Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2841/Z2WxKXSxH3C26MEeAtBm1dYKADk.roa
File: Z2WxKXSxH3C26MEeAtBm1dYKADk.roa (raw, json)
Hash identifier: szaPp6HEyaxgq5QuGWUrKEmsCHag0x88JzQWPYcromY=
Subject key identifier: 67:65:B1:29:74:B1:1F:70:B6:E8:C1:1E:02:D0:66:D5:D6:0A:00:39
Certificate issuer: /CN=51A5666D323BF842F6044CE71059773E2271B013
Certificate serial: 15CA
Authority key identifier: 51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/Z2WxKXSxH3C26MEeAtBm1dYKADk.roa
Signing time: Wed 13 Mar 2024 01:22:43 +0000
ROA not before: Wed 13 Mar 2024 01:22:43 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 137571
IP address blocks: 103.126.101.0/24 maxlen: 24
103.126.102.0/24 maxlen: 24
103.126.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5578 (0x15ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51A5666D323BF842F6044CE71059773E2271B013
Validity
Not Before: Mar 13 01:22:43 2024 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=6765B12974B11F70B6E8C11E02D066D5D60A0039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:42:d5:36:34:46:a0:80:26:de:ee:ec:5d:10:
94:8f:5b:5c:c4:69:b0:07:0a:83:0d:77:79:64:99:
9d:f8:41:ec:ec:b2:1b:6a:a9:06:fb:87:99:6e:d8:
46:96:df:01:6e:b3:dc:83:4a:38:46:c7:0f:21:89:
d3:b6:85:dd:46:7a:a8:47:be:b7:31:d6:c7:6e:5e:
3f:05:cc:75:ca:10:5c:98:8b:3e:16:e2:84:9a:b2:
f3:6c:19:61:e1:8c:bf:52:bf:b7:11:44:a6:fb:db:
cd:d0:69:85:62:ff:bc:79:2a:b2:10:70:15:eb:c2:
f1:06:43:6e:1c:a9:fd:47:93:82:43:8a:65:97:38:
8f:37:85:6f:d4:3c:0d:5f:ff:0f:56:8f:4f:d6:9f:
26:0b:ac:9f:79:fe:56:15:e1:8b:6a:ca:59:bb:3a:
81:a7:f4:29:e6:01:ef:59:f7:c1:e6:67:b5:6e:34:
37:67:9a:e1:80:39:52:09:01:bf:02:79:10:6e:6c:
ef:36:7a:a9:a1:21:60:32:4d:74:97:71:dc:81:25:
87:7a:fa:8d:5d:3a:2f:61:b7:c9:d9:95:85:10:56:
41:d5:6f:c4:e7:67:e8:83:cd:6c:33:b5:68:2a:82:
fb:51:bc:d8:d3:9b:fe:11:27:c6:42:05:63:05:23:
9e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:65:B1:29:74:B1:1F:70:B6:E8:C1:1E:02:D0:66:D5:D6:0A:00:39
X509v3 Authority Key Identifier:
keyid:51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/Z2WxKXSxH3C26MEeAtBm1dYKADk.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.101.0-103.126.103.255
Signature Algorithm: sha256WithRSAEncryption
88:fb:58:76:2c:45:8f:97:ab:b7:b8:d2:2c:5d:d6:6f:2a:8f:
0a:57:4a:7c:46:12:92:69:fb:22:82:99:cd:43:fe:0a:7a:ff:
1b:61:70:29:91:77:fe:70:73:b5:d2:f8:7b:d0:ad:75:a6:78:
e8:91:b2:34:d0:0c:31:2f:58:d4:75:f2:31:ea:ae:24:ac:e1:
0d:9d:4a:d5:78:2d:a3:a3:fd:12:79:c3:6e:de:0d:32:49:de:
9b:9b:42:7b:98:f3:35:b5:90:60:2d:3e:87:73:a3:1d:13:01:
0a:0f:b3:44:f4:c1:f1:98:f9:4c:bf:eb:da:1e:c4:4d:72:da:
b3:fe:5d:75:98:ad:5a:29:bd:8e:27:2b:3b:18:b6:91:3e:6d:
8e:fd:7d:96:fa:16:7e:8a:8d:b0:63:c0:63:69:6d:16:48:c5:
6d:3e:14:53:1e:97:89:58:c8:04:23:66:12:c5:62:1b:82:5c:
a0:e7:73:4f:d1:95:4a:5c:02:6d:5e:db:4d:0e:10:cf:2e:6c:
0c:bc:fb:1b:49:70:71:4f:07:c4:8e:8b:f7:7b:91:5c:80:73:
4e:9a:33:6f:d1:71:18:4c:1f:4e:9e:8c:ce:9c:8d:b9:fb:6a:
b4:64:91:0b:19:5a:c5:5e:25:cb:41:33:2a:c9:71:48:f5:5d:
e5:92:94:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 01:46:28 2024 by rpki-client on console-fra.rpki-client.org