Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2823/EFnGg1KDL8UWTfxxABtM0YBWlMw.roa
File: EFnGg1KDL8UWTfxxABtM0YBWlMw.roa (raw, json)
Hash identifier: lcSzTOhqMBnpvkI03wkl0NGYyboCuT/tTlpHG4PhtyQ=
Subject key identifier: 10:59:C6:83:52:83:2F:C5:16:4D:FC:71:00:1B:4C:D1:80:56:94:CC
Certificate issuer: /CN=6647DAB6455116964FAC00012CCC83174D4E46E1
Certificate serial: 06E2
Authority key identifier: 66:47:DA:B6:45:51:16:96:4F:AC:00:01:2C:CC:83:17:4D:4E:46:E1
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZkfatkVRFpZPrAABLMyDF01ORuE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2823/EFnGg1KDL8UWTfxxABtM0YBWlMw.roa
Signing time: Thu 18 May 2023 07:24:26 +0000
ROA not before: Thu 18 May 2023 07:24:26 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 137730
IP address blocks: 2403:d9c0::/48 maxlen: 48
2403:d9c0:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:22:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1762 (0x6e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6647DAB6455116964FAC00012CCC83174D4E46E1
Validity
Not Before: May 18 07:24:26 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=1059C68352832FC5164DFC71001B4CD1805694CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:12:fd:55:75:a8:74:10:d0:5b:88:c6:79:71:
79:f9:47:6f:a9:72:43:57:51:49:a7:30:3e:4c:ce:
93:f3:db:e1:b0:0c:4e:97:06:ff:f7:5a:e4:d1:07:
5a:7a:5e:50:51:e8:cb:bd:e1:32:8c:5b:5e:a0:9b:
ab:58:eb:28:5e:bd:35:07:ef:31:08:fc:07:95:b9:
cc:dc:fb:2a:79:b7:b0:76:4b:4b:36:1b:12:8d:ae:
73:09:b1:ca:17:42:69:20:75:18:98:28:05:1a:74:
8f:0f:d8:2b:9f:f5:f8:b8:79:61:85:eb:b1:b8:f8:
a7:f2:e4:00:a9:82:24:40:66:d6:77:80:08:c5:8b:
f5:0b:14:ac:df:47:8b:f6:a5:f0:93:40:78:d6:ac:
15:96:97:b2:76:74:a6:07:21:3a:41:e9:9e:4a:24:
07:86:84:d7:b6:4c:c9:2b:e8:8e:bd:28:c6:c9:d2:
e9:b3:96:21:94:e1:bf:d6:aa:17:ad:08:ce:05:2e:
b3:a0:73:c2:91:5c:6f:e6:fd:10:53:ce:11:42:01:
97:92:93:a0:4f:62:fc:4d:8e:17:92:38:29:70:ac:
3d:35:80:40:35:5a:cc:cb:8f:e4:a7:3f:aa:b5:6d:
e6:c9:eb:57:a3:12:7a:a8:ec:a6:24:d0:2f:91:69:
f8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:59:C6:83:52:83:2F:C5:16:4D:FC:71:00:1B:4C:D1:80:56:94:CC
X509v3 Authority Key Identifier:
keyid:66:47:DA:B6:45:51:16:96:4F:AC:00:01:2C:CC:83:17:4D:4E:46:E1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2823/ZkfatkVRFpZPrAABLMyDF01ORuE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ZkfatkVRFpZPrAABLMyDF01ORuE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2823/EFnGg1KDL8UWTfxxABtM0YBWlMw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:d9c0::/48
2403:d9c0:2::/48
Signature Algorithm: sha256WithRSAEncryption
75:50:9f:c4:2f:d7:1e:18:7f:34:47:c6:2d:ea:3a:79:65:65:
41:b3:25:8b:91:4c:df:a1:06:f7:e6:12:48:cf:ac:5a:b0:9f:
0d:82:9f:06:05:8f:ca:77:0b:13:b8:1f:03:cf:2c:60:4a:9a:
74:1f:d2:e9:12:aa:c2:fa:2a:c1:27:c7:71:b3:07:d6:e2:99:
ca:da:23:78:0b:7d:bf:58:0b:e4:e8:f0:ae:2e:d2:0e:08:e1:
71:c6:fc:3c:85:a1:eb:f0:3f:7b:13:e0:1c:1e:ba:03:a2:5a:
63:84:ad:29:d0:ff:79:90:20:60:e5:fc:ff:f9:52:50:48:6f:
77:95:96:c4:0f:8a:33:46:84:8c:31:33:90:13:4f:e3:a7:b9:
df:27:6a:6a:fb:a2:f1:d4:4e:87:6e:a8:1b:67:20:8b:fd:76:
07:2e:4e:4f:3a:d2:7c:ab:ad:37:c9:34:df:5a:9e:eb:46:f1:
48:40:1c:b5:4f:28:69:f8:56:80:c4:8d:a2:0a:83:59:8e:01:
e4:62:cc:c4:b7:ab:3f:b4:79:74:62:64:ca:6e:d4:55:ac:e7:
8d:f0:c6:64:bb:81:77:54:b4:6e:27:81:30:11:cd:5f:aa:b4:
a3:04:82:58:b0:a7:02:51:5f:ce:1b:83:36:44:c2:b1:5f:f4:
f9:d0:aa:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org