Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/FV9diK9xoELHOamGQ_gExVbEJ6Y.roa
File: FV9diK9xoELHOamGQ_gExVbEJ6Y.roa (raw, json)
Hash identifier: xX5BIslM1q1/9RrtVtfpBidYmcwzKg1XpPy27t8K8Oo=
Subject key identifier: 15:5F:5D:88:AF:71:A0:42:C7:39:A9:86:43:F8:04:C5:56:C4:27:A6
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 04D8
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/FV9diK9xoELHOamGQ_gExVbEJ6Y.roa
Signing time: Wed 26 Jun 2024 13:39:40 +0000
ROA not before: Wed 26 Jun 2024 13:39:40 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 18811
IP address blocks: 124.175.48.0/21 maxlen: 24
124.175.56.0/21 maxlen: 24
124.175.200.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 04:09:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1240 (0x4d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Jun 26 13:39:40 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=155F5D88AF71A042C739A98643F804C556C427A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:44:c9:07:45:bf:eb:9e:d8:b1:f5:0b:b4:ee:
d3:08:99:4e:ec:3a:5d:94:ac:4e:56:a4:4c:71:ad:
e2:dc:19:96:ec:e7:14:e0:ab:fa:84:ac:c3:4b:ca:
9d:62:e7:a6:99:17:0b:45:47:3c:fa:fd:10:29:a0:
86:f0:59:29:18:e8:ed:a7:a7:20:80:13:3d:6e:16:
a8:86:02:4f:58:7a:48:34:10:8e:5e:4b:11:58:f1:
4b:8b:f8:cb:aa:5c:cc:67:8b:4e:e7:8e:a8:c2:92:
6d:2a:f8:20:14:4f:80:8a:9b:6c:30:e4:89:8b:df:
87:de:f4:73:93:46:8d:06:a3:92:d5:47:2f:6d:43:
cf:86:39:0c:21:54:f2:c6:a6:ad:cf:f5:4e:3a:3b:
f6:db:bf:85:48:f6:32:8c:01:db:92:b3:fc:d8:b5:
4a:2b:a9:49:2c:a6:e5:71:a1:de:9d:5a:1d:da:2c:
e4:d5:e6:f3:5a:40:e8:3c:a1:9a:79:75:1a:d7:fc:
c7:10:58:42:05:cb:c4:af:5d:fe:2b:13:01:8c:38:
06:9d:7b:39:94:5a:e7:1a:64:d8:5a:e7:38:1b:8c:
0f:1d:03:72:3a:1b:cc:46:7d:5f:9d:f8:9e:cf:44:
da:4c:43:76:0e:bf:3e:96:6d:bb:dd:2d:1f:42:f8:
97:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:5F:5D:88:AF:71:A0:42:C7:39:A9:86:43:F8:04:C5:56:C4:27:A6
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/FV9diK9xoELHOamGQ_gExVbEJ6Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.175.48.0/20
124.175.200.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:11:c1:12:04:26:b6:68:69:a9:77:01:ef:75:f1:79:50:e1:
15:8b:74:58:68:d4:ba:52:9e:ac:58:e9:be:ee:30:62:c2:b1:
4f:72:99:b8:b1:89:21:e7:ea:29:a1:08:ac:76:5a:ac:9d:0f:
72:dc:ac:2e:30:28:cd:45:a8:f3:3f:7d:6e:5c:bd:a7:62:0c:
66:ed:c5:05:82:dc:e9:32:ed:86:8a:b3:e0:59:92:bd:87:6d:
39:36:27:02:6d:de:c1:ea:e7:b6:e5:f1:cb:8a:aa:43:a5:70:
25:75:fe:4e:9c:ba:a4:7e:ce:27:69:bc:43:4d:b7:16:ad:cd:
60:f7:ca:6b:3f:1d:09:f7:06:90:e5:2b:56:73:e3:b8:d8:de:
2a:c0:47:05:e9:ce:be:72:44:99:4c:9c:17:7c:ee:b4:c8:3f:
dc:eb:4c:05:2f:b3:7b:a1:61:cd:be:99:1e:d6:61:2e:12:69:
f3:be:f1:4e:8a:b2:bc:dd:17:d3:86:f9:f7:22:09:6e:20:9f:
a5:05:77:a4:04:b5:8b:d1:0d:2c:2c:fe:d2:ab:ad:84:40:76:
fe:b0:c7:ba:87:04:6f:29:25:73:6f:8b:a8:26:dc:58:3c:e0:
5e:b1:0c:89:a8:08:3c:f8:c8:07:2b:17:a2:fd:6f:41:f7:79:
4b:7e:b1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 05:43:53 2024 by rpki-client on console-fra.rpki-client.org