Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2639/gSOzO7k4ngF1f1ekqkui7MG1gIo.roa
File: gSOzO7k4ngF1f1ekqkui7MG1gIo.roa (raw, json)
Hash identifier: whNTsX0waTOFe7pu0cCii8oOUdbx1c0+fdJzTmpbFmA=
Subject key identifier: 81:23:B3:3B:B9:38:9E:01:75:7F:57:A4:AA:4B:A2:EC:C1:B5:80:8A
Certificate issuer: /CN=D1EA9A8B512505907299DA38CEA5BCCE610987CB
Certificate serial: 1425
Authority key identifier: D1:EA:9A:8B:51:25:05:90:72:99:DA:38:CE:A5:BC:CE:61:09:87:CB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0eqai1ElBZBymdo4zqW8zmEJh8s.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2639/gSOzO7k4ngF1f1ekqkui7MG1gIo.roa
Signing time: Wed 24 May 2023 03:54:20 +0000
ROA not before: Wed 24 May 2023 03:54:20 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 24424
IP address blocks: 103.104.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5157 (0x1425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D1EA9A8B512505907299DA38CEA5BCCE610987CB
Validity
Not Before: May 24 03:54:20 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=8123B33BB9389E01757F57A4AA4BA2ECC1B5808A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:51:dd:ba:d0:0c:bd:72:ec:7f:40:ef:8d:30:
3a:78:66:5c:1f:7c:3c:85:e3:85:ac:32:be:ee:a3:
8a:61:94:66:1a:b7:91:55:26:76:02:21:35:74:08:
92:7b:64:4e:53:b5:aa:ea:b7:5c:ab:7f:4c:3f:ac:
99:af:f0:13:11:45:6b:84:d9:6a:b8:8a:d9:47:8e:
05:49:a1:93:4b:c7:48:11:57:22:74:4c:1a:3a:c9:
20:fc:43:fa:b3:da:5b:10:1c:97:e7:c0:ba:5d:69:
4c:fa:d1:20:0c:0c:c5:f2:a2:5e:9d:27:0b:54:e2:
ac:c1:8e:80:66:08:7d:e7:1e:ec:70:0a:b7:7e:f6:
f7:72:0b:00:37:1a:fc:61:7b:35:a7:09:8a:e3:9b:
19:fb:06:1c:7b:92:e2:ce:87:79:ad:95:98:f1:f2:
56:57:37:39:57:02:ce:56:09:b9:61:d8:46:1e:c3:
37:53:04:75:33:c7:d2:91:07:b9:e0:b3:b0:41:fa:
59:cb:cd:b6:1e:37:e9:01:79:b7:0b:6c:ba:f4:c9:
40:e6:59:1d:c3:c4:20:00:0e:26:ae:c8:79:d7:a8:
8b:c2:27:4c:d4:7a:1d:68:93:6d:53:71:28:1b:a8:
90:d7:cd:69:33:8a:c8:ac:40:19:bb:fa:7d:84:59:
af:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:23:B3:3B:B9:38:9E:01:75:7F:57:A4:AA:4B:A2:EC:C1:B5:80:8A
X509v3 Authority Key Identifier:
keyid:D1:EA:9A:8B:51:25:05:90:72:99:DA:38:CE:A5:BC:CE:61:09:87:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2639/0eqai1ElBZBymdo4zqW8zmEJh8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0eqai1ElBZBymdo4zqW8zmEJh8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2639/gSOzO7k4ngF1f1ekqkui7MG1gIo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.152.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:af:68:f4:18:04:97:b7:b6:f2:1e:36:05:3b:6b:dd:85:02:
e2:12:44:e2:2f:95:59:0d:26:4c:5c:8d:22:37:e5:25:23:4b:
6b:aa:bc:54:c0:b4:dd:b1:af:7f:22:94:b8:79:6b:8b:eb:01:
57:bf:e1:b6:38:ad:e0:d9:0a:49:04:12:9c:98:1f:65:c4:51:
ec:88:fa:ea:8d:b3:47:3a:8a:71:19:4a:fa:4e:1a:6c:7a:33:
4e:06:6a:36:20:01:31:52:a1:e5:84:68:15:af:f6:e6:44:7d:
16:02:41:5e:ae:3b:e7:b8:aa:d0:6f:94:39:10:e3:6c:10:7b:
be:08:0b:2a:00:9d:25:12:41:09:71:c4:c0:44:44:72:01:19:
72:3d:75:36:9d:94:72:87:12:1a:e1:c4:b4:bf:d3:df:f1:2e:
4d:de:37:e4:73:5a:56:90:7f:cd:b2:e6:72:dd:e6:9c:6f:70:
6a:f9:39:32:c9:6c:99:b9:b5:ce:67:75:c9:36:0c:7f:c9:55:
0c:b7:5b:c8:52:59:1f:6c:18:8b:57:33:b4:81:f2:c3:cb:fc:
9d:6d:65:19:4c:fd:30:ed:5e:1f:62:31:a6:e3:a5:e7:b6:b3:
db:69:f9:32:e4:ad:f5:a0:d1:49:0d:c4:32:92:c2:45:35:08:
e5:b7:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org