Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/shdqIHOlbwgqjuEULAbjcEN_oyg.roa
File: shdqIHOlbwgqjuEULAbjcEN_oyg.roa (raw, json)
Hash identifier: oM5i902RteFqSPKBHMdmLb+CY4VgikygJQYkb/Wgfzs=
Subject key identifier: B2:17:6A:20:73:A5:6F:08:2A:8E:E1:14:2C:06:E3:70:43:7F:A3:28
Certificate issuer: /CN=3C8625BACA079911E2B28299B4BD44FDCBFFF60C
Certificate serial: 04
Authority key identifier: 3C:86:25:BA:CA:07:99:11:E2:B2:82:99:B4:BD:44:FD:CB:FF:F6:0C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/PIYlusoHmRHisoKZtL1E_cv_9gw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/shdqIHOlbwgqjuEULAbjcEN_oyg.roa
Signing time: Fri 14 Apr 2023 07:14:24 +0000
ROA not before: Fri 14 Apr 2023 07:14:24 +0000
ROA not after: Sat 13 Apr 2024 07:10:54 +0000
asID: 41717
IP address blocks: 103.116.149.0/24 maxlen: 24
103.116.150.0/24 maxlen: 24
103.116.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 07:21:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3C8625BACA079911E2B28299B4BD44FDCBFFF60C
Validity
Not Before: Apr 14 07:14:24 2023 GMT
Not After : Apr 13 07:10:54 2024 GMT
Subject: CN=B2176A2073A56F082A8EE1142C06E370437FA328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fc:f6:4f:d6:e6:91:54:24:d6:6b:0e:0c:3a:
e1:66:02:c5:5f:45:9b:1c:15:55:c4:75:95:d5:d9:
00:ef:e8:93:32:a0:c7:87:e9:67:66:a6:9c:c6:87:
1c:28:0d:0c:7c:eb:be:ee:55:a4:ef:44:b4:51:3d:
a0:87:66:14:7b:68:77:84:0d:29:32:7f:9e:f4:c1:
f9:9e:72:f7:1b:ef:17:83:34:11:bd:ca:b8:49:d7:
eb:9a:7a:84:1a:4a:be:b4:03:54:36:5f:68:69:6a:
89:a8:53:00:34:e3:bb:66:1b:9e:98:30:ff:eb:b8:
e8:ab:eb:6b:71:b6:09:ff:10:86:78:2c:3a:74:6a:
54:cf:b3:55:0c:08:b4:ad:98:0a:b5:64:59:c3:16:
b1:a3:83:55:8c:13:ce:d7:45:49:3b:14:11:03:46:
42:0b:c4:7a:10:0c:28:ce:de:da:23:bd:55:bf:0e:
0b:f7:e7:33:cd:cd:d2:99:2f:f3:00:bf:22:e5:f5:
44:35:05:5b:7a:d0:3f:6c:55:93:4f:c6:1c:3c:bd:
bf:ba:b1:b0:8b:16:38:d2:54:71:08:13:4c:69:fb:
d1:b7:4e:d5:99:7b:88:a6:5b:8a:97:82:4c:da:bd:
69:d0:71:f4:cd:66:d0:11:4b:58:79:8f:cc:02:8d:
06:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:17:6A:20:73:A5:6F:08:2A:8E:E1:14:2C:06:E3:70:43:7F:A3:28
X509v3 Authority Key Identifier:
keyid:3C:86:25:BA:CA:07:99:11:E2:B2:82:99:B4:BD:44:FD:CB:FF:F6:0C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/PIYlusoHmRHisoKZtL1E_cv_9gw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/PIYlusoHmRHisoKZtL1E_cv_9gw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/shdqIHOlbwgqjuEULAbjcEN_oyg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.116.149.0-103.116.151.255
Signature Algorithm: sha256WithRSAEncryption
1e:46:a7:4a:49:df:56:9f:47:cd:76:9d:1e:c0:32:28:76:fe:
ab:21:e1:9b:a2:23:fe:bb:7e:a7:cd:1e:e7:8b:ab:ee:7c:5b:
73:b1:02:24:de:c6:c8:04:48:1d:7f:e3:56:77:d1:be:d8:98:
c9:0c:69:e0:e4:65:b6:ea:bf:78:5c:06:6e:92:a2:c2:dc:46:
3b:40:ba:5b:78:ab:e1:5b:92:60:ba:46:81:45:4a:54:80:d2:
df:26:a5:ca:ab:42:f5:50:fe:bf:2a:ca:f6:b3:20:05:6a:7d:
59:ed:cf:cb:e0:ba:40:3f:e2:11:b0:a9:42:2e:96:d5:2c:d9:
8e:15:42:22:90:f4:f7:5b:78:74:ed:9e:d3:b6:95:b4:b1:44:
11:08:30:6b:95:de:99:56:66:03:ec:5c:0b:93:58:67:1f:7c:
73:1b:5e:eb:db:81:35:1b:90:d1:0b:cb:55:08:e2:30:bb:45:
dd:4d:1c:21:fa:c0:42:8b:48:a5:3f:a9:7e:9b:79:51:d2:f5:
27:f1:05:c7:d2:57:83:73:f6:5c:b7:39:d2:de:f6:95:b0:e0:
c4:74:76:99:68:fc:cb:f9:d8:b1:28:e1:f5:f4:60:48:dd:e8:
03:9a:8f:fe:92:c8:2c:61:44:48:e6:fc:29:11:35:eb:d0:87:
12:ac:41:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 30 08:43:33 2024 by rpki-client on console-fra.rpki-client.org