Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2988/a89Ipz32bpQBZpEh64-Loi0JRYc.roa
File: a89Ipz32bpQBZpEh64-Loi0JRYc.roa (raw, json)
Hash identifier: B7rIcTAz1LjizoqVxa8yBvazcE30mbfuBXj+HnthGzQ=
Subject key identifier: 6B:CF:48:A7:3D:F6:6E:94:01:66:91:21:EB:8F:8B:A2:2D:09:45:87
Certificate issuer: /CN=012D4317BCA1660F88066F890F8C04AF557000CB
Certificate serial: 1617
Authority key identifier: 01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/a89Ipz32bpQBZpEh64-Loi0JRYc.roa
Signing time: Fri 19 May 2023 05:54:54 +0000
ROA not before: Fri 19 May 2023 05:54:54 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 139139
IP address blocks: 2406:3340::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:23:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5655 (0x1617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=012D4317BCA1660F88066F890F8C04AF557000CB
Validity
Not Before: May 19 05:54:54 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=6BCF48A73DF66E9401669121EB8F8BA22D094587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:14:31:51:f2:25:fc:b9:d5:1f:ba:c7:f4:f2:
60:7d:d8:11:77:e7:dd:82:40:ee:97:06:2d:69:14:
f5:1b:9f:66:05:24:56:07:81:51:3f:af:cd:5c:f8:
4d:31:da:17:c5:9f:dd:b9:53:f3:4e:81:91:6d:a5:
e3:5c:a6:1f:47:5d:06:c9:f1:76:bd:8c:6f:ca:f4:
a5:1b:ff:95:53:12:40:eb:c7:d4:f8:29:b8:62:93:
ae:7c:39:60:20:98:14:e4:a4:b8:73:96:19:6b:6c:
d8:61:c5:95:33:38:53:54:f1:b7:04:a1:90:cc:ea:
09:80:4a:7a:10:d7:13:93:3b:73:65:4b:b3:64:9b:
8b:90:1e:79:e6:00:3e:e6:fd:78:4e:d0:35:ba:6f:
d5:e6:3f:3a:8a:8a:cc:f7:97:a8:47:21:71:92:38:
57:7e:6c:ce:a2:67:f3:41:cd:b9:90:a5:11:c0:04:
61:51:01:1d:0c:b5:63:8d:e7:4d:da:f6:88:53:e3:
2c:3f:9c:9c:0a:5d:45:3c:28:72:82:bd:31:00:99:
bc:5c:13:d4:3c:a1:53:75:be:6e:8e:dc:95:68:e8:
ae:1f:85:40:c3:b5:75:17:9f:10:81:53:a1:dd:45:
e1:64:7a:a2:3a:29:33:c0:19:ed:4d:5a:44:8f:86:
18:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CF:48:A7:3D:F6:6E:94:01:66:91:21:EB:8F:8B:A2:2D:09:45:87
X509v3 Authority Key Identifier:
keyid:01:2D:43:17:BC:A1:66:0F:88:06:6F:89:0F:8C:04:AF:55:70:00:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/AS1DF7yhZg-IBm-JD4wEr1VwAMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AS1DF7yhZg-IBm-JD4wEr1VwAMs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2988/a89Ipz32bpQBZpEh64-Loi0JRYc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:3340::/32
Signature Algorithm: sha256WithRSAEncryption
56:d4:59:7c:a2:4c:70:e0:91:c9:3a:7e:3e:17:75:64:a4:f4:
2b:fa:a0:6e:bf:b9:83:4c:f5:8b:cf:6f:21:7d:40:94:7b:40:
bd:51:fb:17:3f:20:79:6f:6f:d1:c3:2a:06:c6:5d:fe:ac:9b:
3e:d2:d3:5e:4a:ae:40:e7:76:9d:10:e6:51:58:b9:da:dc:8a:
49:a3:f2:0e:a5:e1:97:9d:f2:7e:42:4b:d2:fa:02:c3:3c:19:
9e:08:26:b2:b5:97:29:8c:3d:dd:33:6b:43:35:ee:5b:c6:65:
18:53:e0:d2:b7:76:be:e7:d7:fb:bf:22:dd:e8:33:59:0d:c6:
15:88:a2:62:80:4c:9e:9b:03:3f:8d:10:b1:36:f2:7d:95:d2:
4c:05:8d:5b:e2:05:7a:6c:dd:bb:2d:56:ef:f0:cd:95:f6:28:
30:4c:8d:a8:67:b8:3e:74:f5:22:4c:a0:39:f9:5e:b5:38:b0:
3b:ec:71:0e:46:33:3b:f9:5e:34:61:27:1f:22:2f:22:f6:ff:
68:f6:87:4e:89:6f:ce:99:26:91:e4:87:e3:49:7e:50:cc:3d:
83:95:fa:c9:6e:3f:a1:98:b9:77:a1:74:df:08:34:b2:7a:ef:
0a:87:53:dd:55:6b:f0:7a:e0:4d:d8:e1:34:ae:05:70:a3:e8:
99:af:e5:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org