Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3040/xnA6COnpix9Y8imwOOscaT_gOi4.roa
File: xnA6COnpix9Y8imwOOscaT_gOi4.roa (raw, json)
Hash identifier: 9M1OMcZyRKj5vTO3ouHmcy10FA+cDz52D+bLJyEsByE=
Subject key identifier: C6:70:3A:08:E9:E9:8B:1F:58:F2:29:B0:38:EB:1C:69:3F:E0:3A:2E
Certificate issuer: /CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5
Certificate serial: 13B6
Authority key identifier: 03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/xnA6COnpix9Y8imwOOscaT_gOi4.roa
Signing time: Fri 19 May 2023 05:55:07 +0000
ROA not before: Fri 19 May 2023 05:55:07 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 131484
IP address blocks: 2406:d140::/32 maxlen: 48
2406:d140:8000::/34 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5046 (0x13b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5
Validity
Not Before: May 19 05:55:07 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=C6703A08E9E98B1F58F229B038EB1C693FE03A2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:25:dc:0b:a2:b4:2e:23:b7:a6:8a:53:e9:d0:
67:bc:f0:84:94:25:68:c3:25:09:b0:85:2c:91:2e:
fa:62:91:f4:65:f8:b2:9c:01:77:32:71:42:59:99:
7e:2a:a1:d8:c2:4c:a2:fc:46:77:4a:cc:b7:cc:c3:
3d:95:44:80:0d:21:12:d6:d0:eb:02:c4:23:d8:0b:
f8:9b:54:fa:19:50:86:5f:f0:d1:77:f2:93:e1:0a:
4b:21:14:c9:7b:bd:80:60:02:26:30:0e:55:1c:1a:
45:92:a5:35:9d:37:6d:ec:e7:5e:05:0f:dc:7d:fc:
f7:db:b2:b6:d5:e0:4a:35:f1:d6:68:25:ce:53:ac:
be:d6:51:b9:99:6e:0e:c6:7a:6e:99:0a:64:06:90:
3d:e1:03:e3:ed:49:cc:82:f9:6a:33:a1:09:b2:0b:
e6:10:2f:4e:68:b4:b7:c0:bc:4f:cd:a5:75:92:7f:
38:aa:af:db:98:bf:7d:66:c9:8d:b6:7f:6d:8f:b0:
e5:f6:28:c8:e5:cf:fa:45:26:a2:ea:67:2a:59:84:
41:5a:6b:57:4d:21:6c:4a:33:3a:4a:8f:4d:a0:cd:
3a:99:f7:44:75:e7:72:48:82:12:28:14:c3:3d:d8:
d3:34:55:6e:08:0f:5f:4e:92:60:d1:58:33:3d:74:
c7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:70:3A:08:E9:E9:8B:1F:58:F2:29:B0:38:EB:1C:69:3F:E0:3A:2E
X509v3 Authority Key Identifier:
keyid:03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/xnA6COnpix9Y8imwOOscaT_gOi4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:d140::/32
Signature Algorithm: sha256WithRSAEncryption
40:6e:2e:c7:00:11:19:9d:6a:2f:92:71:24:a9:9a:32:99:4e:
be:5f:c7:4f:dd:da:48:92:49:87:04:44:27:96:63:e3:89:0e:
fd:6e:32:cc:e9:83:d3:5e:9d:41:3b:c1:d7:59:1d:33:5b:cb:
bc:f9:5b:c4:2f:d1:3f:82:9e:d7:23:98:fe:15:51:02:8d:7f:
8b:99:b7:cd:01:e4:fb:f3:82:50:c3:4d:c2:82:78:65:ae:c2:
49:c0:72:84:af:91:75:7e:ff:3f:e5:10:98:41:71:aa:a8:0d:
b1:e5:a6:43:1d:e7:cd:eb:18:51:63:f1:cf:4a:27:b6:66:81:
49:81:03:71:bb:d4:84:15:be:f8:a6:1f:98:e1:5a:f1:4b:c0:
7a:cf:a8:cd:97:8b:6d:2c:83:20:bf:e2:b7:38:2c:5a:fb:94:
2b:37:b8:1e:8c:fe:71:c2:ec:26:ca:56:ea:fd:28:d6:e2:d7:
d3:75:21:4e:05:8d:bc:50:ed:86:39:9b:7f:75:a9:a6:9a:e7:
90:e0:d9:dd:6e:86:b3:30:fa:ad:8a:30:a5:83:06:f1:50:af:
07:cd:dd:26:37:07:f4:bf:33:4d:71:e5:94:9c:f5:65:c7:f2:
43:e5:c2:9c:fe:8d:44:37:7c:80:fd:cc:9c:e1:39:b6:89:58:
0d:d2:49:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:11:40 2024 by rpki-client on console-ams.rpki-client.org