Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2889/eDlA5NMqlrjlWUsYXgj2qz36r8I.roa
File: eDlA5NMqlrjlWUsYXgj2qz36r8I.roa (raw, json)
Hash identifier: jTW1DEoKIyrs2c5zbp1aRTqYHuZJwRGPNox48my0OeQ=
Subject key identifier: 78:39:40:E4:D3:2A:96:B8:E5:59:4B:18:5E:08:F6:AB:3D:FA:AF:C2
Certificate issuer: /CN=A93A86712684A72E5DF41F00AFA04C5F01A97735
Certificate serial: 11B3
Authority key identifier: A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/eDlA5NMqlrjlWUsYXgj2qz36r8I.roa
Signing time: Mon 14 Aug 2023 04:34:37 +0000
ROA not before: Mon 14 Aug 2023 04:34:37 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 139021
IP address blocks: 103.139.0.0/23 maxlen: 23
218.247.84.0/23 maxlen: 23
218.247.86.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 24 May 2024 02:25:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4531 (0x11b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A93A86712684A72E5DF41F00AFA04C5F01A97735
Validity
Not Before: Aug 14 04:34:37 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=783940E4D32A96B8E5594B185E08F6AB3DFAAFC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:89:a2:e9:48:d7:6f:53:8e:e7:a5:aa:fd:3c:
12:39:39:a6:c3:cc:65:73:da:47:d8:7e:de:68:24:
12:8c:fa:5b:84:ef:86:42:9a:00:0b:af:b3:fb:c6:
c4:f3:94:d0:6c:13:05:36:12:89:7b:c0:d4:4a:77:
db:76:7b:63:44:fb:51:2d:88:d9:27:f2:81:db:92:
5f:c3:62:15:7e:42:22:63:54:6b:7a:ab:5a:8b:8b:
0e:a0:cc:de:aa:30:8d:21:0e:72:3d:7d:d7:ce:ae:
38:ec:3e:e1:ee:e8:38:15:07:c5:38:d1:f3:8e:89:
7b:d0:3a:b1:f2:5c:f4:48:71:e9:1e:6d:66:d5:7b:
29:6d:1d:ed:cb:e0:4d:12:59:33:0c:ca:80:e6:85:
d2:74:a6:8d:4b:d0:a4:27:56:e9:bb:c4:8b:7a:67:
4c:fb:b6:ae:83:b5:a6:67:01:55:f1:44:ea:f6:2a:
38:63:40:be:04:44:91:49:32:b1:ca:dd:a2:99:2a:
a9:58:00:f9:de:e7:c7:d9:c3:cc:8f:a1:8d:f4:3f:
00:ea:25:84:9b:5d:fa:80:8e:d1:7e:41:f4:7c:67:
27:70:00:19:c0:98:2e:e0:1a:6b:64:6f:a5:32:b4:
85:d4:d5:9c:a0:62:98:37:de:ea:d8:83:28:91:42:
7f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:39:40:E4:D3:2A:96:B8:E5:59:4B:18:5E:08:F6:AB:3D:FA:AF:C2
X509v3 Authority Key Identifier:
keyid:A9:3A:86:71:26:84:A7:2E:5D:F4:1F:00:AF:A0:4C:5F:01:A9:77:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qTqGcSaEpy5d9B8Ar6BMXwGpdzU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2889/eDlA5NMqlrjlWUsYXgj2qz36r8I.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.0.0/23
218.247.84.0/22
Signature Algorithm: sha256WithRSAEncryption
38:42:d5:91:0d:c8:e8:c2:7c:35:b0:48:dd:a7:93:37:2e:87:
b3:4b:8e:0d:f9:68:7e:05:af:ea:95:94:d7:2e:b5:dc:af:3f:
dd:79:ce:6c:c4:9f:b5:e8:aa:89:ea:ac:75:7f:f7:62:b1:aa:
77:34:e1:b2:21:f4:1c:2d:ab:4a:cc:da:bd:2c:64:7e:a0:55:
e4:6e:a3:f5:e2:69:db:44:86:29:03:a2:21:3e:f7:43:cd:0c:
a6:6f:7b:f2:6e:03:76:5a:cf:72:d3:d2:ca:12:79:7c:36:96:
fe:fd:75:81:e1:7a:b9:2a:0a:3a:92:7a:b4:01:25:04:75:6e:
86:bf:31:bf:8b:f3:c9:62:f4:f7:82:35:52:db:49:e9:56:e5:
65:f3:96:cf:c6:47:ff:0e:00:23:72:5a:d6:9b:f3:5e:d9:a7:
4f:8d:61:05:ad:61:bc:90:32:4a:4c:de:7c:9c:80:aa:4c:0f:
15:85:d7:62:20:33:32:98:73:29:da:d5:ed:1f:d1:f7:f9:2b:
c1:23:d9:94:dd:eb:9e:59:72:a5:e4:70:15:3a:55:5e:fd:e4:
81:cc:bb:3e:4f:ab:72:f0:fc:45:1d:11:46:43:0f:42:fe:a3:
c0:d2:fb:31:d0:71:db:e4:1d:3d:aa:4f:00:57:0e:d3:ad:9f:
56:61:cb:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:54:56 2024 by rpki-client on console-fra.rpki-client.org