Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/8KNJ_x1z4c-vZmAwt-6NyKKUFXw.roa
File: 8KNJ_x1z4c-vZmAwt-6NyKKUFXw.roa (raw, json)
Hash identifier: iaKu2VDVajMT+kVMmt3Ym3lVcT+CDV3kjXYnS6joIEM=
Subject key identifier: F0:A3:49:FF:1D:73:E1:CF:AF:66:60:30:B7:EE:8D:C8:A2:94:15:7C
Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708
Certificate serial: 1482
Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/8KNJ_x1z4c-vZmAwt-6NyKKUFXw.roa
Signing time: Thu 16 Nov 2023 19:13:57 +0000
ROA not before: Thu 16 Nov 2023 19:13:57 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 58466
IP address blocks: 118.145.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:21:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5250 (0x1482)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708
Validity
Not Before: Nov 16 19:13:57 2023 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=F0A349FF1D73E1CFAF666030B7EE8DC8A294157C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:05:c0:61:02:69:b2:8b:62:49:15:e6:51:e0:
ad:d7:1c:b6:2a:b1:3a:98:d9:0a:fe:09:da:80:db:
06:9d:42:56:6d:9a:8c:85:33:e2:e0:34:84:71:c0:
a5:f6:63:7b:5e:a1:58:06:f1:2c:b5:1d:f7:38:c2:
29:52:09:cc:25:cd:39:7e:19:ed:1a:21:dc:f0:7b:
41:28:d1:f6:87:f6:64:4f:70:a0:3b:36:1b:ad:29:
4d:88:03:bd:e4:5e:d8:67:8d:59:6e:82:6b:d2:17:
31:76:d2:a5:aa:0b:a6:cd:bb:4d:3d:6e:05:96:c3:
71:58:9e:28:8a:5c:bf:83:d9:de:31:5e:f9:70:df:
1f:05:7f:fd:1a:04:a0:23:fc:9f:6c:0a:fc:83:8d:
6c:c3:6d:1c:b7:86:42:39:fb:80:b3:d0:05:79:76:
19:ca:50:aa:12:4f:11:38:e1:4d:92:e2:ca:4e:79:
08:31:12:5d:77:c4:eb:1b:2c:6e:bb:c3:38:10:fe:
15:e9:37:43:f3:3a:bc:ed:9e:42:f2:be:cd:c0:e5:
e3:0d:47:26:e4:29:4a:e8:63:71:09:7f:42:74:4c:
fe:7c:2e:74:28:b0:a6:95:be:b0:87:e9:12:f5:73:
e9:bf:b4:a0:bf:89:f9:81:6c:16:7d:ec:77:87:45:
fa:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A3:49:FF:1D:73:E1:CF:AF:66:60:30:B7:EE:8D:C8:A2:94:15:7C
X509v3 Authority Key Identifier:
keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/8KNJ_x1z4c-vZmAwt-6NyKKUFXw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.145.32.0/19
Signature Algorithm: sha256WithRSAEncryption
62:b9:28:0d:22:6f:42:21:af:70:e3:9a:08:a3:3b:f3:5d:ee:
ac:90:0a:08:46:da:14:35:66:3d:b0:e7:34:cd:ed:a6:d0:4b:
f4:f9:be:b8:24:cf:af:67:87:16:d3:fa:3d:b8:08:8f:da:30:
2f:b2:09:5c:94:d1:eb:4e:35:a5:74:74:7a:86:cf:d7:90:30:
ca:5b:01:04:80:e6:d4:6d:67:a5:24:d8:8f:72:01:62:70:3f:
fb:c8:90:4e:70:74:06:45:a7:1f:10:dd:bc:8a:81:86:ff:49:
30:f6:40:46:a9:07:f2:07:88:5f:4c:e4:94:5c:5e:6c:5e:34:
5a:6d:08:df:1f:f8:97:12:f5:70:3a:22:f4:92:ba:a2:7b:40:
4d:ad:50:89:da:51:d7:ad:2e:8d:c9:b6:db:7a:4f:21:e8:3b:
3f:84:cd:5d:8c:5e:d8:d9:0b:64:20:c4:4d:32:18:92:8e:6f:
25:c3:f6:40:42:70:6b:cb:fc:8f:ef:68:5a:ee:11:06:7a:23:
d0:49:6a:01:b4:48:22:e3:03:8a:e2:9c:ee:86:8a:bb:63:e2:
06:bf:42:91:c0:8e:bf:d3:3d:48:51:23:26:e0:18:94:cf:8f:
c5:e8:73:0b:b8:77:ed:ee:cb:80:7c:d3:30:4a:83:88:58:b7:
9e:4e:55:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 01:53:40 2024 by rpki-client on console-ams.rpki-client.org