Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/sZ07q8X2aE-ervXWJ_wdL1AWYiM.roa
File: sZ07q8X2aE-ervXWJ_wdL1AWYiM.roa (raw, json)
Hash identifier: s8nkL4hwOPpeUg+sIqCcPhYxaQBs3xIvL2eePPlvCBw=
Subject key identifier: B1:9D:3B:AB:C5:F6:68:4F:9E:AE:F5:D6:27:FC:1D:2F:50:16:62:23
Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9
Certificate serial: 0C94
Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/sZ07q8X2aE-ervXWJ_wdL1AWYiM.roa
Signing time: Wed 10 Jul 2024 08:36:53 +0000
ROA not before: Wed 10 Jul 2024 08:36:53 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 136907
IP address blocks: 110.41.90.0/24 maxlen: 24
110.41.208.0/24 maxlen: 24
110.41.209.0/24 maxlen: 24
110.41.210.0/24 maxlen: 24
124.71.250.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 09:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3220 (0xc94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9
Validity
Not Before: Jul 10 08:36:53 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B19D3BABC5F6684F9EAEF5D627FC1D2F50166223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:76:00:12:c3:f6:ff:c3:2f:d5:78:a2:38:89:
0f:74:8f:ea:3c:0a:c6:e5:65:9d:8f:c4:a9:ed:cf:
f6:8c:c8:11:8a:b2:cb:04:ef:7e:1b:72:fd:57:67:
33:39:af:6d:c3:96:02:7d:ae:8f:6f:37:6d:0e:a0:
92:fe:f2:26:89:e3:af:9c:cc:b3:77:b3:09:f5:1b:
51:9a:1b:68:58:2d:4f:32:49:63:fb:a7:20:68:72:
30:ac:e9:72:9a:93:7f:fc:94:57:03:5c:a9:51:6d:
43:42:d1:e2:e8:51:90:49:5b:ff:65:d0:f8:5d:10:
e1:67:a9:9c:70:33:0d:15:70:5a:c5:2f:b4:24:bf:
4d:9e:55:0f:54:41:18:d1:5f:7c:b2:55:d1:57:0b:
64:a0:26:6b:7a:87:43:c4:13:f9:dd:90:3a:ac:10:
18:0b:e9:a8:30:92:1e:12:03:58:b7:45:6f:fb:48:
5c:a5:08:11:01:2e:67:11:90:00:00:71:59:c9:4a:
a2:5b:48:bd:27:2b:23:14:43:55:57:7f:88:23:8e:
1d:c3:a9:8c:be:63:d1:5a:7a:2b:0a:2d:b4:0c:1b:
f8:d7:e2:a8:4c:17:53:d6:aa:e9:b5:d2:53:ff:5b:
66:f7:98:63:26:ee:21:ca:4d:9f:6b:00:ab:8c:f2:
08:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9D:3B:AB:C5:F6:68:4F:9E:AE:F5:D6:27:FC:1D:2F:50:16:62:23
X509v3 Authority Key Identifier:
keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/sZ07q8X2aE-ervXWJ_wdL1AWYiM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
110.41.90.0/24
110.41.208.0-110.41.210.255
124.71.250.0/23
Signature Algorithm: sha256WithRSAEncryption
10:4f:55:06:3d:ba:ce:17:61:90:f2:f8:9a:27:e9:8e:af:52:
88:5b:b2:7e:96:41:70:29:df:50:db:65:f9:85:3e:94:d5:57:
fe:92:be:1a:ea:e9:3c:ba:30:76:5a:dc:86:3a:43:3a:ec:7f:
19:ea:dc:aa:25:fa:e9:dd:7e:de:83:a4:c7:d3:3c:e6:2c:13:
8e:ef:da:62:f0:f5:7a:4b:95:c8:cd:d7:cf:de:81:43:33:39:
96:7f:05:b0:3d:69:5c:96:3c:b0:f4:e2:ae:4a:3e:ff:93:ba:
e2:1f:54:f8:53:59:4a:f1:5b:12:8a:5d:3b:a1:ed:ae:c1:bd:
21:88:3d:1f:b8:1f:73:2b:c8:cd:c7:d7:49:86:50:a3:7a:1d:
4d:8a:23:34:95:ed:c3:60:1b:f5:02:36:ae:eb:ae:da:5f:a0:
ee:c2:65:7f:3f:e7:c9:1f:3d:44:53:a9:dc:51:34:d6:ff:9b:
d1:b1:4e:f9:f8:d2:2d:ea:b6:57:cb:52:3e:98:37:d6:ef:19:
91:82:38:fc:1b:49:60:64:48:10:f1:b4:f1:3e:29:aa:56:1f:
a6:96:26:16:9d:2a:34:34:bb:77:26:ba:76:27:f0:38:ad:c7:
0b:73:96:05:97:ae:7d:e1:9a:71:5a:21:d3:f5:59:3e:a1:89:
54:2f:37:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 12:45:19 2024 by rpki-client on console-ams.rpki-client.org