Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2309/BpNnhi5qRbe7ppUSpgA4sJQJoRU.roa
File: BpNnhi5qRbe7ppUSpgA4sJQJoRU.roa (raw, json)
Hash identifier: lfeVvHJwjremIkeULxwjUvpmZZFDP7etQUeByAoOV2c=
Subject key identifier: 06:93:67:86:2E:6A:45:B7:BB:A6:95:12:A6:00:38:B0:94:09:A1:15
Certificate issuer: /CN=060C00BF17A55FDB85CAF4578BE833056E028B43
Certificate serial: 11EF
Authority key identifier: 06:0C:00:BF:17:A5:5F:DB:85:CA:F4:57:8B:E8:33:05:6E:02:8B:43
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BgwAvxelX9uFyvRXi-gzBW4Ci0M.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/BpNnhi5qRbe7ppUSpgA4sJQJoRU.roa
Signing time: Thu 14 Nov 2024 08:20:03 +0000
ROA not before: Thu 14 Nov 2024 08:20:03 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 34549
IP address blocks: 59.83.240.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Nov 2024 01:44:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4591 (0x11ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=060C00BF17A55FDB85CAF4578BE833056E028B43
Validity
Not Before: Nov 14 08:20:03 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=069367862E6A45B7BBA69512A60038B09409A115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2a:23:3e:b0:c8:a1:94:99:99:fb:cb:78:5e:
1d:cd:aa:09:ee:f2:d3:d4:d9:e8:ed:2d:89:a1:a1:
e3:a4:d2:86:c5:0c:2c:e2:8e:5b:1b:bc:83:a5:bb:
2f:52:31:e2:57:ec:71:bd:c8:6c:25:da:b7:e2:96:
8c:18:75:8d:fd:d0:68:b0:84:49:78:4b:eb:62:e3:
0b:a2:37:1d:ea:95:3a:54:07:c6:bf:c9:e2:a1:1f:
fd:dd:fc:b0:21:93:95:23:16:51:41:17:bd:ed:fa:
c3:27:e6:14:f0:6b:53:cb:4e:eb:7e:63:3b:42:67:
a5:68:78:88:ca:9e:cd:f9:f7:66:36:d0:26:80:8b:
3e:06:b3:28:f2:e9:3d:27:07:2c:44:8a:e8:5b:e4:
02:60:ee:21:56:c5:60:4b:80:bc:1c:95:21:88:8e:
42:a6:c9:01:05:20:3e:dc:cb:89:64:a6:d0:3e:fa:
b0:91:86:72:cb:dc:61:af:07:cb:ac:11:8b:ad:2c:
21:25:8e:cd:a1:ae:22:c6:00:96:b3:be:e4:c0:de:
01:90:67:0c:71:a0:0a:37:b5:e0:bc:da:cb:36:d0:
5f:07:a4:1c:3f:7a:b8:ac:30:22:27:c4:15:ee:dd:
16:7f:ad:9a:95:eb:d7:8b:ea:9b:34:20:91:70:02:
1e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:93:67:86:2E:6A:45:B7:BB:A6:95:12:A6:00:38:B0:94:09:A1:15
X509v3 Authority Key Identifier:
keyid:06:0C:00:BF:17:A5:5F:DB:85:CA:F4:57:8B:E8:33:05:6E:02:8B:43
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/BgwAvxelX9uFyvRXi-gzBW4Ci0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BgwAvxelX9uFyvRXi-gzBW4Ci0M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2309/BpNnhi5qRbe7ppUSpgA4sJQJoRU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.83.240.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:a5:1c:51:d4:63:89:ea:c1:36:f7:da:aa:53:bc:36:3d:3f:
f7:93:46:bd:c2:c3:75:db:18:9b:16:92:75:ee:68:78:73:74:
54:f8:e9:3e:e4:25:5c:5a:51:7c:ba:dd:57:b9:66:43:36:4c:
79:a5:a7:e8:8d:ab:d5:6d:1c:33:77:c1:44:50:d6:85:55:65:
ef:d3:86:54:ba:f5:eb:8e:c8:65:27:ac:85:1e:7b:c9:ef:72:
5f:fc:34:d3:85:1e:40:fa:3c:24:ba:87:fe:83:bc:ad:22:79:
ca:29:26:c3:d1:76:1c:30:b6:99:85:60:73:6a:e0:58:a3:99:
62:e1:cc:c0:95:26:1c:9a:c6:65:a0:07:99:a4:39:24:22:ba:
b4:e3:0d:17:75:95:76:17:7d:a3:f9:89:7a:77:50:5d:8e:07:
5a:27:d9:e3:c6:28:04:d9:79:08:4d:de:d0:28:1c:2d:02:e7:
1d:a4:2a:57:12:b4:04:06:be:4d:46:19:42:e9:34:f4:f4:8d:
88:5f:5a:83:bd:e3:c6:87:07:6f:aa:3b:8b:b3:1a:1f:a5:15:
d8:06:59:45:7d:76:4c:7f:7c:d4:e9:fa:d0:56:2a:aa:14:ee:
06:db:cc:8c:b4:84:94:be:fd:85:32:e6:23:3c:ee:4f:77:b8:
02:87:cc:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 16 03:10:48 2024 by rpki-client on console-fra.rpki-client.org