Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2967/krHvuFRCttnQJKTh32UNQU8oJwE.roa
File: krHvuFRCttnQJKTh32UNQU8oJwE.roa (raw, json)
Hash identifier: dw4bgM4Z2cVOymcT0667vrETzJLYB3KZYQO7SqPcZUY=
Subject key identifier: 92:B1:EF:B8:54:42:B6:D9:D0:24:A4:E1:DF:65:0D:41:4F:28:27:01
Certificate issuer: /CN=0AB6F528865292E198F98B68B72D98D130AF532E
Certificate serial: 06E2
Authority key identifier: 0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/krHvuFRCttnQJKTh32UNQU8oJwE.roa
Signing time: Thu 18 May 2023 07:24:40 +0000
ROA not before: Thu 18 May 2023 07:24:40 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 131530
IP address blocks: 103.150.130.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:22:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1762 (0x6e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AB6F528865292E198F98B68B72D98D130AF532E
Validity
Not Before: May 18 07:24:40 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=92B1EFB85442B6D9D024A4E1DF650D414F282701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:56:29:73:58:8d:ee:a6:b7:ae:58:58:b0:63:
e3:96:03:d7:74:24:ef:04:20:da:ff:34:a4:1b:7a:
c6:49:ee:ec:be:e9:33:06:54:74:9d:0a:7d:a6:89:
2b:29:8a:87:f3:e2:77:9f:23:1a:f3:34:1a:21:8d:
ab:79:e2:80:f8:32:2b:51:fa:53:67:b8:4a:a6:f1:
54:aa:cd:0b:80:f1:34:08:4f:8a:e7:52:c2:19:98:
73:da:bb:7e:e1:dd:b6:98:97:41:61:51:ed:ce:28:
e0:0e:db:dc:9c:57:91:ca:eb:b6:55:5d:9a:2f:2d:
1d:fe:f6:f0:57:16:88:58:4d:9b:7b:d9:a3:eb:62:
0b:eb:c8:43:79:1b:08:1f:2a:43:76:36:0b:54:5b:
e2:d5:00:b5:5c:37:af:ef:36:99:41:4d:93:81:66:
7f:98:58:03:53:6b:dd:48:c0:d5:69:68:6b:69:66:
33:dd:8b:4b:3d:59:96:c0:6b:f8:5c:5a:69:ec:34:
cb:bd:c5:c9:73:2e:cc:01:71:ae:8f:02:fe:43:9a:
7b:b4:5d:ca:fe:ce:dc:f0:be:b8:d6:7e:05:8a:98:
5d:d5:20:d4:ff:c1:ec:bd:b6:d2:64:73:a6:aa:c6:
b4:f4:e6:0d:dd:5f:23:66:ce:9a:fc:64:28:ef:e9:
ef:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B1:EF:B8:54:42:B6:D9:D0:24:A4:E1:DF:65:0D:41:4F:28:27:01
X509v3 Authority Key Identifier:
keyid:0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/krHvuFRCttnQJKTh32UNQU8oJwE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.130.0/23
Signature Algorithm: sha256WithRSAEncryption
24:14:e5:1b:6d:9d:35:d1:08:81:d9:a2:bb:62:e9:80:c9:a8:
58:a3:1e:39:92:7c:06:71:6c:f7:ba:d0:e0:0d:53:16:e4:0b:
68:eb:a8:82:03:79:7f:c4:41:c8:2f:d6:d1:4c:87:10:71:f6:
6d:ed:3d:84:ea:cf:e2:73:3d:92:e5:05:27:97:0c:0a:81:19:
24:24:a6:73:4e:fb:4c:1d:ee:2a:f7:01:c5:ec:15:6b:05:d4:
6b:e8:8a:68:61:06:e0:50:9d:aa:cd:fa:44:e0:dc:c0:ee:98:
76:bd:39:f7:9d:8a:b8:19:31:9e:ec:50:01:df:99:2f:8e:46:
ab:33:59:63:42:d8:f4:68:3d:f0:ee:82:7e:35:17:25:dd:b1:
d7:98:bd:90:b6:e6:8c:5c:da:81:19:a7:44:b2:85:b4:bb:94:
14:2e:ba:40:0e:47:57:0b:8a:00:44:24:63:45:75:35:d6:d3:
56:f5:33:a0:db:a4:a0:b6:73:fe:b1:84:2d:60:f1:64:05:2c:
08:e3:d9:9e:c2:6d:8d:6c:28:2c:00:79:57:8c:45:f7:0d:74:
71:57:1b:1b:b9:29:a1:f4:65:1c:5d:7b:f0:d1:59:55:0f:49:
96:7c:eb:1a:2a:35:09:4a:b8:82:d1:a5:a2:5b:b2:57:ee:13:
06:97:d0:c6
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICBuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEFC
NkY1Mjg4NjUyOTJFMTk4Rjk4QjY4QjcyRDk4RDEzMEFGNTMyRTAeFw0yMzA1MTgw
NzI0NDBaFw0yNDAzMjcwMTEzMTBaMDMxMTAvBgNVBAMTKDkyQjFFRkI4NTQ0MkI2
RDlEMDI0QTRFMURGNjUwRDQxNEYyODI3MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKVilzWI3upreuWFiwY+OWA9d0JO8EINr/NKQbesZJ7uy+6TMG
VHSdCn2miSspiofz4nefIxrzNBohjat54oD4MitR+lNnuEqm8VSqzQuA8TQIT4rn
UsIZmHPau37h3baYl0FhUe3OKOAO29ycV5HK67ZVXZovLR3+9vBXFohYTZt72aPr
YgvryEN5GwgfKkN2NgtUW+LVALVcN6/vNplBTZOBZn+YWANTa91IwNVpaGtpZjPd
i0s9WZbAa/hcWmnsNMu9xclzLswBca6PAv5Dmnu0Xcr+ztzwvrjWfgWKmF3VINT/
wey9ttJkc6aqxrT05g3dXyNmzpr8ZCjv6e+XAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUkrHvuFRCttnQJKTh32UNQU8oJwEwHwYDVR0jBBgwFoAUCrb1KIZSkuGY+Yto
ty2Y0TCvUy4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk2
Ny9DcmIxS0laU2t1R1ktWXRvdHkyWTBUQ3ZVeTQuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0NyYjFLSVpTa3VHWS1ZdG90eTJZMFRDdlV5NC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5Njcva3JIdnVGUkN0dG5R
SktUaDMyVU5RVThvSndFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAWeWgjANBgkqhkiG9w0BAQsFAAOCAQEAJBTlG22dNdEIgdmiu2LpgMmoWKMe
OZJ8BnFs97rQ4A1TFuQLaOuoggN5f8RByC/W0UyHEHH2be09hOrP4nM9kuUFJ5cM
CoEZJCSmc077TB3uKvcBxewVawXUa+iKaGEG4FCdqs36RODcwO6Ydr05952KuBkx
nuxQAd+ZL45GqzNZY0LY9Gg98O6CfjUXJd2x15i9kLbmjFzagRmnRLKFtLuUFC66
QA5HVwuKAEQkY0V1NdbTVvUzoNukoLZz/rGELWDxZAUsCOPZnsJtjWwoLAB5V4xF
9w10cVcbG7kpofRlHF178NFZVQ9JlnzrGio1CUq4gtGloluyV+4TBpfQxg==
-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org