Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/UIWB1aexATxYkV_7vYnf-YhQYBw.roa
File: UIWB1aexATxYkV_7vYnf-YhQYBw.roa (raw, json)
Hash identifier: u2MNiqrTFIl4sO/ASxNOQ/iYz0iaIizDJ6RlsPEhWpw=
Subject key identifier: 50:85:81:D5:A7:B1:01:3C:58:91:5F:FB:BD:89:DF:F9:88:50:60:1C
Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708
Certificate serial: 10E6
Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/UIWB1aexATxYkV_7vYnf-YhQYBw.roa
Signing time: Fri 19 May 2023 05:55:14 +0000
ROA not before: Fri 19 May 2023 05:55:14 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 137718
IP address blocks: 2406:d440::/32 maxlen: 64
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4326 (0x10e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708
Validity
Not Before: May 19 05:55:14 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=508581D5A7B1013C58915FFBBD89DFF98850601C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:62:10:e6:a3:a9:a8:91:de:db:dc:80:85:14:
75:76:87:de:42:8a:f0:ec:3a:eb:ce:ea:a3:cf:37:
cc:d9:0b:c0:39:e2:46:a7:80:45:c5:11:a5:b6:f4:
a3:b3:61:8f:4e:c4:ef:37:01:03:8c:e5:c3:1d:e1:
89:30:d6:f7:e3:f9:e4:e9:60:3a:cf:da:0d:7f:b8:
f3:eb:2e:d6:bd:5e:2d:8f:96:75:2f:b6:58:a2:8f:
07:6c:09:56:fb:ff:6e:23:8a:05:14:c0:a7:fc:43:
29:a4:eb:16:d0:7e:33:0c:26:41:bd:71:c7:e1:d4:
36:5f:8e:58:0e:a0:7b:39:be:ae:0e:9c:de:ec:13:
6c:6f:e6:0c:bf:8d:74:29:64:5f:46:e5:ce:31:d6:
40:d1:83:99:11:71:6d:fc:c3:d4:61:68:b7:d0:63:
aa:29:de:9e:10:f5:d8:88:33:2c:e5:15:c5:c4:77:
19:f4:0a:89:92:47:41:cc:fd:86:53:7b:bd:ea:0a:
0e:2e:e8:6b:3b:6b:62:46:61:77:ab:0b:19:b4:00:
3f:bc:28:9b:da:ad:3c:2f:a7:01:2c:09:8e:e7:f1:
76:6c:ab:12:9b:34:34:aa:9b:c7:e6:6b:c0:f5:b8:
f8:79:14:7c:c8:95:0b:ce:61:3a:d3:c3:5e:68:ef:
33:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:85:81:D5:A7:B1:01:3C:58:91:5F:FB:BD:89:DF:F9:88:50:60:1C
X509v3 Authority Key Identifier:
keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/UIWB1aexATxYkV_7vYnf-YhQYBw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:d440::/32
Signature Algorithm: sha256WithRSAEncryption
66:d8:89:9b:95:36:49:a8:9f:79:8b:34:e0:01:a5:4a:19:fb:
b8:ae:2b:9b:b0:20:ad:79:ad:b5:f3:20:e2:18:29:fb:ca:e7:
e9:92:88:3e:c3:92:bb:38:9e:61:ab:b1:1f:b5:2f:a5:cd:9f:
ca:17:a0:4f:d9:4d:ed:b1:b6:50:4f:a9:78:16:4d:d2:ac:5c:
55:e3:86:75:2d:15:75:91:b9:4e:1e:6f:a6:7c:67:72:ce:cb:
f7:22:f5:31:91:12:e5:09:d6:cc:68:fd:f5:38:53:21:60:d7:
f8:99:b0:97:88:5c:20:c1:ae:e1:d4:e5:5d:45:40:32:e0:b4:
1d:7d:23:a1:0d:d1:12:45:c4:00:23:b4:11:de:f0:1b:f0:0b:
1c:38:61:35:bd:d7:79:4c:19:6a:4e:8a:99:5c:4b:43:13:5a:
02:59:a7:bd:6c:08:62:a1:58:95:f3:10:67:fb:ce:16:a3:fe:
7f:aa:4b:77:aa:19:4c:96:8d:ad:93:7f:7c:e2:47:91:4f:ff:
c8:d8:f6:40:18:6f:d1:d0:ec:13:01:5c:80:36:8e:45:bc:ad:
2c:65:59:f6:b6:d3:5b:f9:fa:8b:9c:9e:30:f8:20:b9:9b:d9:
32:91:6e:12:5f:be:63:fe:cf:06:a6:01:97:b1:10:55:a6:b1:
46:1b:ee:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:11:40 2024 by rpki-client on console-ams.rpki-client.org