Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2564/YlnhRBkp8arRBxDYakdiRDbFTvw.roa
File: YlnhRBkp8arRBxDYakdiRDbFTvw.roa (raw, json)
Hash identifier: GUc5BCL4G374AIe/TvKv4Kjzh0HfG+0TuHsrJcp1toE=
Subject key identifier: 62:59:E1:44:19:29:F1:AA:D1:07:10:D8:6A:47:62:44:36:C5:4E:FC
Certificate issuer: /CN=6A21A11AAC4EAE0A630659B31A230B08D6B58177
Certificate serial: 1012
Authority key identifier: 6A:21:A1:1A:AC:4E:AE:0A:63:06:59:B3:1A:23:0B:08:D6:B5:81:77
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aiGhGqxOrgpjBlmzGiMLCNa1gXc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/YlnhRBkp8arRBxDYakdiRDbFTvw.roa
Signing time: Fri 19 May 2023 05:53:52 +0000
ROA not before: Fri 19 May 2023 05:53:52 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 131482
IP address blocks: 103.98.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:21:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4114 (0x1012)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A21A11AAC4EAE0A630659B31A230B08D6B58177
Validity
Not Before: May 19 05:53:52 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=6259E1441929F1AAD10710D86A47624436C54EFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8b:d6:44:c0:b6:bf:74:e8:39:30:33:eb:96:
09:2f:66:8e:2f:a4:0b:99:51:8e:d4:67:0e:82:39:
ee:be:57:9b:6d:60:ca:81:3d:1d:93:a4:20:55:58:
38:83:8f:45:23:58:ff:66:96:11:f9:d8:c6:44:6e:
f6:df:c3:c2:61:b5:8c:c0:c6:de:26:21:5d:ee:36:
41:02:3c:67:18:2c:0f:b8:56:6a:7a:f0:f5:c0:5f:
d5:ef:dd:e2:25:71:8b:bf:df:a9:51:e8:05:c6:6e:
e1:f6:61:3f:4c:b3:ae:36:15:1c:84:77:fa:66:14:
00:da:1b:37:24:ae:b9:4b:e3:76:41:21:d1:4c:06:
db:78:3e:f3:bb:d0:c1:ce:e7:0a:68:23:ab:ca:7c:
f2:d3:81:dd:ed:cb:2f:72:64:1a:54:63:7a:fc:cc:
07:6a:3a:70:78:6f:94:b1:75:93:0b:08:7c:8c:5a:
5f:3d:53:24:da:2d:1a:50:0c:8e:4e:c4:e8:01:ed:
67:ed:20:0c:be:6a:1b:c3:4e:3a:db:d7:64:8e:6b:
92:39:c5:5c:f1:cf:b3:9c:2a:b1:d9:a2:aa:ce:c8:
99:b8:fd:20:51:5a:41:e1:8a:39:59:ea:48:df:b3:
ca:7b:d9:3a:71:92:93:d1:e7:cc:7e:39:6d:84:be:
8d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:59:E1:44:19:29:F1:AA:D1:07:10:D8:6A:47:62:44:36:C5:4E:FC
X509v3 Authority Key Identifier:
keyid:6A:21:A1:1A:AC:4E:AE:0A:63:06:59:B3:1A:23:0B:08:D6:B5:81:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/aiGhGqxOrgpjBlmzGiMLCNa1gXc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aiGhGqxOrgpjBlmzGiMLCNa1gXc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/YlnhRBkp8arRBxDYakdiRDbFTvw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.164.0/22
Signature Algorithm: sha256WithRSAEncryption
07:04:e0:13:b5:c0:55:5d:7d:cf:30:72:58:11:79:42:c0:3a:
c8:2a:3c:7c:4a:c8:c1:6a:5e:96:0a:b4:ed:7e:a7:c5:4a:9b:
7c:d3:d0:09:19:be:8a:12:1c:e1:d8:d5:8d:8f:73:6a:87:dc:
64:e7:ed:09:c4:0c:db:fb:f1:c1:a1:ea:67:28:3b:3e:cc:30:
f7:32:34:c1:77:5e:ec:38:40:39:05:ec:a7:aa:dd:65:08:04:
86:23:0f:5f:07:8a:b5:bd:5f:c7:25:98:22:5d:76:af:e9:da:
33:aa:25:59:0f:bd:28:3e:1c:c9:d5:96:b0:c1:e8:89:19:6a:
62:13:87:10:58:3a:5a:9e:44:07:ad:79:83:10:b8:e8:ea:67:
db:37:d5:b6:59:58:22:cf:ec:f0:48:76:2d:01:ba:4c:43:93:
c6:ec:b8:fc:9a:d7:80:32:20:cd:89:93:0f:76:50:99:d2:9a:
b6:13:f3:e6:c9:c1:e3:c9:b2:12:f4:79:1e:42:47:b6:db:49:
2e:a9:be:99:de:1c:81:26:b5:7a:a4:86:2d:2f:86:51:a0:05:
0f:84:11:39:c6:bc:a6:d8:7a:a4:a5:c6:1e:75:e7:f5:94:91:
0d:b2:d9:51:e5:48:ab:63:17:81:c3:cd:0f:9b:e1:cb:5e:88:
3c:1d:7f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org