Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/HR3bL3qASGUgtsbPEDxi85vFzRI.roa
File: HR3bL3qASGUgtsbPEDxi85vFzRI.roa (raw, json)
Hash identifier: CU5KuQ/A8aHfiL4ZDlmrTi6Phm7mTrYnZ/OJtH4yb8Y=
Subject key identifier: 1D:1D:DB:2F:7A:80:48:65:20:B6:C6:CF:10:3C:62:F3:9B:C5:CD:12
Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Certificate serial: 1A59
Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/HR3bL3qASGUgtsbPEDxi85vFzRI.roa
Signing time: Mon 14 Aug 2023 04:34:06 +0000
ROA not before: Mon 14 Aug 2023 04:34:06 +0000
ROA not after: Sat 10 Aug 2024 07:41:13 +0000
asID: 63612
IP address blocks: 103.45.96.0/19 maxlen: 24
103.45.96.0/24 maxlen: 24
103.45.97.0/24 maxlen: 24
103.45.98.0/24 maxlen: 24
103.45.99.0/24 maxlen: 24
103.45.100.0/24 maxlen: 24
103.45.101.0/24 maxlen: 24
103.45.102.0/24 maxlen: 24
103.45.103.0/24 maxlen: 24
103.45.104.0/24 maxlen: 24
103.45.105.0/24 maxlen: 24
103.45.106.0/24 maxlen: 24
103.45.107.0/24 maxlen: 24
103.45.108.0/24 maxlen: 24
103.45.109.0/24 maxlen: 24
103.45.110.0/24 maxlen: 24
103.45.111.0/24 maxlen: 24
103.45.112.0/24 maxlen: 24
103.45.113.0/24 maxlen: 24
103.45.114.0/24 maxlen: 24
103.45.115.0/24 maxlen: 24
103.45.116.0/24 maxlen: 24
103.45.117.0/24 maxlen: 24
103.45.118.0/24 maxlen: 24
103.45.119.0/24 maxlen: 24
103.45.120.0/24 maxlen: 24
103.45.121.0/24 maxlen: 24
103.45.122.0/24 maxlen: 24
103.45.123.0/24 maxlen: 24
103.45.124.0/24 maxlen: 24
103.45.125.0/24 maxlen: 24
103.45.126.0/24 maxlen: 24
103.45.127.0/24 maxlen: 24
103.45.128.0/19 maxlen: 24
103.45.128.0/24 maxlen: 24
103.45.129.0/24 maxlen: 24
103.45.130.0/24 maxlen: 24
103.45.131.0/24 maxlen: 24
103.45.132.0/24 maxlen: 24
103.45.133.0/24 maxlen: 24
103.45.134.0/24 maxlen: 24
103.45.135.0/24 maxlen: 24
103.45.136.0/24 maxlen: 24
103.45.137.0/24 maxlen: 24
103.45.138.0/24 maxlen: 24
103.45.139.0/24 maxlen: 24
103.45.140.0/24 maxlen: 24
103.45.141.0/24 maxlen: 24
103.45.142.0/24 maxlen: 24
103.45.143.0/24 maxlen: 24
103.45.144.0/24 maxlen: 24
103.45.145.0/24 maxlen: 24
103.45.146.0/24 maxlen: 24
103.45.147.0/24 maxlen: 24
103.45.148.0/24 maxlen: 24
103.45.149.0/24 maxlen: 24
103.45.150.0/24 maxlen: 24
103.45.151.0/24 maxlen: 24
103.45.152.0/24 maxlen: 24
103.45.153.0/24 maxlen: 24
103.45.154.0/24 maxlen: 24
103.45.155.0/24 maxlen: 24
103.45.156.0/24 maxlen: 24
103.45.157.0/24 maxlen: 24
103.45.158.0/24 maxlen: 24
103.45.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 02:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6745 (0x1a59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Validity
Not Before: Aug 14 04:34:06 2023 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=1D1DDB2F7A80486520B6C6CF103C62F39BC5CD12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:39:6c:53:a7:f1:dd:63:25:97:25:72:d8:8d:
3d:8f:3d:9a:e1:06:81:17:30:8a:5d:2a:c6:6e:8f:
2d:ec:b1:50:b8:ff:ab:1c:4c:02:ce:9d:f9:e5:20:
83:49:97:fd:b0:86:1a:f3:c8:9c:7d:a3:f5:20:9d:
85:f7:a8:07:66:a1:7b:be:36:ff:46:61:96:08:07:
55:3e:36:c3:b9:f6:90:df:94:93:7b:d6:1b:5c:f8:
3b:d3:15:85:1d:57:91:e5:92:b0:d7:e9:20:9c:e4:
78:76:ee:2d:dc:db:89:20:c4:01:bf:cc:ae:f4:82:
96:8e:52:39:77:b8:08:80:0a:03:cc:e2:9c:12:0c:
83:be:f0:41:6e:83:2f:af:27:84:e5:52:24:c1:5d:
18:6e:b3:a3:31:d7:b0:bc:6d:b2:d2:96:94:0c:54:
b9:6a:78:0e:f2:96:ce:b2:b8:30:cd:f4:af:bd:85:
b3:c2:81:e8:e3:5a:ad:d1:a8:d7:40:88:e5:4b:ae:
9c:3a:ea:37:bd:d7:bf:c2:a8:8a:b8:ed:27:7c:6b:
7e:82:f9:85:89:c8:11:95:ef:3e:f0:09:1c:f9:75:
b9:26:96:6b:82:63:10:c4:f6:22:47:69:03:62:cd:
03:fd:92:eb:c4:62:2c:8e:b1:8f:8f:fd:4b:20:a3:
9e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1D:DB:2F:7A:80:48:65:20:B6:C6:CF:10:3C:62:F3:9B:C5:CD:12
X509v3 Authority Key Identifier:
keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/HR3bL3qASGUgtsbPEDxi85vFzRI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.45.96.0-103.45.159.255
Signature Algorithm: sha256WithRSAEncryption
a8:6c:bd:b9:c8:24:bb:8b:4d:9c:da:b0:ed:90:e3:e6:a3:c9:
d5:c9:8d:32:93:4e:81:80:35:4c:dc:cd:54:a6:0b:78:08:65:
f2:4f:6b:ff:51:f8:03:17:12:d8:e9:8a:e5:0d:85:d4:15:70:
c8:79:77:fd:b9:5f:8c:30:c4:86:e3:8b:3e:5f:ea:58:58:bf:
03:96:a4:4e:50:91:a9:f0:f2:4a:99:75:98:25:91:b3:31:96:
9d:7e:ed:86:9c:42:d3:85:d0:01:81:24:e2:47:83:47:99:d3:
a9:31:43:54:6b:15:1b:77:b3:79:3c:62:05:1f:3a:33:78:6f:
d7:9f:33:57:f6:cb:ff:1f:e4:88:bc:9e:74:a8:50:84:2a:2e:
7d:f4:6f:98:15:88:55:30:e3:1b:c6:d2:2b:81:75:90:39:b2:
f9:ca:f3:d0:95:6d:dc:53:1a:41:28:96:f7:1c:24:7f:83:19:
b5:94:ef:41:20:ae:95:20:8b:47:e0:7d:d4:24:37:1e:c5:58:
af:4b:d4:27:c7:46:ec:ea:2b:72:30:0e:10:4f:13:3e:21:c4:
3f:ea:95:27:f6:c6:f3:d3:e7:c7:19:1f:82:ae:c1:55:a7:91:
b8:3a:28:31:ad:8f:79:95:84:a1:6b:f1:40:aa:fe:21:1a:63:
3f:5a:ff:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 04:03:20 2024 by rpki-client on console-ams.rpki-client.org