Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/UL-ciN9wosofA2lPfG30JJNAgR0.roa
File: UL-ciN9wosofA2lPfG30JJNAgR0.roa (raw, json)
Hash identifier: MixJHvXsvs6IBChnkHwupSQuMUm5uMZgauCQ1thvu/8=
Subject key identifier: 50:BF:9C:88:DF:70:A2:CA:1F:03:69:4F:7C:6D:F4:24:93:40:81:1D
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 05D3
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/UL-ciN9wosofA2lPfG30JJNAgR0.roa
Signing time: Mon 12 Aug 2024 04:09:44 +0000
ROA not before: Mon 12 Aug 2024 04:09:44 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 136897
IP address blocks: 124.175.136.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 01:36:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1491 (0x5d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Aug 12 04:09:44 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=50BF9C88DF70A2CA1F03694F7C6DF4249340811D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:07:6d:90:87:0b:8b:93:3f:5b:41:e7:1f:
86:4c:d3:ca:9f:98:7a:40:51:63:a9:e8:e6:5c:72:
fe:04:76:8b:fc:e0:f6:ef:08:98:c8:0e:b7:ed:7b:
8b:08:62:ad:e5:c7:65:77:85:3e:e3:77:77:be:be:
cc:2b:9d:1a:1c:69:ae:b2:d2:55:f7:45:1b:b6:37:
cb:1a:c2:4d:19:07:06:61:0f:93:24:59:ae:13:4d:
48:b5:0d:8b:41:77:9b:4a:4e:b9:95:e9:6d:58:c8:
34:c8:62:25:96:91:ea:31:6e:ac:da:f9:4b:39:65:
5c:36:47:47:ef:0d:43:17:c2:eb:4a:4a:97:25:04:
71:72:f5:4a:55:df:02:b0:f4:ec:b2:ac:15:74:1d:
e6:d2:0f:8b:96:51:88:ea:15:4b:f8:51:9a:59:a2:
ed:59:8d:0a:9b:0b:9a:27:8d:23:a0:20:9f:d7:34:
0e:6d:88:06:f7:75:03:da:98:d0:ce:46:ee:88:f5:
68:ed:38:2b:24:97:12:bf:ac:8e:97:b3:68:d6:bc:
3c:bb:d0:4f:f3:c1:51:a2:cf:dc:28:bc:2c:ef:9e:
d3:39:f5:be:00:62:5d:14:8c:91:68:37:39:31:2f:
d2:a4:07:da:21:1f:16:6d:95:a1:3d:bc:81:eb:5a:
04:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BF:9C:88:DF:70:A2:CA:1F:03:69:4F:7C:6D:F4:24:93:40:81:1D
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/UL-ciN9wosofA2lPfG30JJNAgR0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.175.136.0/21
Signature Algorithm: sha256WithRSAEncryption
12:87:48:59:2b:fc:3c:20:80:d9:f1:92:3d:03:67:0a:37:a8:
e4:2a:5a:00:32:97:ee:97:f5:72:9f:49:8d:c8:f2:7c:58:ea:
61:58:66:4c:8e:82:a1:2b:cf:94:5f:c8:79:a8:6a:17:71:d2:
62:20:40:50:ef:c6:04:1c:57:a1:9d:a8:f9:11:30:ae:46:b7:
07:b0:8c:12:9b:0b:ae:c6:0c:e8:f8:63:62:36:71:30:49:00:
67:8c:db:5a:99:d1:df:49:86:e8:70:fe:b1:9f:04:82:ac:96:
04:8e:62:60:5b:9d:bb:45:ac:0f:59:aa:b5:f2:4b:ea:e2:75:
da:80:66:2f:fa:21:0e:df:af:60:2c:00:3a:81:f9:d7:e1:33:
98:95:6d:2e:04:91:5b:d1:b8:5a:12:67:c2:6d:b6:df:03:4d:
dc:7b:55:b0:86:df:80:5c:f6:f6:9d:54:b2:de:36:c5:e7:62:
f9:03:0d:9c:7b:20:9b:7a:24:c8:3a:43:04:e9:0d:20:a2:63:
9a:e4:29:f9:88:41:32:59:e2:c5:c3:73:88:a9:c1:f4:5f:f8:
ce:2a:50:56:6b:a8:56:ce:7a:3b:67:e3:6f:b2:c4:08:c7:d7:
7a:42:d2:b3:7e:b7:b1:42:f3:d4:2e:1e:61:0c:d6:6b:e4:90:
cd:b3:9f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 03:33:39 2024 by rpki-client on console-ams.rpki-client.org