=
Subject key identifier: 13:CD:83:45:CD:46:57:0B:8E:90:0A:60:64:D7:6F:55:D9:96:D2:57
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 05D5
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/E82DRc1GVwuOkApgZNdvVdmW0lc.roa
Signing time: Mon 12 Aug 2024 04:09:45 +0000
ROA not before: Mon 12 Aug 2024 04:09:45 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 2914
IP address blocks: 124.175.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 01:36:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1493 (0x5d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Aug 12 04:09:45 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=13CD8345CD46570B8E900A6064D76F55D996D257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:8c:3f:20:04:ec:0a:b2:36:d0:da:d6:dd:
36:eb:28:be:4b:a3:33:d2:5d:82:17:7c:b2:0d:76:
88:4e:38:62:3e:86:a0:33:79:5b:f6:04:50:c8:f2:
06:a3:c9:f3:51:c1:68:3e:17:b5:14:a7:fe:1a:80:
4a:55:54:58:7b:0d:49:a1:da:64:a9:b6:65:6a:43:
83:c2:b7:47:d9:d0:1c:3e:86:ce:0b:2d:c4:ee:71:
ab:b8:e1:5f:6a:da:0d:75:78:50:d4:cd:44:0c:69:
71:94:c2:5e:ee:76:a1:3d:0b:79:63:70:33:75:63:
a9:d9:2e:a2:51:01:7f:3b:a8:b2:24:56:f4:27:69:
a4:05:92:3e:c2:1e:c8:a1:5d:1a:bd:ab:70:5a:d8:
65:b2:d1:bb:ab:a8:38:55:1a:ce:38:2d:a4:22:71:
72:cb:c3:4b:b3:8c:7a:d2:ba:d7:b4:56:7b:91:49:
51:f3:fe:1b:f1:81:2b:ab:67:61:d7:03:2a:b6:fd:
80:15:ed:d5:fa:0a:c5:2f:51:4a:02:8e:aa:ad:9c:
65:45:31:c2:1d:74:eb:c7:b3:cd:12:93:99:cf:27:
a6:13:d9:58:82:c2:0d:d8:f2:03:29:da:9e:10:4e:
52:28:3a:48:95:62:40:aa:8f:79:74:51:44:5c:76:
c2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CD:83:45:CD:46:57:0B:8E:90:0A:60:64:D7:6F:55:D9:96:D2:57
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/E82DRc1GVwuOkApgZNdvVdmW0lc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.175.168.0/21
Signature Algorithm: sha256WithRSAEncryption
81:fb:ce:60:0e:e2:7c:05:4c:8f:93:a8:0f:61:c6:4f:b6:e5:
93:5f:e5:d7:58:78:bf:86:ff:26:64:e1:18:fe:7f:bf:9b:45:
6d:75:5f:fe:8f:3d:04:9d:68:d6:31:d5:ac:25:ab:e0:e5:32:
60:31:c9:bf:d0:a0:77:ba:ba:35:e7:e6:29:79:20:3f:ab:17:
ee:1a:1b:48:aa:e1:0b:50:1e:79:63:0e:96:f5:e9:9c:a3:16:
f0:b8:28:d5:d4:ee:1f:14:0d:1a:74:e5:2a:a6:d0:a9:b9:b4:
08:d3:7b:96:35:f5:a5:99:51:c6:8e:cd:96:7f:7a:88:41:c5:
a5:24:19:d5:97:3a:2b:5f:75:82:55:88:7b:e6:6b:39:2c:10:
77:61:59:d0:b1:0b:bb:5d:bb:3d:31:1c:19:7b:79:30:87:28:
bf:d2:0e:27:7d:7b:8c:69:35:be:75:dc:6c:13:49:30:24:d6:
38:cd:10:97:3e:39:14:08:c7:c4:72:48:77:00:4c:ce:47:da:
3a:15:0c:5b:bc:2d:74:88:7b:43:9a:07:91:ed:79:d2:07:c4:
3b:70:ef:65:59:4d:4c:50:47:85:ea:cf:26:b1:94:0f:45:ea:
0e:42:1b:45:d9:94:70:a5:75:d1:3c:61:8b:16:37:31:76:af:
be:35:17:46
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICBdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4
MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNDA4MTIw
NDA5NDVaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDEzQ0Q4MzQ1Q0Q0NjU3
MEI4RTkwMEE2MDY0RDc2RjU1RDk5NkQyNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvnYw/IATsCrI20NrW3TbrKL5LozPSXYIXfLINdohOOGI+hqAz
eVv2BFDI8gajyfNRwWg+F7UUp/4agEpVVFh7DUmh2mSptmVqQ4PCt0fZ0Bw+hs4L
LcTucau44V9q2g11eFDUzUQMaXGUwl7udqE9C3ljcDN1Y6nZLqJRAX87qLIkVvQn
aaQFkj7CHsihXRq9q3Ba2GWy0burqDhVGs44LaQicXLLw0uzjHrSute0VnuRSVHz
/hvxgSurZ2HXAyq2/YAV7dX6CsUvUUoCjqqtnGVFMcIddOvHs80Sk5nPJ6YT2ViC
wg3Y8gMp2p4QTlIoOkiVYkCqj3l0UURcdsLtAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUE82DRc1GVwuOkApgZNdvVdmW0lcwHwYDVR0jBBgwFoAUlIG05AkBXY630D82
A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s
SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT
BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw
MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp
LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvRTgyRFJjMUdWd3VPa0FwZ1pO
ZHZWZG1XMGxjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu
L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3yv
qDANBgkqhkiG9w0BAQsFAAOCAQEAgfvOYA7ifAVMj5OoD2HGT7blk1/l11h4v4b/
JmThGP5/v5tFbXVf/o89BJ1o1jHVrCWr4OUyYDHJv9Cgd7q6NefmKXkgP6sX7hob
SKrhC1AeeWMOlvXpnKMW8Lgo1dTuHxQNGnTlKqbQqbm0CNN7ljX1pZlRxo7Nln96
iEHFpSQZ1Zc6K191glWIe+ZrOSwQd2FZ0LELu127PTEcGXt5MIcov9IOJ317jGk1
vnXcbBNJMCTWOM0Qlz45FAjHxHJIdwBMzkfaOhUMW7wtdIh7Q5oHke150gfEO3Dv
ZVlNTFBHherPJrGUD0XqDkIbRdmUcKV10TxhixY3MXavvjUXRg==
-----END CERTIFICATE-----
Generated at Wed Sep 4 03:24:24 2024 by rpki-client on console-fra.rpki-client.org