Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2889/9o12nL6NotC1vdXRDAxMqsax7f4.roa
File: 9o12nL6NotC1vdXRDAxMqsax7f4.roa (raw, json)
Hash identifier: BDAGc3zyk1qD7RgR08vZaYFv0oVdsRXr4ou9ljKsC0s=
Subject key identifier: F6:8D:76:9C:BE:8D:A2:D0:B5:BD:D5:D1:0C:0C:4C:AA:C6:B1:ED:FE
Certificate issuer: /CN=A93A86712684A72E5DF41F00AFA04C5F01A97735
Certificate serial: 11B1
Authority key identifier: A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/9o12nL6NotC1vdXRDAxMqsax7f4.roa
Signing time: Mon 14 Aug 2023 04:34:36 +0000
ROA not before: Mon 14 Aug 2023 04:34:36 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 139021
IP address blocks: 218.247.88.0/21 maxlen: 21
219.234.16.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 24 May 2024 02:25:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4529 (0x11b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A93A86712684A72E5DF41F00AFA04C5F01A97735
Validity
Not Before: Aug 14 04:34:36 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=F68D769CBE8DA2D0B5BDD5D10C0C4CAAC6B1EDFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:32:67:49:68:0f:c8:26:af:7a:c9:9a:48:00:
e0:17:d5:a3:f6:eb:8e:0d:41:23:40:fe:70:b3:ff:
93:b9:d4:28:80:6d:04:b9:27:9a:c7:4a:2c:22:2d:
ba:38:08:26:99:39:b0:af:6b:6a:db:36:a5:66:a7:
c9:3f:8a:65:ff:9c:98:bc:7d:02:7a:ea:c0:72:61:
f0:e5:95:9c:51:ef:5e:19:b7:2c:46:a3:c1:9d:ea:
b4:b8:c5:a3:fd:82:cb:5c:a1:71:bf:1a:46:88:78:
e9:31:74:b4:46:e9:42:e6:c8:58:cb:17:bb:09:83:
c7:ac:96:3e:52:b5:8b:d7:60:41:75:38:63:e4:28:
4b:66:db:dc:d1:70:a3:95:eb:6f:74:4a:ec:87:21:
ac:f5:1b:7c:17:e7:53:1e:c6:e9:93:b9:d7:56:f4:
5b:da:be:c2:e5:f7:99:e1:9e:29:66:a5:2d:8b:33:
8f:a5:63:71:d3:6e:b2:58:a8:bd:0c:a3:fb:a5:e5:
83:6a:44:ad:28:41:c1:49:ae:dd:f3:66:05:eb:96:
5d:62:90:3e:4f:06:36:e7:11:0d:5b:a4:27:37:3d:
b6:25:14:16:c9:4b:10:ff:54:bd:ad:bc:5e:64:78:
d3:36:b5:ad:bc:96:3a:ed:21:af:64:69:f3:fe:45:
ab:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8D:76:9C:BE:8D:A2:D0:B5:BD:D5:D1:0C:0C:4C:AA:C6:B1:ED:FE
X509v3 Authority Key Identifier:
keyid:A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/9o12nL6NotC1vdXRDAxMqsax7f4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.247.88.0/21
219.234.16.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:11:01:21:5f:b7:f5:9c:2c:b3:44:9e:55:40:64:6c:bd:e9:
75:eb:5d:66:90:ae:ba:19:d7:5c:8b:30:1a:0a:9a:77:d5:f5:
88:85:f3:44:50:e1:ed:33:26:be:31:b2:9a:47:4f:8c:84:8c:
cf:7b:cf:3f:42:fc:19:0e:46:03:b7:a7:95:4c:cc:62:d3:c0:
0f:dc:95:a8:d9:e7:4e:57:90:8f:50:52:3f:4a:ec:a9:39:01:
f0:47:d9:87:12:5a:9e:d9:21:f8:ac:e5:00:75:fa:d8:96:5c:
5a:e8:fd:d6:0d:a8:7f:48:1e:4a:fa:c1:9a:cf:e3:c1:9c:4b:
9d:26:75:89:b5:93:3d:6c:31:95:7a:f0:62:38:7e:aa:31:fb:
8b:ef:2e:c7:7f:06:e9:62:41:aa:6f:53:63:ca:c7:13:5a:2a:
90:6e:e7:bd:5b:51:53:7d:72:c8:7a:02:53:d2:f1:26:6f:ab:
78:36:39:29:bc:fd:0f:95:f9:93:41:c6:08:c0:22:bb:62:e7:
9e:4d:68:95:71:73:b1:1c:e6:ae:34:05:b5:b7:83:5f:11:c4:
bd:be:89:73:21:02:b9:38:62:07:9b:d0:1d:4c:29:5f:b7:06:
3a:8d:46:80:ed:e7:9f:9d:df:e4:6f:f9:c6:cc:35:0b:6e:17:
f4:e6:82:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 04:47:34 2024 by rpki-client on console-ams.rpki-client.org