Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/Yl8td0T0NzscEJcqNNZ0Du1UZJs.roa
File: Yl8td0T0NzscEJcqNNZ0Du1UZJs.roa (raw, json)
Hash identifier: U8vhQ3+U2S1op15bYCVDsyyc7V/rz1c2u3dHjhAo1vs=
Subject key identifier: 62:5F:2D:77:44:F4:37:3B:1C:10:97:2A:34:D6:74:0E:ED:54:64:9B
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 05CC
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/Yl8td0T0NzscEJcqNNZ0Du1UZJs.roa
Signing time: Mon 12 Aug 2024 04:09:42 +0000
ROA not before: Mon 12 Aug 2024 04:09:42 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 2914
IP address blocks: 124.175.24.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 01:37:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1484 (0x5cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Aug 12 04:09:42 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=625F2D7744F4373B1C10972A34D6740EED54649B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:25:c1:d8:bd:27:83:08:ae:94:1d:a7:bf:02:
67:3e:d4:04:6f:5f:92:c6:67:b1:46:7d:1e:fd:b0:
7b:39:a4:c5:76:09:14:fc:f9:13:be:a8:12:2c:dc:
25:62:7d:33:23:4f:76:04:37:f4:51:e8:68:8c:b7:
87:5a:a5:07:bc:49:4e:52:e5:13:27:aa:ad:33:0d:
d8:e1:5c:f4:0a:32:17:98:2a:88:41:da:c5:08:bf:
d3:df:72:4c:62:33:02:5e:e4:fa:45:6c:2e:e9:ec:
e9:8d:1f:68:69:2d:c0:c1:eb:92:5d:00:cc:44:20:
48:42:8a:d5:72:a1:7c:93:30:69:42:f0:dc:c5:30:
63:31:fc:a2:5b:73:f5:c7:b3:a4:7b:12:eb:97:6a:
fc:50:ea:e5:aa:7c:10:15:60:e5:1a:25:a7:2a:9d:
93:9a:04:46:59:66:2f:7e:2b:53:e3:7f:f4:d6:31:
df:5a:33:be:41:1e:91:b8:67:4b:48:51:c0:a7:bd:
fa:cf:f4:18:9d:c6:93:52:e0:8d:74:5e:5a:f2:26:
39:5c:2c:82:ba:d0:aa:99:56:46:ad:4b:61:47:1b:
db:5c:82:16:75:c1:76:15:7a:46:61:d5:fa:91:6e:
a8:70:ea:86:56:16:0c:3b:5d:23:52:0d:63:86:a3:
40:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:5F:2D:77:44:F4:37:3B:1C:10:97:2A:34:D6:74:0E:ED:54:64:9B
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/Yl8td0T0NzscEJcqNNZ0Du1UZJs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.175.24.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:74:34:a3:01:d6:c3:25:43:d4:56:c1:80:44:59:25:b3:a3:
c0:49:b1:5e:82:83:8b:48:40:19:dd:fa:ca:5f:23:77:5b:b5:
ad:88:95:82:e1:76:43:c3:ef:dc:db:c6:86:bd:46:97:31:13:
36:6a:10:eb:01:e3:a4:87:fd:cd:2e:27:72:15:e5:33:a6:21:
6a:6d:b4:6e:7a:1c:98:98:c3:34:e4:27:11:ea:7c:1b:47:a3:
d9:0e:98:94:bf:1f:01:0e:2a:fc:a6:ab:8c:ac:e8:e0:4f:a8:
e6:70:47:04:bc:eb:bf:7c:f7:3f:29:20:d8:c4:93:a7:8f:c4:
3e:32:e6:d1:1a:81:b7:fb:f2:14:e6:2e:d7:bd:43:58:01:3c:
1f:76:bf:c6:4e:9b:fc:9d:4a:c9:69:34:ae:5c:70:0d:34:4b:
e8:66:5f:c9:eb:e4:4b:3b:15:f1:39:f3:97:fa:9d:fe:c5:56:
a3:67:6f:c6:70:bd:e6:13:e2:ac:5a:dd:f5:6f:d0:1e:6d:ce:
75:c5:4a:25:35:c2:a5:36:91:3a:65:bb:7c:07:a8:1c:8e:f9:
fa:bf:e1:d4:94:14:bb:22:20:34:8c:16:50:5d:6f:05:6a:d0:
8f:44:78:e7:42:1e:9c:f9:f1:e6:3d:3f:29:95:5a:47:2a:b3:
c1:f1:0f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 03:33:39 2024 by rpki-client on console-ams.rpki-client.org