Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3027/CAAnIMoUdubOO_-KMq5NeIVF-C0.roa
File: CAAnIMoUdubOO_-KMq5NeIVF-C0.roa (raw, json)
Hash identifier: cAkGYl/V1S17ssQCvyf6tePZACzBNh78mJ2xWNW1TSA=
Subject key identifier: 08:00:27:20:CA:14:76:E6:CE:3B:FF:8A:32:AE:4D:78:85:45:F8:2D
Certificate issuer: /CN=EED0E76665272FAF95C3104EAE182BD2D5A0800B
Certificate serial: 0CBE
Authority key identifier: EE:D0:E7:66:65:27:2F:AF:95:C3:10:4E:AE:18:2B:D2:D5:A0:80:0B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7tDnZmUnL6-VwxBOrhgr0tWggAs.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3027/CAAnIMoUdubOO_-KMq5NeIVF-C0.roa
Signing time: Wed 13 Mar 2024 01:22:11 +0000
ROA not before: Wed 13 Mar 2024 01:22:11 +0000
ROA not after: Sat 10 Aug 2024 07:41:13 +0000
asID: 139119
IP address blocks: 2406:a7c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 27 Jul 2024 07:45:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3262 (0xcbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EED0E76665272FAF95C3104EAE182BD2D5A0800B
Validity
Not Before: Mar 13 01:22:11 2024 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=08002720CA1476E6CE3BFF8A32AE4D788545F82D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0d:41:1a:2f:43:d7:d5:0c:15:eb:59:9c:6e:
f1:2a:12:49:7c:fb:bb:d2:a0:d2:a5:c8:46:04:bf:
c0:59:8d:41:d3:88:48:e2:fc:02:20:d6:69:10:ad:
dc:6d:af:5a:d3:26:57:e2:13:12:18:f0:61:a1:f8:
0c:ab:85:b6:ea:0b:ec:f9:5e:9b:60:72:cf:66:f0:
39:9a:b5:c9:3d:34:65:d7:55:08:7c:76:41:5e:d4:
df:59:83:f4:c2:a4:28:a4:5c:4e:8c:bf:1d:e7:45:
55:a3:b9:8b:92:03:e0:63:fe:20:da:f0:66:a1:5d:
2d:98:6b:a1:f9:f1:45:1e:ec:f8:46:68:35:23:62:
b4:94:b4:2c:c0:b7:d4:ca:a2:2a:b6:48:75:63:8d:
d7:41:48:96:a0:ad:02:e9:fa:a4:94:b1:8c:6b:c2:
9b:4c:9c:fa:82:d8:ae:9e:f9:28:7b:24:2b:11:c8:
d4:7a:3c:09:5c:0c:09:44:6f:95:2a:34:41:ba:ef:
e6:6d:ae:b6:11:d3:3d:99:2a:ee:d0:17:b1:82:7c:
4f:ed:0b:63:76:d8:5e:18:72:7e:4b:d9:35:14:2c:
98:3c:e7:5f:84:67:5f:44:22:bb:91:c3:5f:50:7c:
29:66:02:4b:2e:79:6f:d2:57:1b:5d:0f:2f:ec:57:
10:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:00:27:20:CA:14:76:E6:CE:3B:FF:8A:32:AE:4D:78:85:45:F8:2D
X509v3 Authority Key Identifier:
keyid:EE:D0:E7:66:65:27:2F:AF:95:C3:10:4E:AE:18:2B:D2:D5:A0:80:0B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3027/7tDnZmUnL6-VwxBOrhgr0tWggAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7tDnZmUnL6-VwxBOrhgr0tWggAs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3027/CAAnIMoUdubOO_-KMq5NeIVF-C0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:a7c0::/48
Signature Algorithm: sha256WithRSAEncryption
ae:d4:d8:25:b6:f5:c8:c0:0d:c8:bb:1d:46:a2:bc:00:03:67:
7b:32:2e:b0:3e:2a:c2:d6:56:86:9a:06:3c:39:53:71:24:2c:
4a:c1:81:32:b5:3a:7c:e5:26:f0:43:0c:6f:9a:6a:1e:c5:34:
d8:b0:ba:7d:dc:31:22:88:51:b1:7e:43:dd:60:17:b5:ee:b4:
85:26:14:1e:c3:83:6a:3e:7c:a0:69:0e:58:93:82:42:87:61:
32:93:a3:f7:e9:bd:4f:ec:a5:4c:73:09:a2:cb:b4:5f:9d:a2:
5f:4a:17:96:29:a8:3d:4b:f2:a3:92:32:da:07:1b:88:f6:ee:
0a:32:e2:b7:2b:4a:04:c7:b4:3e:ed:59:1a:eb:f4:76:27:82:
80:1d:f6:14:42:76:7e:d0:fd:2d:72:36:0f:3f:fd:95:89:d8:
65:e7:fe:79:57:59:6c:9e:70:67:d1:c0:20:57:3d:6f:b0:3f:
9f:37:6c:c7:d6:d2:92:ba:df:a4:24:fc:7d:4e:48:78:00:ca:
66:5c:ce:26:31:10:44:f7:cd:5f:f4:28:80:56:8a:fb:d6:5e:
08:9c:e9:29:12:c5:33:9c:75:09:d7:81:15:ec:f2:8e:23:cf:
b8:32:00:bd:42:6d:b2:fe:d0:9a:ae:e0:24:2d:18:86:a6:61:
45:58:65:a3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jul 27 09:48:36 2024 by rpki-client on console-fra.rpki-client.org