Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/_WQaDA1IiXkvSTTEFXYcEVNwrKE.roa
File: _WQaDA1IiXkvSTTEFXYcEVNwrKE.roa (raw, json)
Hash identifier: 7rU2KluD7mQyRuJg/EUs/bGzTckM8QaiuCQg7NVteiQ=
Subject key identifier: FD:64:1A:0C:0D:48:89:79:2F:49:34:C4:15:76:1C:11:53:70:AC:A1
Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708
Certificate serial: 176D
Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/_WQaDA1IiXkvSTTEFXYcEVNwrKE.roa
Signing time: Thu 11 Apr 2024 05:48:04 +0000
ROA not before: Thu 11 Apr 2024 05:48:04 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 150436
IP address blocks: 101.126.72.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 11 Apr 2024 12:25:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5997 (0x176d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708
Validity
Not Before: Apr 11 05:48:04 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=FD641A0C0D4889792F4934C415761C115370ACA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5c:75:34:9b:3a:ca:1a:1f:56:4d:0f:34:76:
7c:2a:d0:66:86:a2:49:ec:36:f5:f9:3d:25:2c:05:
4f:b4:a4:77:1d:ba:2e:14:90:8a:ac:02:da:f5:2c:
48:cc:9c:44:60:5d:d7:48:2e:c6:fb:1a:be:d8:7b:
d6:60:6c:99:dd:00:c1:13:5e:df:08:c9:70:ad:9a:
68:c3:e9:13:77:ad:b4:d8:77:83:87:6e:54:8d:bc:
f7:2d:40:d0:90:14:4a:bf:2e:88:e0:fe:a8:68:6e:
d6:5e:70:77:09:93:69:3d:2e:07:05:01:7a:ec:a6:
b5:8a:d6:ec:26:6b:1f:f1:ff:8b:8e:48:2b:7d:48:
0e:8a:d6:c7:b8:44:69:6b:63:a3:62:0f:6d:e4:25:
61:f0:aa:36:b5:a2:30:89:9a:dc:99:cf:cb:d1:35:
28:05:c4:a5:4a:de:a4:c9:88:59:29:9c:3f:2b:1a:
af:f9:44:f5:5d:37:30:af:dc:aa:fa:3e:48:18:d2:
54:63:8d:65:00:1e:60:c9:b1:f8:27:ad:f3:19:13:
a1:51:80:72:8f:7e:f7:9b:9d:5e:f5:ff:93:3b:18:
32:b2:81:e7:fb:30:fd:c4:a3:f7:d5:3e:c5:c8:43:
11:22:7b:b2:da:b3:bd:c6:ec:df:5d:18:f5:e6:8d:
0e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:64:1A:0C:0D:48:89:79:2F:49:34:C4:15:76:1C:11:53:70:AC:A1
X509v3 Authority Key Identifier:
keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/_WQaDA1IiXkvSTTEFXYcEVNwrKE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.126.72.0/23
Signature Algorithm: sha256WithRSAEncryption
59:3e:fe:07:c7:5c:1c:70:43:f0:cf:06:6f:1a:c7:7b:28:78:
fe:78:c0:67:ef:e1:3f:cd:2a:8b:4d:0c:b9:cd:33:73:ea:03:
f4:0b:aa:8b:71:f5:75:bb:dd:a2:11:7e:0c:20:f9:e6:c1:28:
68:d0:86:61:ed:03:62:40:70:a8:c2:8a:b2:35:5a:fe:54:0f:
e0:25:fd:82:cc:9f:ef:41:8c:6d:56:5c:2b:91:76:2c:40:26:
27:59:da:10:d9:4f:2c:b0:3d:b6:7b:7e:54:b5:4e:50:41:93:
9e:f9:72:dc:dc:38:ec:30:7a:a0:36:18:78:01:39:6d:45:52:
b2:90:4e:7b:29:c2:b3:d5:d0:21:f9:38:62:1e:d5:b6:ff:04:
8d:20:b5:8a:94:1b:a2:50:7d:15:fa:6e:32:1a:af:3e:9c:79:
e4:43:7c:34:90:aa:a0:51:83:bd:2b:1d:03:ec:ec:36:26:b5:
1c:6e:f4:e1:a4:28:81:1c:8f:0d:27:8f:eb:05:8f:af:60:a8:
77:11:36:23:61:e7:33:f2:be:5d:dd:ac:0d:c9:37:0e:24:24:
6c:38:8f:4b:bd:9a:a9:c0:df:0b:c5:04:6a:ec:5b:9b:84:6a:
a1:a8:7e:88:99:d9:f8:40:7e:e9:3c:df:de:5f:a0:aa:4a:35:
06:b4:7b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 11 16:20:19 2024 by rpki-client on console-ams.rpki-client.org