Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1212/VGP74pacHg02lmXlkdSui9zbBHc.roa
File: VGP74pacHg02lmXlkdSui9zbBHc.roa (raw, json)
Hash identifier: z6ALr0exuU2bb5vMwFmd7rbQsHX8hxhNWwL9o9nYznE=
Subject key identifier: 54:63:FB:E2:96:9C:1E:0D:36:96:65:E5:91:D4:AE:8B:DC:DB:04:77
Certificate issuer: /CN=2820258AB65FF61FD5D66D95964F48EFA35DCC86
Certificate serial: 0D10
Authority key identifier: 28:20:25:8A:B6:5F:F6:1F:D5:D6:6D:95:96:4F:48:EF:A3:5D:CC:86
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KCAlirZf9h_V1m2Vlk9I76NdzIY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/VGP74pacHg02lmXlkdSui9zbBHc.roa
Signing time: Fri 24 May 2024 02:26:55 +0000
ROA not before: Fri 24 May 2024 02:26:55 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 149628
IP address blocks: 45.116.96.0/22 maxlen: 22
103.23.164.0/22 maxlen: 22
103.56.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:22:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3344 (0xd10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2820258AB65FF61FD5D66D95964F48EFA35DCC86
Validity
Not Before: May 24 02:26:55 2024 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=5463FBE2969C1E0D369665E591D4AE8BDCDB0477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:30:84:d2:ac:51:3d:04:0c:b1:1c:0f:a1:4f:
ec:b5:48:cd:aa:01:56:d9:83:e7:76:d0:6e:85:23:
03:19:17:b3:b6:50:28:57:97:2d:a8:76:f7:46:66:
bb:0f:fa:5a:e0:8d:60:cb:e6:86:65:0c:68:26:ab:
5f:e5:a4:c5:09:c6:48:b1:2d:62:4c:cd:88:84:52:
65:cb:1a:bd:39:a4:85:2e:d2:d0:15:5d:c0:13:4c:
57:58:2c:5a:1a:68:58:c6:03:4c:ea:7d:23:ac:fc:
81:42:33:84:f6:11:84:91:3a:8c:d6:e4:02:8d:d3:
85:bb:07:3f:67:a1:8d:56:41:26:42:4d:c3:3b:ad:
da:7e:05:ec:b3:ea:9e:45:15:c4:ca:f6:5f:61:f9:
20:54:d1:58:e7:1d:ff:38:67:21:d8:e5:f0:13:91:
dd:77:9e:84:17:ce:81:e1:2d:05:2d:1d:49:64:da:
af:05:d5:62:d2:14:16:d6:64:f2:98:e6:2d:70:87:
8c:46:8a:8d:b1:98:6d:81:a6:49:c6:13:90:6b:5b:
81:6d:23:c6:f8:7c:7a:be:c1:1f:7d:ed:e2:d9:7c:
e4:10:f7:45:32:3c:8a:fb:a5:ed:bd:ba:03:65:d2:
8f:24:2c:c9:51:6c:bd:44:14:df:2e:8a:62:21:e5:
87:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:63:FB:E2:96:9C:1E:0D:36:96:65:E5:91:D4:AE:8B:DC:DB:04:77
X509v3 Authority Key Identifier:
keyid:28:20:25:8A:B6:5F:F6:1F:D5:D6:6D:95:96:4F:48:EF:A3:5D:CC:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/KCAlirZf9h_V1m2Vlk9I76NdzIY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KCAlirZf9h_V1m2Vlk9I76NdzIY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1212/VGP74pacHg02lmXlkdSui9zbBHc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.116.96.0/22
103.23.164.0/22
103.56.140.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:3c:68:7f:6a:8c:43:27:41:70:36:f1:a1:94:5d:98:4a:62:
1f:97:fb:0a:6f:85:3f:77:0d:90:2a:a5:a9:5e:ba:21:03:b2:
77:5c:21:9e:f2:10:df:6f:b5:05:8b:7b:b0:42:d3:c2:77:dc:
77:76:73:cb:aa:f2:46:eb:c8:43:fb:39:09:cd:e5:cf:cd:ea:
29:5c:02:a3:54:80:2f:ac:fc:8f:9f:a3:15:83:6f:8b:ed:49:
6e:3d:04:80:8a:31:3e:01:3f:db:0e:45:28:10:73:12:90:30:
a8:7f:97:d7:5f:94:31:66:6f:be:8f:c4:56:f1:63:4c:95:c2:
ef:e7:73:21:6b:d1:14:26:3d:1c:62:a9:fd:6e:55:0d:84:30:
a4:7f:83:a0:3c:5b:21:3c:46:d3:4b:76:89:98:e7:70:2b:e7:
94:a8:c2:1e:d8:61:ee:b9:bd:17:c5:17:86:ac:e6:46:3a:c0:
e5:52:e3:78:89:75:a8:87:88:a6:95:b9:85:aa:93:46:fd:cb:
26:97:be:28:9c:d8:bd:d5:9d:66:44:29:3c:8d:5a:fb:0f:cb:
51:fd:61:64:84:14:d0:09:1b:62:4b:1d:96:ff:b1:57:8b:08:
91:fc:37:a4:96:ba:bb:4a:e1:37:31:38:c1:09:b5:3e:12:12:
93:26:ac:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 01:53:40 2024 by rpki-client on console-ams.rpki-client.org