Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/m5XaXpKmIF946N63UA9NbDAk05g.roa
File: m5XaXpKmIF946N63UA9NbDAk05g.roa (raw, json)
Hash identifier: Zo8W34HwDI9muSeW8Na0ZqOxkCG9MPdJwl35fR2vsa8=
Subject key identifier: 9B:95:DA:5E:92:A6:20:5F:78:E8:DE:B7:50:0F:4D:6C:30:24:D3:98
Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708
Certificate serial: 14EE
Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/m5XaXpKmIF946N63UA9NbDAk05g.roa
Signing time: Thu 07 Dec 2023 10:15:31 +0000
ROA not before: Thu 07 Dec 2023 10:15:31 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 4808
IP address blocks: 180.184.24.0/21 maxlen: 24
180.184.56.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:21:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5358 (0x14ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708
Validity
Not Before: Dec 7 10:15:31 2023 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=9B95DA5E92A6205F78E8DEB7500F4D6C3024D398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1c:16:88:6d:e0:20:a3:88:ef:69:80:33:0e:
52:2d:aa:f3:c1:50:22:80:4d:81:43:87:4f:8a:de:
78:3e:72:ae:2a:4a:6e:10:80:97:21:4c:58:73:0e:
c1:f8:1a:6e:27:de:95:3d:f7:d2:05:01:32:bd:d3:
e3:23:0a:bf:99:f9:ea:47:bd:94:f9:45:ca:62:a5:
d5:da:2e:50:e9:13:93:30:87:48:53:16:16:c5:54:
58:09:1b:78:d2:bf:08:6d:54:e9:c0:0c:9e:2c:8e:
14:01:40:aa:ad:f2:90:62:4d:35:13:90:b6:b4:4a:
97:d4:d5:c2:81:a0:c7:13:d2:48:f7:28:4e:f6:7a:
04:99:cf:38:91:d2:4c:04:e4:ec:89:bc:c5:f4:64:
c1:52:98:7c:c4:2b:3d:26:ca:e9:a7:f6:34:e4:25:
4e:c4:0c:a1:77:75:fc:72:92:d4:0f:3a:bb:17:22:
7a:a6:a2:d7:3f:85:fa:12:dd:2b:52:c7:16:c3:6c:
94:db:25:37:7f:4c:8a:79:9e:fb:9a:11:22:91:45:
7c:51:b2:13:35:a4:13:3c:de:94:4c:f8:ca:c7:6b:
b5:4f:b0:58:a1:79:43:a0:d0:ca:d0:54:38:44:a3:
e0:04:16:84:5d:9c:08:ee:72:ce:44:a6:d4:77:bc:
47:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:95:DA:5E:92:A6:20:5F:78:E8:DE:B7:50:0F:4D:6C:30:24:D3:98
X509v3 Authority Key Identifier:
keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/m5XaXpKmIF946N63UA9NbDAk05g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.184.24.0/21
180.184.56.0/21
Signature Algorithm: sha256WithRSAEncryption
47:f8:88:03:bd:14:2d:7f:3f:c1:c6:7e:72:26:65:7b:fa:82:
01:a8:2e:56:a4:67:f4:d4:9c:41:9f:a1:bf:28:7d:3f:a3:8a:
75:7e:8b:46:41:a3:e0:6f:52:c8:2b:4a:ca:7e:17:43:7b:ef:
8a:fc:41:61:62:db:5d:28:3f:88:0c:2a:61:f1:37:9e:86:9c:
0e:fc:c3:68:96:50:df:2e:ab:ae:8a:c8:84:2b:3b:49:3c:e4:
d8:d6:25:49:57:c9:34:18:cd:5a:90:ca:fa:a8:28:8d:b3:32:
60:e1:c5:f6:bb:06:c6:b0:f5:85:12:c7:5f:07:f4:dd:4e:c3:
7c:de:fb:a2:96:7f:a6:a1:a9:43:4c:79:95:52:38:83:8f:3e:
79:62:ba:4e:d1:01:de:0d:64:55:97:8e:f4:6d:8d:e9:fc:bb:
59:60:86:a5:79:b3:e8:bc:03:1f:f8:de:0b:0d:c0:14:27:39:
83:d8:47:f7:23:88:87:a5:03:1b:e0:99:03:de:21:93:70:c2:
5c:1f:cf:f3:ec:97:82:15:94:b5:7a:41:ae:84:b7:0a:3c:f5:
b9:57:12:4d:d6:26:a9:8a:2b:7e:89:af:e3:52:19:70:07:2b:
33:ed:2a:d0:dc:1b:9c:56:37:b6:57:60:33:bf:53:6d:ea:5f:
84:f6:27:5a
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICFO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4
QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yMzEyMDcx
MDE1MzFaFw0yNDEwMDgwMDE2MzNaMDMxMTAvBgNVBAMTKDlCOTVEQTVFOTJBNjIw
NUY3OEU4REVCNzUwMEY0RDZDMzAyNEQzOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6HBaIbeAgo4jvaYAzDlItqvPBUCKATYFDh0+K3ng+cq4qSm4Q
gJchTFhzDsH4Gm4n3pU999IFATK90+MjCr+Z+epHvZT5RcpipdXaLlDpE5Mwh0hT
FhbFVFgJG3jSvwhtVOnADJ4sjhQBQKqt8pBiTTUTkLa0SpfU1cKBoMcT0kj3KE72
egSZzziR0kwE5OyJvMX0ZMFSmHzEKz0myumn9jTkJU7EDKF3dfxyktQPOrsXInqm
otc/hfoS3StSxxbDbJTbJTd/TIp5nvuaESKRRXxRshM1pBM83pRM+MrHa7VPsFih
eUOg0MrQVDhEo+AEFoRdnAjucs5EptR3vEfLAgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUm5XaXpKmIF946N63UA9NbDAk05gwHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw
dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0
NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvbTVYYVhwS21JRjk0
Nk42M1VBOU5iREFrMDVnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEw
DAMEA7S4GAMEA7S4ODANBgkqhkiG9w0BAQsFAAOCAQEAR/iIA70ULX8/wcZ+ciZl
e/qCAaguVqRn9NScQZ+hvyh9P6OKdX6LRkGj4G9SyCtKyn4XQ3vvivxBYWLbXSg/
iAwqYfE3noacDvzDaJZQ3y6rrorIhCs7STzk2NYlSVfJNBjNWpDK+qgojbMyYOHF
9rsGxrD1hRLHXwf03U7DfN77opZ/pqGpQ0x5lVI4g48+eWK6TtEB3g1kVZeO9G2N
6fy7WWCGpXmz6LwDH/jeCw3AFCc5g9hH9yOIh6UDG+CZA94hk3DCXB/P8+yXghWU
tXpBroS3Cjz1uVcSTdYmqYorfomv41IZcAcrM+0q0NwbnFY3tldgM79TbepfhPYn
Wg==
-----END CERTIFICATE-----
Generated at Tue Sep 24 01:53:40 2024 by rpki-client on console-ams.rpki-client.org