Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3095/30OMMH9xYucbQV59z7eDzOnjw9U.roa
File: 30OMMH9xYucbQV59z7eDzOnjw9U.roa (raw, json)
Hash identifier: qOUqASimo66Bp6eV59xUq+VGWWxxKfuGWRe1zG0w0xY=
Subject key identifier: DF:43:8C:30:7F:71:62:E7:1B:41:5E:7D:CF:B7:83:CC:E9:E3:C3:D5
Certificate issuer: /CN=CB16707EAF0BDFD1326AFD9BDEC6AFFA6E63BA98
Certificate serial: 0231
Authority key identifier: CB:16:70:7E:AF:0B:DF:D1:32:6A:FD:9B:DE:C6:AF:FA:6E:63:BA:98
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yxZwfq8L39Eyav2b3sav-m5jupg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/30OMMH9xYucbQV59z7eDzOnjw9U.roa
Signing time: Tue 16 Jan 2024 02:35:11 +0000
ROA not before: Tue 16 Jan 2024 02:35:11 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 37968
IP address blocks: 2407:8f40:2::/48 maxlen: 64
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:17:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 561 (0x231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CB16707EAF0BDFD1326AFD9BDEC6AFFA6E63BA98
Validity
Not Before: Jan 16 02:35:11 2024 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=DF438C307F7162E71B415E7DCFB783CCE9E3C3D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bf:d9:94:d5:0b:66:7b:6d:4b:e1:26:c6:87:
6d:d5:7a:4e:f0:b5:ca:f0:ef:d7:69:dc:e2:32:83:
2f:22:70:8e:45:a5:e4:0d:77:b7:9b:52:88:0d:da:
fb:3d:6c:fd:33:3f:1f:15:4a:fd:46:12:19:f8:10:
69:f5:ce:4f:3e:03:b1:a4:4d:4d:fc:93:06:25:aa:
20:b3:4e:16:a2:e3:25:9a:a9:51:9b:e7:67:9b:20:
4f:1b:5b:be:d0:d3:ad:7c:11:f4:b3:37:5b:4c:8e:
46:74:9a:53:91:75:73:0d:6f:f8:70:0a:bc:82:ba:
aa:ad:ad:83:66:9a:b7:5b:ea:12:f4:b0:66:f2:2a:
af:42:95:b0:02:37:7d:49:5d:ea:21:6d:b4:7f:1a:
f9:d3:77:9e:d1:54:bd:90:82:ed:84:41:06:0f:91:
82:79:c5:bb:78:37:a0:94:1a:b7:60:2f:a7:19:be:
e0:1b:0c:05:39:9c:54:00:5e:11:43:bc:0d:6f:0a:
95:50:8c:30:ea:5a:a2:36:d0:47:a1:96:70:7c:e4:
b9:be:1c:f3:dd:ff:d6:32:2d:99:e1:23:82:76:3e:
bc:85:34:36:df:ed:7c:78:17:f2:eb:01:70:34:ef:
46:c2:86:3f:c8:77:4c:46:50:2f:c0:dc:de:30:6c:
09:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:43:8C:30:7F:71:62:E7:1B:41:5E:7D:CF:B7:83:CC:E9:E3:C3:D5
X509v3 Authority Key Identifier:
keyid:CB:16:70:7E:AF:0B:DF:D1:32:6A:FD:9B:DE:C6:AF:FA:6E:63:BA:98
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/yxZwfq8L39Eyav2b3sav-m5jupg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yxZwfq8L39Eyav2b3sav-m5jupg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3095/30OMMH9xYucbQV59z7eDzOnjw9U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:8f40:2::/48
Signature Algorithm: sha256WithRSAEncryption
03:49:fe:79:ae:a3:69:22:a9:09:66:71:29:ac:99:5e:b2:3b:
98:9a:cd:74:9f:4c:fb:08:85:60:be:cb:3c:35:fb:90:fc:87:
5e:af:70:f7:e9:b0:25:4f:42:72:0f:b6:15:28:ea:0b:e5:66:
13:9a:de:aa:b5:e8:bc:aa:95:03:89:17:13:99:e8:3b:9c:11:
0b:cc:23:e1:db:d3:2a:f5:7f:c7:d2:76:5c:5d:b1:1a:f6:54:
30:46:92:f6:51:5d:18:38:68:81:76:17:cc:1a:db:7f:0a:1c:
b4:9d:64:65:59:6b:f5:6b:eb:36:e9:89:72:f1:ba:bd:18:21:
3b:be:8a:7d:d9:38:1c:3a:53:c7:23:7d:38:32:ff:2b:66:84:
4f:5a:77:e0:d7:39:9b:b1:19:ef:c8:91:3c:a8:cd:29:89:95:
06:6e:64:c0:e8:32:10:39:25:98:3e:35:90:f3:31:ee:e7:a4:
01:da:b6:1c:d6:88:36:02:4f:a9:90:e0:9a:71:76:0c:f2:3f:
5f:09:59:0b:c4:56:1f:82:68:1c:7e:eb:56:26:36:e5:62:81:
0e:37:4f:c1:5a:ad:94:ae:89:75:f0:67:1a:9a:ac:fc:18:2b:
25:4d:7a:ee:90:cb:22:39:8e:3f:4c:0b:2a:44:4e:f8:a0:4a:
1d:51:dc:a8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Sep 24 01:53:40 2024 by rpki-client on console-ams.rpki-client.org