Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3027/y40ow2ydodtZGyGwxbtmXB1rNVM.roa
File: y40ow2ydodtZGyGwxbtmXB1rNVM.roa (raw, json)
Hash identifier: AU13P8HaT2fXQICNaItLlH0oSSMkiSsDu9HW13ntoWQ=
Subject key identifier: CB:8D:28:C3:6C:9D:A1:DB:59:1B:21:B0:C5:BB:66:5C:1D:6B:35:53
Certificate issuer: /CN=EED0E76665272FAF95C3104EAE182BD2D5A0800B
Certificate serial: 06EC
Authority key identifier: EE:D0:E7:66:65:27:2F:AF:95:C3:10:4E:AE:18:2B:D2:D5:A0:80:0B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7tDnZmUnL6-VwxBOrhgr0tWggAs.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3027/y40ow2ydodtZGyGwxbtmXB1rNVM.roa
Signing time: Thu 18 May 2023 07:23:08 +0000
ROA not before: Thu 18 May 2023 07:23:08 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 139119
IP address blocks: 2406:a7c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1772 (0x6ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EED0E76665272FAF95C3104EAE182BD2D5A0800B
Validity
Not Before: May 18 07:23:08 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=CB8D28C36C9DA1DB591B21B0C5BB665C1D6B3553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2f:20:43:c4:d5:01:89:8a:23:9d:c2:2a:a8:
e4:91:f1:ec:64:ef:a6:e1:7e:1c:da:87:0a:78:d9:
86:a4:e0:15:81:75:d0:e0:2a:3f:54:f6:e5:7e:d8:
b3:4b:f1:c1:a0:a8:1e:9e:97:fc:0f:89:97:03:be:
0d:9c:5c:3e:10:37:da:40:6b:df:de:17:2d:b6:88:
bf:1d:60:75:4c:f8:2b:cd:67:0b:85:7e:d6:91:d0:
23:44:95:6f:f3:51:85:64:01:ae:43:2b:2e:c5:10:
e5:a6:44:28:2f:6c:e7:b4:f8:6e:5c:a7:a6:ae:a3:
b1:9a:04:4c:c5:69:b9:5f:b7:c2:4e:f0:eb:4c:47:
9d:f2:b8:f9:66:6d:a8:a8:85:db:c2:88:15:b5:3f:
7a:6e:fb:33:b7:8a:bf:b8:82:e1:92:13:f5:97:05:
7b:ee:59:cd:ff:94:14:13:43:8c:17:44:7f:ce:91:
a8:4b:62:59:c9:d6:06:05:e2:6f:89:09:87:b2:68:
0f:2a:ae:df:bd:8c:a9:03:cf:05:bb:b4:32:70:21:
e6:65:7d:ed:5a:b0:af:37:ad:3a:1e:a3:c7:37:38:
79:84:41:c8:74:38:4b:f8:eb:38:69:1c:3c:77:c8:
42:8b:85:7e:d9:65:9e:30:ae:8f:d8:0d:80:8b:02:
63:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8D:28:C3:6C:9D:A1:DB:59:1B:21:B0:C5:BB:66:5C:1D:6B:35:53
X509v3 Authority Key Identifier:
keyid:EE:D0:E7:66:65:27:2F:AF:95:C3:10:4E:AE:18:2B:D2:D5:A0:80:0B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3027/7tDnZmUnL6-VwxBOrhgr0tWggAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7tDnZmUnL6-VwxBOrhgr0tWggAs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3027/y40ow2ydodtZGyGwxbtmXB1rNVM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:a7c0::/48
Signature Algorithm: sha256WithRSAEncryption
47:5a:09:ad:09:86:11:80:ba:a6:7a:bf:fd:a5:09:06:c8:31:
94:91:ee:d2:f5:5b:28:22:d4:26:0b:9d:43:70:e0:64:3d:6e:
b3:77:0b:a0:ef:a4:1a:af:b2:8e:3a:96:b1:f6:58:a0:9d:15:
2f:30:4e:c5:8e:09:a8:c6:1a:1b:fd:5a:e6:5b:6f:1a:7b:76:
d6:e8:27:8f:ae:14:82:35:e4:dd:93:2b:a5:4d:82:87:71:dc:
a5:8a:50:0c:91:a7:24:49:2e:aa:05:c8:cd:cd:94:a1:3c:8a:
7c:5d:4d:1b:6e:ba:73:1b:d4:5c:34:45:cf:a2:a4:fd:5c:bd:
3e:f1:cf:29:89:e3:75:cb:94:1d:32:ed:01:4d:60:ee:6c:ee:
ea:f0:8f:00:3c:7c:8e:29:5a:35:2d:ab:a0:53:17:ec:45:45:
58:ee:84:05:ea:eb:f4:16:99:75:f1:2c:5c:89:b5:4a:24:c6:
a3:76:76:44:7e:5a:ad:5d:28:7c:18:fa:78:aa:a1:53:cc:7c:
c8:40:67:69:d7:e3:b3:e3:91:d1:da:56:ff:5b:d5:69:30:e3:
af:3f:a4:00:df:5c:11:ab:2b:e1:0a:45:59:89:7a:e4:50:10:
0d:cb:f8:d1:1c:14:39:97:96:82:0f:b6:f1:65:9b:1f:8c:8a:
c2:55:2f:35
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICBuwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUVE
MEU3NjY2NTI3MkZBRjk1QzMxMDRFQUUxODJCRDJENUEwODAwQjAeFw0yMzA1MTgw
NzIzMDhaFw0yNDAzMjcwMTEzMTBaMDMxMTAvBgNVBAMTKENCOEQyOEMzNkM5REEx
REI1OTFCMjFCMEM1QkI2NjVDMUQ2QjM1NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBLyBDxNUBiYojncIqqOSR8exk76bhfhzahwp42Yak4BWBddDg
Kj9U9uV+2LNL8cGgqB6el/wPiZcDvg2cXD4QN9pAa9/eFy22iL8dYHVM+CvNZwuF
ftaR0CNElW/zUYVkAa5DKy7FEOWmRCgvbOe0+G5cp6auo7GaBEzFablft8JO8OtM
R53yuPlmbaiohdvCiBW1P3pu+zO3ir+4guGSE/WXBXvuWc3/lBQTQ4wXRH/OkahL
YlnJ1gYF4m+JCYeyaA8qrt+9jKkDzwW7tDJwIeZlfe1asK83rToeo8c3OHmEQch0
OEv46zhpHDx3yEKLhX7ZZZ4wro/YDYCLAmPhAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUy40ow2ydodtZGyGwxbtmXB1rNVMwHwYDVR0jBBgwFoAU7tDnZmUnL6+VwxBO
rhgr0tWggAswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAy
Ny83dERuWm1Vbkw2LVZ3eEJPcmhncjB0V2dnQXMuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwLzd0RG5abVVuTDYtVnd4Qk9yaGdyMHRXZ2dBcy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMjcveTQwb3cyeWRvZHRa
R3lHd3hidG1YQjFyTlZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw
CQMHACQGp8AAADANBgkqhkiG9w0BAQsFAAOCAQEAR1oJrQmGEYC6pnq//aUJBsgx
lJHu0vVbKCLUJgudQ3DgZD1us3cLoO+kGq+yjjqWsfZYoJ0VLzBOxY4JqMYaG/1a
5ltvGnt21ugnj64UgjXk3ZMrpU2Ch3HcpYpQDJGnJEkuqgXIzc2UoTyKfF1NG266
cxvUXDRFz6Kk/Vy9PvHPKYnjdcuUHTLtAU1g7mzu6vCPADx8jilaNS2roFMX7EVF
WO6EBerr9BaZdfEsXIm1SiTGo3Z2RH5arV0ofBj6eKqhU8x8yEBnadfjs+OR0dpW
/1vVaTDjrz+kAN9cEasr4QpFWYl65FAQDcv40RwUOZeWgg+28WWbH4yKwlUvNQ==
-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org