Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2564/gfLE14zz1DArMmYDmgc71pG9_zM.roa
File: gfLE14zz1DArMmYDmgc71pG9_zM.roa (raw, json)
Hash identifier: YiF4cS27d/QKJRRSsWuQBgnGvnaVJX/nQMRMD+77gYs=
Subject key identifier: 81:F2:C4:D7:8C:F3:D4:30:2B:32:66:03:9A:07:3B:D6:91:BD:FF:33
Certificate issuer: /CN=6A21A11AAC4EAE0A630659B31A230B08D6B58177
Certificate serial: 1013
Authority key identifier: 6A:21:A1:1A:AC:4E:AE:0A:63:06:59:B3:1A:23:0B:08:D6:B5:81:77
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aiGhGqxOrgpjBlmzGiMLCNa1gXc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/gfLE14zz1DArMmYDmgc71pG9_zM.roa
Signing time: Fri 19 May 2023 05:53:53 +0000
ROA not before: Fri 19 May 2023 05:53:53 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 398704
IP address blocks: 103.98.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:21:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4115 (0x1013)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A21A11AAC4EAE0A630659B31A230B08D6B58177
Validity
Not Before: May 19 05:53:53 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=81F2C4D78CF3D4302B3266039A073BD691BDFF33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1a:a8:93:2b:c2:98:f8:6e:54:ca:73:b7:59:
b9:66:0f:22:26:b9:b4:51:1b:59:e2:80:13:c9:15:
53:93:a3:22:4a:89:d5:e3:ac:3a:2d:e3:cd:b7:04:
85:97:fa:67:a0:a9:b0:5e:f7:37:9c:58:85:c1:7c:
24:41:00:d3:bd:27:04:c3:c7:ad:bd:4e:f6:d7:82:
02:78:f4:23:89:4a:37:90:06:84:8e:35:83:03:f5:
f9:1d:a1:fa:f2:c5:34:9d:c4:56:f8:d2:86:a1:e7:
f2:5c:6c:d1:7f:01:54:79:d8:a4:84:5f:2e:d9:25:
6d:60:e5:35:bd:8b:ee:71:93:08:0e:bf:ff:78:59:
da:c1:8e:52:ac:c6:19:0b:50:49:fc:b5:8b:3c:2a:
be:44:7c:19:f9:df:5c:94:ed:96:f9:1b:c8:27:0f:
19:46:01:b2:48:a1:86:12:4a:b7:ef:fe:04:29:f7:
b2:10:da:10:1d:3a:1b:c4:7f:9d:50:0f:cf:64:da:
2f:a0:7d:fb:7c:b7:fb:2b:bf:e1:bc:af:4a:52:27:
62:f7:a9:7f:f7:0e:52:46:7f:27:00:3d:aa:ad:08:
b6:26:fe:36:d8:7b:b8:e0:05:ce:fa:8e:45:b1:01:
f5:bb:16:13:83:65:bf:dd:9d:63:c4:af:0d:73:e3:
fe:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F2:C4:D7:8C:F3:D4:30:2B:32:66:03:9A:07:3B:D6:91:BD:FF:33
X509v3 Authority Key Identifier:
keyid:6A:21:A1:1A:AC:4E:AE:0A:63:06:59:B3:1A:23:0B:08:D6:B5:81:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/aiGhGqxOrgpjBlmzGiMLCNa1gXc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aiGhGqxOrgpjBlmzGiMLCNa1gXc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/gfLE14zz1DArMmYDmgc71pG9_zM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.164.0/22
Signature Algorithm: sha256WithRSAEncryption
72:17:c2:10:78:0f:91:95:39:a4:31:33:ff:98:ea:48:e6:33:
a9:d6:65:f1:53:ae:bc:26:7c:0d:42:e6:d1:82:8d:c5:22:35:
88:dc:72:da:9d:1f:7b:1e:7e:cd:d8:7f:e1:39:a7:b9:8f:45:
c2:a2:6b:c0:13:fb:1c:91:f7:03:f3:37:ef:7e:9f:8a:2d:18:
42:c0:e7:8d:5f:06:aa:cb:6e:64:55:e2:82:91:cd:a3:83:a8:
8a:8d:78:ed:f9:a6:79:b7:ff:7b:10:31:47:08:61:8c:7b:58:
a4:e6:1a:b1:b0:41:e4:a7:b1:34:d1:1f:d6:b3:1f:f0:f5:4e:
7e:38:f0:bd:49:c8:9f:d3:67:ef:ec:8d:e5:e0:d4:fe:7f:c9:
03:7a:38:44:40:b8:87:67:d7:b8:52:6e:c0:30:b6:13:78:88:
3d:53:38:b9:2c:eb:93:a6:23:85:c5:72:47:7d:e7:7f:d5:bb:
de:0d:05:d3:3a:92:f2:3b:df:9a:79:c6:2c:a2:4d:66:11:e4:
65:a9:1f:3d:a9:c6:a9:7b:95:e5:28:1c:23:11:ca:3b:6e:0d:
f8:eb:65:a2:be:05:af:66:a1:d1:63:48:87:1d:8d:d3:ee:f4:
a5:11:9e:af:4e:13:14:2d:19:fc:da:da:2b:e0:40:1a:2d:9d:
a9:9b:6c:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org