Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1407/M0QmQAYAu2tkW0xr3yIH0a4-sck.roa
File: M0QmQAYAu2tkW0xr3yIH0a4-sck.roa (raw, json)
Hash identifier: zIQi0/q6NWQlctQ7BDs7KwVJymhqlZwIc0kARTNy668=
Subject key identifier: 33:44:26:40:06:00:BB:6B:64:5B:4C:6B:DF:22:07:D1:AE:3E:B1:C9
Certificate issuer: /CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E
Certificate serial: 15E7
Authority key identifier: 5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/M0QmQAYAu2tkW0xr3yIH0a4-sck.roa
Signing time: Wed 13 Mar 2024 01:22:13 +0000
ROA not before: Wed 13 Mar 2024 01:22:13 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 17408
IP address blocks: 103.20.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:18:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5607 (0x15e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E
Validity
Not Before: Mar 13 01:22:13 2024 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=334426400600BB6B645B4C6BDF2207D1AE3EB1C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:11:50:db:57:47:43:d6:ee:09:af:53:7e:a3:
37:18:4c:e1:f3:ad:53:d4:6a:e5:08:79:47:9c:7e:
4a:89:38:c8:4f:4f:d7:e6:6d:34:df:0d:78:ee:ec:
75:2a:68:17:b3:c4:b0:98:7b:fa:d0:da:8e:5d:3a:
65:8f:af:b2:d0:eb:be:c1:34:7c:54:aa:c2:2d:23:
1b:cc:4f:b1:3f:47:79:d7:73:ac:96:14:f0:7b:14:
72:38:ee:50:5c:cc:4a:25:12:ad:be:b5:c4:d2:e3:
a5:c3:30:b1:16:2d:c3:85:25:93:6c:ee:dd:18:95:
65:df:1f:44:c7:e6:1b:62:fd:cb:e7:8e:3e:06:c5:
95:fe:b9:bd:d0:d6:ec:8f:77:07:fe:8b:d6:9b:06:
26:dc:d7:b7:1e:50:52:80:a8:f4:06:c6:85:8b:c9:
12:7b:74:97:d3:9c:8d:b2:70:c1:4e:30:67:6d:98:
79:b3:e6:51:f6:cc:df:35:5d:f6:21:58:ca:e6:5f:
7e:3e:c9:88:bc:53:5f:61:0f:86:ec:c5:32:af:f9:
17:ee:63:9e:ec:b2:b8:45:73:54:32:6e:db:04:7c:
d9:1f:48:62:07:f5:63:06:85:70:0b:4c:c8:4a:5a:
58:17:b5:93:65:85:18:7f:cc:96:26:1d:5a:04:3d:
1d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:44:26:40:06:00:BB:6B:64:5B:4C:6B:DF:22:07:D1:AE:3E:B1:C9
X509v3 Authority Key Identifier:
keyid:5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/M0QmQAYAu2tkW0xr3yIH0a4-sck.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.46.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:12:7f:38:f0:d2:5a:04:65:89:53:af:5f:c5:93:01:d7:13:
89:7b:48:3e:bc:d8:04:b5:43:9a:6a:6a:63:48:b1:ba:26:62:
46:46:09:4d:8f:83:1e:f4:88:e9:4e:f2:90:33:31:02:81:b7:
26:68:c1:08:d2:54:f7:ab:09:7d:71:b2:d7:68:bd:e0:d8:84:
8c:e5:b5:f7:d0:c6:50:07:02:c0:26:7a:1a:e7:b6:3f:76:6c:
97:c4:cf:10:5c:ad:76:44:74:86:d8:33:2f:9e:5a:23:06:48:
78:20:c9:d4:64:91:19:7a:27:65:3b:04:d9:8b:3f:1e:ab:96:
12:e7:56:12:77:d0:ed:33:fd:b4:9c:39:c3:88:05:a3:a4:4a:
64:f4:55:2d:cb:89:84:fb:02:cb:74:6d:45:a4:f3:54:ab:0a:
f1:0d:cf:3f:2a:c0:7c:c5:bb:9f:d8:76:75:74:f0:1a:74:8a:
74:c9:e4:74:6d:e4:f7:26:a3:15:d9:54:84:ed:18:91:88:bf:
46:1e:72:df:48:71:24:1b:83:c2:7b:67:c4:d1:90:79:e2:0f:
2b:00:1a:7e:fe:8a:c4:36:7e:3d:90:67:3b:ea:fc:6b:b2:e5:
48:e2:59:fe:20:0a:eb:eb:74:83:72:83:4d:f8:ff:d5:31:8f:
a4:98:31:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 01:53:40 2024 by rpki-client on console-ams.rpki-client.org