Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/QFLF7XcB75F2HPSfCchtH8z1MSU.roa
File: QFLF7XcB75F2HPSfCchtH8z1MSU.roa (raw, json)
Hash identifier: vxYnNOw/Bm7wgqNxKbGrR7ormRzqtv8CHfhyQ0vfCcE=
Subject key identifier: 40:52:C5:ED:77:01:EF:91:76:1C:F4:9F:09:C8:6D:1F:CC:F5:31:25
Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708
Certificate serial: 1485
Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/QFLF7XcB75F2HPSfCchtH8z1MSU.roa
Signing time: Thu 16 Nov 2023 19:13:58 +0000
ROA not before: Thu 16 Nov 2023 19:13:58 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 138421
IP address blocks: 118.145.32.0/19 maxlen: 24
180.184.144.0/21 maxlen: 24
180.184.152.0/22 maxlen: 24
180.184.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:21:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5253 (0x1485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708
Validity
Not Before: Nov 16 19:13:58 2023 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=4052C5ED7701EF91761CF49F09C86D1FCCF53125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e8:25:56:e3:6b:0f:2e:79:f7:95:49:72:26:
44:17:bc:8f:29:b4:fa:25:d9:5b:96:38:97:94:43:
39:86:c2:a8:09:18:49:80:c8:ff:9d:1d:85:0f:5c:
f7:42:02:d5:2a:da:89:4c:40:06:16:71:77:76:40:
2f:05:c7:fc:d6:e5:a5:78:98:bf:dc:d0:4a:70:77:
c1:8e:81:dc:51:77:a1:97:dc:99:81:8d:1c:83:56:
26:a1:6c:ad:5d:7b:d5:99:78:2c:7b:b6:92:26:53:
e6:1d:6b:8a:8f:e0:e6:62:54:20:b1:23:36:14:4b:
53:b9:30:c3:73:33:45:b4:c1:55:02:61:22:67:02:
2f:cd:27:39:42:51:7d:30:00:29:f6:ed:ef:a2:d3:
b0:43:9c:60:c9:10:cc:b8:5e:2b:0a:ee:10:f4:c1:
4b:aa:6a:32:58:f1:bd:75:68:18:4b:e2:06:85:d0:
ef:85:51:0a:8a:a1:0f:da:35:38:d5:95:1d:51:a0:
2f:27:7a:5c:25:62:2c:ed:9c:2d:9d:ca:81:ed:45:
6e:84:ce:65:30:1c:57:aa:9b:66:56:f6:02:7d:05:
80:e8:e0:39:4d:9f:18:8f:40:ea:66:4c:15:c4:ae:
4d:2f:53:9e:d9:62:02:8d:c7:02:00:95:9a:64:f6:
ce:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:52:C5:ED:77:01:EF:91:76:1C:F4:9F:09:C8:6D:1F:CC:F5:31:25
X509v3 Authority Key Identifier:
keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/QFLF7XcB75F2HPSfCchtH8z1MSU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.145.32.0/19
180.184.144.0-180.184.155.255
180.184.184.0/22
Signature Algorithm: sha256WithRSAEncryption
06:26:db:ba:19:b5:cb:76:80:c4:3a:17:e9:3a:41:2c:a1:3b:
bc:dc:60:d1:9a:e5:28:93:36:87:84:c8:a9:c2:f1:b9:bf:1e:
05:76:4b:1f:f0:87:88:98:ab:62:3c:b1:93:18:28:32:52:0d:
6a:1d:01:b1:dc:ba:ce:bd:75:f9:c6:50:cb:91:fc:77:31:88:
de:0f:d8:17:a9:5a:35:2c:6a:fe:be:7c:dd:5b:62:49:73:1c:
80:50:3a:31:8a:4c:8c:0e:6a:e8:c2:f2:e3:b6:32:b3:fc:dd:
e8:16:7f:72:0e:a9:93:8a:21:07:67:c9:40:e3:98:b4:eb:a2:
e5:b9:ac:0f:e2:88:16:88:02:4a:81:77:44:ee:9b:92:5f:bf:
5b:e6:7b:8f:57:c5:93:ef:52:3f:73:fd:a3:a3:76:76:4b:1e:
23:c0:6d:75:5a:a6:00:c8:12:96:d8:5d:eb:b7:09:e0:1c:51:
33:74:5e:75:51:db:dc:1b:44:46:b0:9e:ce:96:d2:67:b1:b7:
f5:6f:fe:54:e9:00:f5:79:1c:a9:15:90:ac:e1:00:eb:59:da:
42:c1:7c:38:79:30:13:14:c2:08:2f:be:38:f4:3c:f4:50:1c:
e4:c2:a0:c6:f2:bf:da:32:f0:1d:dc:1a:de:f0:93:5e:14:3a:
d0:20:39:a5
-----BEGIN CERTIFICATE-----
MIIE6zCCA9OgAwIBAgICFIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4
QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yMzExMTYx
OTEzNThaFw0yNDEwMDgwMDE2MzNaMDMxMTAvBgNVBAMTKDQwNTJDNUVENzcwMUVG
OTE3NjFDRjQ5RjA5Qzg2RDFGQ0NGNTMxMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDT6CVW42sPLnn3lUlyJkQXvI8ptPol2VuWOJeUQzmGwqgJGEmA
yP+dHYUPXPdCAtUq2olMQAYWcXd2QC8Fx/zW5aV4mL/c0Epwd8GOgdxRd6GX3JmB
jRyDViahbK1de9WZeCx7tpImU+Yda4qP4OZiVCCxIzYUS1O5MMNzM0W0wVUCYSJn
Ai/NJzlCUX0wACn27e+i07BDnGDJEMy4XisK7hD0wUuqajJY8b11aBhL4gaF0O+F
UQqKoQ/aNTjVlR1RoC8nelwlYiztnC2dyoHtRW6EzmUwHFeqm2ZW9gJ9BYDo4DlN
nxiPQOpmTBXErk0vU57ZYgKNxwIAlZpk9s6JAgMBAAGjggIHMIICAzAdBgNVHQ4E
FgQUQFLF7XcB75F2HPSfCchtH8z1MSUwHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw
dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0
NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvUUZMRjdYY0I3NUYy
SFBTZkNjaHRIOHoxTVNVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAzBggrBgEFBQcBBwEB/wQkMCIwIAQCAAEw
GgMEBXaRIDAMAwQEtLiQAwQCtLiYAwQCtLi4MA0GCSqGSIb3DQEBCwUAA4IBAQAG
Jtu6GbXLdoDEOhfpOkEsoTu83GDRmuUokzaHhMipwvG5vx4Fdksf8IeImKtiPLGT
GCgyUg1qHQGx3LrOvXX5xlDLkfx3MYjeD9gXqVo1LGr+vnzdW2JJcxyAUDoxikyM
DmrowvLjtjKz/N3oFn9yDqmTiiEHZ8lA45i066LluawP4ogWiAJKgXdE7puSX79b
5nuPV8WT71I/c/2jo3Z2Sx4jwG11WqYAyBKW2F3rtwngHFEzdF51UdvcG0RGsJ7O
ltJnsbf1b/5U6QD1eRypFZCs4QDrWdpCwXw4eTATFMIIL7449Dz0UBzkwqDG8r/a
MvAd3Bre8JNeFDrQIDml
-----END CERTIFICATE-----
Generated at Tue Sep 24 01:46:28 2024 by rpki-client on console-fra.rpki-client.org