Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2742/aNDH79GWEFhMyqqbXoWhKp_qrKc.roa
File: aNDH79GWEFhMyqqbXoWhKp_qrKc.roa (raw, json)
Hash identifier: aKCP0CmfZOIiA5HqKrlX+H/UGghLfWcBA6fa9kHxF14=
Subject key identifier: 68:D0:C7:EF:D1:96:10:58:4C:CA:AA:9B:5E:85:A1:2A:9F:EA:AC:A7
Certificate issuer: /CN=D6DD0B467EE8D75B15146628C991AC3140558F94
Certificate serial: 0FAE
Authority key identifier: D6:DD:0B:46:7E:E8:D7:5B:15:14:66:28:C9:91:AC:31:40:55:8F:94
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/aNDH79GWEFhMyqqbXoWhKp_qrKc.roa
Signing time: Fri 19 May 2023 05:53:18 +0000
ROA not before: Fri 19 May 2023 05:53:18 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 56005
IP address blocks: 103.22.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4014 (0xfae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6DD0B467EE8D75B15146628C991AC3140558F94
Validity
Not Before: May 19 05:53:18 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=68D0C7EFD19610584CCAAA9B5E85A12A9FEAACA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:44:77:92:60:98:52:37:55:98:e0:8d:d8:8b:
a9:49:e8:d7:01:d8:6c:ea:40:ab:29:0b:cc:2d:ac:
67:1c:f8:8c:c2:4f:47:cf:6c:34:b7:1a:6c:ae:93:
a1:47:13:28:07:30:75:f6:a3:1e:3e:b5:42:a2:3b:
00:39:21:59:26:9b:52:12:27:8e:38:4d:ad:7e:87:
f2:4a:b2:4d:8e:d7:7c:c7:ba:59:96:4c:af:dd:67:
49:d7:3e:e3:ee:67:f8:99:b8:57:69:4d:20:4a:c1:
84:15:ba:ea:ac:6b:e6:57:ca:31:85:45:1f:eb:b8:
d9:64:87:a3:f0:a8:44:ce:a6:23:ef:80:58:0e:cf:
c1:4a:cb:a1:f1:d6:30:fd:da:8e:22:50:80:aa:ac:
b4:53:7a:5a:c5:fd:ba:a6:8d:d8:e9:8b:e3:f7:b9:
6c:91:0e:7e:24:ed:11:a3:25:2e:fc:39:9f:78:f9:
cc:15:c6:2c:56:ff:75:16:76:d9:a7:ce:73:ed:69:
8a:dd:5e:c8:d1:c8:ab:fa:a9:c7:49:78:81:80:19:
f8:62:09:cb:42:50:77:c5:5f:91:78:e6:7f:88:f7:
d0:2a:14:42:11:3a:a8:a2:da:3e:80:e3:8e:76:97:
94:66:00:94:c4:22:e5:75:83:39:37:95:48:8b:f7:
d9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D0:C7:EF:D1:96:10:58:4C:CA:AA:9B:5E:85:A1:2A:9F:EA:AC:A7
X509v3 Authority Key Identifier:
keyid:D6:DD:0B:46:7E:E8:D7:5B:15:14:66:28:C9:91:AC:31:40:55:8F:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/aNDH79GWEFhMyqqbXoWhKp_qrKc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.22.188.0/24
Signature Algorithm: sha256WithRSAEncryption
48:94:5b:f0:24:0a:1e:e1:c5:ec:17:c7:db:51:9b:99:8a:7f:
db:94:c9:c3:94:7b:ea:d4:ba:c3:0c:73:f6:35:4f:a9:17:f1:
c9:a4:8d:b9:cd:18:27:19:01:f1:f1:50:89:24:0d:91:fe:16:
6d:8f:53:f4:4d:43:1a:3b:c5:1d:2e:f2:5f:29:d8:7f:40:71:
04:6b:ba:1e:20:cc:69:8c:9e:0a:28:bb:b0:40:ab:97:c7:f2:
e7:e9:93:0c:e5:2a:39:d2:b0:a4:fc:21:1f:da:23:d3:b3:05:
47:ca:7e:21:85:52:06:20:28:20:e7:71:dd:5b:8f:da:b4:43:
91:d0:73:45:d5:64:81:7f:80:13:4e:81:56:8c:d7:b7:fa:e0:
07:02:b2:7f:2b:91:d3:32:50:4f:63:12:ed:53:2a:3d:d2:96:
5c:c1:9c:08:7e:d7:80:3e:30:70:3f:89:93:28:43:70:3a:94:
8d:bd:4b:d8:43:03:90:43:5e:4f:45:4c:26:b8:55:52:ce:53:
82:45:5d:dc:0e:32:91:7b:c8:39:b9:d1:28:a1:c2:d7:a6:5c:
23:94:00:96:63:dd:93:4b:96:47:e2:8d:60:1d:f9:c1:f2:3c:
24:06:a5:bc:f6:89:84:87:c6:68:26:0b:c3:f9:ef:af:a9:b7:
b6:a4:38:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org