Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2793/j3U2X8ba4kk0TeYytPZkNGePE7U.roa
File: j3U2X8ba4kk0TeYytPZkNGePE7U.roa (raw, json)
Hash identifier: 86KgWsjLsT7DdOpAlFyduXW/il4pUyrO4Xl006T5+nE=
Subject key identifier: 8F:75:36:5F:C6:DA:E2:49:34:4D:E6:32:B4:F6:64:34:67:8F:13:B5
Certificate issuer: /CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033
Certificate serial: 101B
Authority key identifier: D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/j3U2X8ba4kk0TeYytPZkNGePE7U.roa
Signing time: Tue 23 May 2023 02:55:05 +0000
ROA not before: Tue 23 May 2023 02:55:05 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 38344
IP address blocks: 103.9.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4123 (0x101b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033
Validity
Not Before: May 23 02:55:05 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=8F75365FC6DAE249344DE632B4F66434678F13B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:21:36:a8:c7:02:a0:00:d7:eb:f7:ac:57:fd:
de:b0:43:c3:04:bc:70:69:5b:01:90:0c:30:b6:1f:
5c:e8:61:d1:22:18:5a:f7:4f:e4:e3:44:d2:42:8c:
27:ff:92:97:9c:f7:17:73:66:76:16:bd:6b:54:cf:
84:cb:7f:29:e6:d7:68:fd:f0:fe:e4:52:f5:a7:23:
a0:ad:cf:97:b1:35:02:18:e8:6a:78:45:50:16:af:
6d:c0:5b:b5:26:41:08:19:2a:1d:7b:91:ea:2b:d3:
66:33:db:13:69:e6:cb:4b:7a:72:96:55:c9:59:8a:
e1:26:f7:62:51:98:52:1b:51:2a:25:39:86:11:7d:
b9:92:ee:71:60:d9:36:45:f3:fc:8b:b9:a0:08:a6:
07:29:83:54:5c:ae:93:00:57:22:25:05:ae:51:73:
64:b2:55:73:25:a4:c0:40:2c:3e:62:57:a1:6f:8e:
f3:16:5c:8f:f1:17:58:67:a1:7a:12:07:35:08:86:
8b:95:3c:5c:51:42:df:8f:87:62:09:13:9c:58:ab:
d9:85:b7:5e:70:79:43:f4:68:65:10:42:5c:c0:60:
c8:af:77:c5:7d:41:55:58:dd:17:e5:16:55:ce:41:
cb:64:8f:a1:9f:e5:77:97:23:65:89:45:15:3d:fc:
9a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:75:36:5F:C6:DA:E2:49:34:4D:E6:32:B4:F6:64:34:67:8F:13:B5
X509v3 Authority Key Identifier:
keyid:D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/j3U2X8ba4kk0TeYytPZkNGePE7U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.9.152.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d8:c7:72:47:90:ef:67:64:c7:f7:c9:f6:ff:72:00:31:03:
b0:bb:ee:ca:d0:f2:c2:74:01:5b:d3:c6:45:9d:3c:7b:eb:28:
a1:b6:1f:3a:e9:aa:f1:5b:3e:48:76:cd:2a:c5:6c:fc:2c:85:
4f:a1:1b:7e:10:b2:0a:db:a3:9a:38:ac:e2:50:ec:55:e9:11:
c1:88:66:ac:f3:36:2b:8a:6f:ec:99:71:f1:bc:56:bb:ea:27:
7b:7b:f3:78:22:08:ad:c9:d1:fa:68:e0:09:0d:f8:7d:47:07:
0a:ea:83:07:94:76:cc:e8:63:84:b2:28:cf:d9:a6:f3:09:a0:
dd:6b:5f:ed:4d:a5:87:c2:cd:1b:63:11:30:fc:58:48:a2:34:
60:4f:ef:c7:b8:11:56:f3:2d:a4:5c:97:fc:dd:e4:8e:11:7f:
fd:9a:ee:ad:47:a6:ac:9e:ea:59:20:49:4b:e4:e3:3f:62:4d:
ae:4b:c6:49:0b:b5:1e:11:8e:3f:79:c3:84:8c:02:85:80:f6:
12:b8:74:a4:50:0f:03:52:1f:c1:1c:af:e7:4d:6d:e8:0d:a2:
41:2d:f6:ee:48:67:5e:42:e9:c1:8e:96:a3:a1:16:70:e0:9a:
7c:5f:de:2c:18:8b:49:28:d3:fa:75:f6:ee:4f:54:23:20:cb:
94:28:8b:16
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICEBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDZD
NUMxOENDRTYwMzA3MzBCQzIyMkFCMTdGNEUzRDhGMTYwMzAzMzAeFw0yMzA1MjMw
MjU1MDVaFw0yNDAzMjcwMTEzMTBaMDMxMTAvBgNVBAMTKDhGNzUzNjVGQzZEQUUy
NDkzNDRERTYzMkI0RjY2NDM0Njc4RjEzQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbITaoxwKgANfr96xX/d6wQ8MEvHBpWwGQDDC2H1zoYdEiGFr3
T+TjRNJCjCf/kpec9xdzZnYWvWtUz4TLfynm12j98P7kUvWnI6Ctz5exNQIY6Gp4
RVAWr23AW7UmQQgZKh17keor02Yz2xNp5stLenKWVclZiuEm92JRmFIbUSolOYYR
fbmS7nFg2TZF8/yLuaAIpgcpg1RcrpMAVyIlBa5Rc2SyVXMlpMBALD5iV6FvjvMW
XI/xF1hnoXoSBzUIhouVPFxRQt+Ph2IJE5xYq9mFt15weUP0aGUQQlzAYMivd8V9
QVVY3RflFlXOQctkj6Gf5XeXI2WJRRU9/Jo1AgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUj3U2X8ba4kk0TeYytPZkNGePE7UwHwYDVR0jBBgwFoAU1sXBjM5gMHMLwiKr
F/Tj2PFgMDMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc5
My8xc1hCak01Z01ITUx3aUtyRl9UajJQRmdNRE0uY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwLzFzWEJqTTVnTUhNTHdpS3JGX1RqMlBGZ01ETS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3OTMvajNVMlg4YmE0a2sw
VGVZeXRQWmtOR2VQRTdVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAGcJmDANBgkqhkiG9w0BAQsFAAOCAQEAcNjHckeQ72dkx/fJ9v9yADEDsLvu
ytDywnQBW9PGRZ08e+soobYfOumq8Vs+SHbNKsVs/CyFT6EbfhCyCtujmjis4lDs
VekRwYhmrPM2K4pv7Jlx8bxWu+one3vzeCIIrcnR+mjgCQ34fUcHCuqDB5R2zOhj
hLIoz9mm8wmg3Wtf7U2lh8LNG2MRMPxYSKI0YE/vx7gRVvMtpFyX/N3kjhF//Zru
rUemrJ7qWSBJS+TjP2JNrkvGSQu1HhGOP3nDhIwChYD2Erh0pFAPA1IfwRyv501t
6A2iQS327khnXkLpwY6Wo6EWcOCafF/eLBiLSSjT+nX27k9UIyDLlCiLFg==
-----END CERTIFICATE-----
Generated at Wed Mar 13 04:11:40 2024 by rpki-client on console-ams.rpki-client.org