Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2889/JleQMTGa2EQ24uGhg1BETEkce1s.roa
File: JleQMTGa2EQ24uGhg1BETEkce1s.roa (raw, json)
Hash identifier: PaXEjDKAOLEFzneuK0ybxrLAbwETv5kW0qKt6v6DtN0=
Subject key identifier: 26:57:90:31:31:9A:D8:44:36:E2:E1:A1:83:50:44:4C:49:1C:7B:5B
Certificate issuer: /CN=A93A86712684A72E5DF41F00AFA04C5F01A97735
Certificate serial: 11B4
Authority key identifier: A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/JleQMTGa2EQ24uGhg1BETEkce1s.roa
Signing time: Mon 14 Aug 2023 04:34:37 +0000
ROA not before: Mon 14 Aug 2023 04:34:37 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 139021
IP address blocks: 218.247.80.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 24 May 2024 02:25:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4532 (0x11b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A93A86712684A72E5DF41F00AFA04C5F01A97735
Validity
Not Before: Aug 14 04:34:37 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=26579031319AD84436E2E1A18350444C491C7B5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:00:44:dc:2d:66:85:8c:d8:fe:fb:05:40:5c:
9c:2e:c3:06:45:e3:07:8e:38:84:17:81:ed:73:75:
77:da:e3:73:46:2d:7f:fd:d4:da:b2:e9:35:99:e9:
b6:96:83:a4:51:73:59:78:ce:8c:22:6e:c1:b9:e7:
88:5d:70:13:3e:b1:28:70:af:58:e9:9e:9e:0b:67:
21:ea:1e:81:1e:3b:a1:e5:cf:f7:ce:e4:0c:f0:29:
0b:14:00:ce:f8:24:dc:d8:4d:78:61:04:fd:ca:8e:
e0:bd:21:90:31:c8:8e:d0:75:b7:ed:7d:36:b8:c2:
ed:6c:19:cc:b8:1d:81:7f:e0:83:29:bd:1d:fc:c3:
91:1b:c3:a1:21:98:2e:42:c7:4d:59:a2:e2:9d:af:
42:09:e4:b3:df:e2:b2:19:5c:55:94:f0:e8:b3:11:
a1:1f:90:5f:87:97:ad:d7:ce:b8:9a:3f:75:06:bb:
1f:2d:72:f3:a5:0e:91:6e:f8:29:e9:1e:59:18:51:
17:bf:a2:33:d0:c7:27:06:24:ca:45:9d:9a:e3:a8:
1e:e7:7f:67:b2:86:51:21:98:8c:0c:2c:c9:60:10:
02:c9:7f:c0:bb:56:79:32:e7:d3:9e:67:da:a6:00:
b5:86:cf:5b:ec:a9:54:32:9c:71:df:b2:ed:46:d1:
e2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:57:90:31:31:9A:D8:44:36:E2:E1:A1:83:50:44:4C:49:1C:7B:5B
X509v3 Authority Key Identifier:
keyid:A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/JleQMTGa2EQ24uGhg1BETEkce1s.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.247.80.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:dd:f1:11:07:97:62:5c:4a:2e:a5:d0:ee:ee:9c:6d:9b:a0:
7c:d5:26:b2:cf:ae:dc:d8:25:d4:ed:63:9b:1d:a4:56:f3:15:
9b:d2:ea:c6:b8:c8:88:aa:52:8b:13:3e:13:94:51:88:6d:eb:
83:e5:51:0b:0b:2a:54:63:ed:04:e0:32:cb:81:bc:62:5f:9a:
f9:42:0d:a0:5b:93:49:7b:a0:26:0c:65:51:cc:87:97:ee:a2:
04:5f:32:fc:fc:5d:f5:de:3b:7d:24:78:b2:61:62:0f:ff:69:
24:95:f8:26:6c:44:60:ce:b9:3e:ae:43:38:d2:e7:ef:b8:b7:
a7:4a:6e:6a:b8:32:c1:a4:61:c7:c9:c7:50:ec:c1:d8:f5:4b:
cf:33:1c:54:9c:09:46:f3:7b:35:1c:c2:e1:86:39:e3:9c:e4:
19:df:3a:29:3f:e3:c0:4a:52:35:a3:02:57:e4:69:13:b6:70:
82:d0:15:8d:0a:2b:be:7b:10:3c:2e:2b:28:bd:8f:65:d6:19:
d8:31:de:92:af:d9:30:82:c7:9f:89:82:56:e4:dd:09:2d:0e:
de:6d:8b:f8:db:f0:0e:62:89:bb:23:4a:57:91:6f:e7:69:f3:
5b:37:d0:17:9b:db:34:3a:4b:12:c1:8d:bc:09:f0:c8:d5:fc:
1a:9b:35:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 04:47:34 2024 by rpki-client on console-ams.rpki-client.org