Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/FyhgRYooqaAPHOhOwuW7FpwXdGI.roa
File: FyhgRYooqaAPHOhOwuW7FpwXdGI.roa (raw, json)
Hash identifier: bbrKjFKJDlneh0CSCnX+opWfvd9Vpwf8qYoKQqGxm2k=
Subject key identifier: 17:28:60:45:8A:28:A9:A0:0F:1C:E8:4E:C2:E5:BB:16:9C:17:74:62
Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708
Certificate serial: 1463
Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/FyhgRYooqaAPHOhOwuW7FpwXdGI.roa
Signing time: Tue 14 Nov 2023 13:57:29 +0000
ROA not before: Tue 14 Nov 2023 13:57:29 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 23724
IP address blocks: 180.184.24.0/21 maxlen: 24
180.184.56.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:21:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5219 (0x1463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708
Validity
Not Before: Nov 14 13:57:29 2023 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=172860458A28A9A00F1CE84EC2E5BB169C177462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:5f:d1:43:5d:89:7a:ae:f9:b6:9f:e9:08:
0e:cb:9d:9b:c8:4a:0d:78:50:e2:5a:9a:9c:f3:17:
28:a4:bd:74:f2:c6:94:1d:88:c7:be:ba:2b:83:e5:
0b:89:5c:f1:54:8b:72:76:00:19:9c:00:9b:92:f3:
d5:b4:6d:41:98:85:30:17:20:fb:cd:62:f3:f1:05:
db:6f:ef:04:e5:c1:fa:e6:b3:ee:b3:6d:5d:e4:e3:
9b:3d:a3:1f:d0:be:bb:ef:1c:3a:c9:d8:02:5e:fc:
34:3b:86:b8:88:2c:d0:c8:99:c1:81:3c:f2:f4:7f:
6c:10:fe:8d:6f:92:1d:9f:52:03:c8:31:22:3e:90:
c0:42:e5:4a:39:ba:a5:d4:dd:b4:d0:17:82:65:fa:
ee:c8:b4:71:05:ca:85:5c:df:f7:fd:2f:68:8d:8f:
d4:a3:0a:36:5a:6e:a2:37:dd:48:fa:4f:d1:7f:e9:
10:2c:31:6d:70:0e:05:d2:a3:66:6c:e6:89:a2:ce:
48:e8:20:bb:f5:55:a6:67:60:8f:ed:e0:9c:0e:4b:
8d:4a:34:fe:b3:58:45:8c:38:b7:16:bc:05:ae:bb:
cb:08:fa:29:32:e9:a7:e1:b8:ce:2d:ac:98:a6:92:
fd:9e:e9:ea:32:5e:a0:13:d4:db:63:5d:cb:45:46:
5f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:28:60:45:8A:28:A9:A0:0F:1C:E8:4E:C2:E5:BB:16:9C:17:74:62
X509v3 Authority Key Identifier:
keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/FyhgRYooqaAPHOhOwuW7FpwXdGI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.184.24.0/21
180.184.56.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:21:7e:4a:18:3c:cf:ab:81:d2:62:57:85:2a:77:89:25:a9:
b3:84:88:40:24:5b:e3:9c:91:c1:77:45:9d:ad:74:57:16:f2:
a0:fd:fd:5a:b4:ee:e4:cd:a2:33:a4:ee:b6:9c:df:17:cf:90:
68:9a:fe:0a:fc:bf:9a:91:a5:b8:c2:39:f2:db:3e:bc:c2:23:
41:b3:f2:e6:aa:32:08:00:fb:a7:60:b0:0f:65:15:5c:bb:3b:
c6:b2:81:d9:85:55:4a:88:ff:ac:02:a1:e6:09:ef:f3:f6:fe:
87:21:8e:c8:61:75:84:9f:4e:1b:33:17:14:80:dd:76:7e:f0:
0e:fc:5a:aa:9c:bb:a5:f4:9e:ec:d4:60:03:3c:90:6b:a6:53:
80:e3:ec:69:a3:64:3d:32:bc:29:69:f7:8d:cb:55:cf:70:09:
2b:e8:65:0b:5f:55:62:95:87:db:97:3d:b1:b2:5f:5d:89:7e:
83:01:b2:15:ea:02:6c:46:d3:44:68:ac:97:3a:ea:58:c7:a7:
27:95:63:37:4d:32:98:80:5b:27:bf:c0:93:3b:ad:9f:d0:4e:
b5:2d:dd:ef:e7:27:65:31:51:95:6b:ef:e3:d4:0d:05:9b:4b:
24:1e:8a:84:d7:49:a8:b2:68:b7:68:42:28:ea:be:9b:0e:e5:
9f:94:f2:2c
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICFGMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4
QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yMzExMTQx
MzU3MjlaFw0yNDEwMDgwMDE2MzNaMDMxMTAvBgNVBAMTKDE3Mjg2MDQ1OEEyOEE5
QTAwRjFDRTg0RUMyRTVCQjE2OUMxNzc0NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDChl/RQ12Jeq75tp/pCA7LnZvISg14UOJampzzFyikvXTyxpQd
iMe+uiuD5QuJXPFUi3J2ABmcAJuS89W0bUGYhTAXIPvNYvPxBdtv7wTlwfrms+6z
bV3k45s9ox/QvrvvHDrJ2AJe/DQ7hriILNDImcGBPPL0f2wQ/o1vkh2fUgPIMSI+
kMBC5Uo5uqXU3bTQF4Jl+u7ItHEFyoVc3/f9L2iNj9SjCjZabqI33Uj6T9F/6RAs
MW1wDgXSo2Zs5omizkjoILv1VaZnYI/t4JwOS41KNP6zWEWMOLcWvAWuu8sI+iky
6afhuM4trJimkv2e6eoyXqAT1NtjXctFRl9fAgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUFyhgRYooqaAPHOhOwuW7FpwXdGIwHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw
dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0
NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvRnloZ1JZb29xYUFQ
SE9oT3d1VzdGcHdYZEdJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEw
DAMEA7S4GAMEA7S4ODANBgkqhkiG9w0BAQsFAAOCAQEADyF+Shg8z6uB0mJXhSp3
iSWps4SIQCRb45yRwXdFna10VxbyoP39WrTu5M2iM6TutpzfF8+QaJr+Cvy/mpGl
uMI58ts+vMIjQbPy5qoyCAD7p2CwD2UVXLs7xrKB2YVVSoj/rAKh5gnv8/b+hyGO
yGF1hJ9OGzMXFIDddn7wDvxaqpy7pfSe7NRgAzyQa6ZTgOPsaaNkPTK8KWn3jctV
z3AJK+hlC19VYpWH25c9sbJfXYl+gwGyFeoCbEbTRGislzrqWMenJ5VjN00ymIBb
J7/Akzutn9BOtS3d7+cnZTFRlWvv49QNBZtLJB6KhNdJqLJot2hCKOq+mw7ln5Ty
LA==
-----END CERTIFICATE-----
Generated at Tue Sep 24 01:53:40 2024 by rpki-client on console-ams.rpki-client.org