Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/312/Jn2j1zR9x5yO11mJz5pPGGT5hdM.roa
File: Jn2j1zR9x5yO11mJz5pPGGT5hdM.roa (raw, json)
Hash identifier: H9jvOY5Y9wEUFB5L6xZlji2tXku5RoDEZ3CKVlmPS/k=
Subject key identifier: 26:7D:A3:D7:34:7D:C7:9C:8E:D7:59:89:CF:9A:4F:18:64:F9:85:D3
Certificate issuer: /CN=85F3BFD1A14090C4829A5A313A4D31F9CC8F312F
Certificate serial: 1288
Authority key identifier: 85:F3:BF:D1:A1:40:90:C4:82:9A:5A:31:3A:4D:31:F9:CC:8F:31:2F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hfO_0aFAkMSCmloxOk0x-cyPMS8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/Jn2j1zR9x5yO11mJz5pPGGT5hdM.roa
Signing time: Fri 22 Sep 2023 01:30:53 +0000
ROA not before: Fri 22 Sep 2023 01:30:53 +0000
ROA not after: Tue 17 Sep 2024 08:06:57 +0000
asID: 38372
IP address blocks: 112.73.32.0/19 maxlen: 24
120.31.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 08:16:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4744 (0x1288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85F3BFD1A14090C4829A5A313A4D31F9CC8F312F
Validity
Not Before: Sep 22 01:30:53 2023 GMT
Not After : Sep 17 08:06:57 2024 GMT
Subject: CN=267DA3D7347DC79C8ED75989CF9A4F1864F985D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9a:d6:e5:07:d6:64:22:c4:ca:35:50:fa:a4:
fe:29:de:f6:09:de:26:17:2a:e5:c4:04:e1:45:b6:
e4:b1:4e:f6:7e:a2:43:46:d1:92:7f:04:68:f3:f2:
bf:40:53:3f:ef:96:21:7e:38:31:40:fd:60:b5:66:
84:9a:1c:8f:43:56:cf:54:40:7d:62:54:54:6a:6d:
7a:6d:95:0e:92:c2:e6:64:a9:44:92:0f:6a:e2:a6:
a2:aa:65:a6:43:48:89:34:e7:27:e5:b8:17:f4:be:
19:22:4d:d6:27:68:4b:17:1d:00:62:76:c3:3f:64:
cb:6b:18:94:67:e0:ef:f1:31:4c:d2:97:23:82:00:
cf:7e:42:03:39:85:fe:e3:a7:2c:74:a9:d6:75:c0:
cd:dc:fa:fc:5d:ad:75:28:26:b8:26:d7:67:36:4a:
02:70:27:9d:31:01:ea:f3:4e:30:cd:b5:cd:0b:16:
86:52:00:44:29:99:02:22:5f:de:8d:c6:84:ee:d8:
c6:c7:c1:1e:c5:10:05:2d:29:39:41:b8:df:f1:4c:
63:b1:df:f5:6d:ef:06:e9:7d:8c:06:f7:33:f1:42:
85:e1:c1:41:bd:f0:56:ba:31:f7:7d:63:c3:2d:62:
4a:ed:1f:c4:ba:7b:7b:4d:c2:24:f6:a5:9b:fe:ba:
17:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7D:A3:D7:34:7D:C7:9C:8E:D7:59:89:CF:9A:4F:18:64:F9:85:D3
X509v3 Authority Key Identifier:
keyid:85:F3:BF:D1:A1:40:90:C4:82:9A:5A:31:3A:4D:31:F9:CC:8F:31:2F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/hfO_0aFAkMSCmloxOk0x-cyPMS8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hfO_0aFAkMSCmloxOk0x-cyPMS8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/312/Jn2j1zR9x5yO11mJz5pPGGT5hdM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.73.32.0/19
120.31.164.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:87:ad:b4:57:38:ec:9f:72:ff:4c:d7:08:5d:79:0e:5d:72:
c5:79:ef:a5:d1:20:2e:80:08:a7:99:fb:ac:a4:b3:7c:aa:a9:
59:45:63:f7:c8:50:93:b9:d8:72:9a:06:75:0d:fd:47:c9:1c:
37:64:11:2a:2b:df:95:57:36:ef:f0:67:28:d3:b8:37:0d:db:
85:73:ba:a8:d7:d8:a7:c6:38:df:62:90:e5:15:76:d4:ae:2b:
8e:30:2f:e4:30:57:14:ab:ef:90:94:f1:fc:8a:eb:0a:91:41:
85:41:84:32:61:6c:37:d2:7e:18:57:e1:27:a9:25:02:36:34:
23:d0:da:34:47:d7:af:ae:e4:5b:c2:af:6f:c7:11:4a:13:d1:
a2:c9:0e:7c:cd:e7:16:41:33:43:7b:ca:a8:5d:b3:cf:04:50:
7b:37:c1:20:98:c8:96:bb:7b:b1:74:78:0b:00:01:42:6b:ef:
0d:53:04:81:ba:c7:64:df:89:ab:9e:3e:8f:91:64:98:66:04:
72:ca:82:2f:f9:b0:14:61:43:1f:0a:85:ec:42:cd:d7:67:1d:
a4:13:5e:05:df:8b:6a:4b:51:30:1d:a2:5e:d7:e9:16:09:da:
81:20:e9:f3:c2:74:36:44:16:a8:d4:c7:34:a3:c8:cc:71:4e:
f5:12:bc:3b
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICEogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODVG
M0JGRDFBMTQwOTBDNDgyOUE1QTMxM0E0RDMxRjlDQzhGMzEyRjAeFw0yMzA5MjIw
MTMwNTNaFw0yNDA5MTcwODA2NTdaMDMxMTAvBgNVBAMTKDI2N0RBM0Q3MzQ3REM3
OUM4RUQ3NTk4OUNGOUE0RjE4NjRGOTg1RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9mtblB9ZkIsTKNVD6pP4p3vYJ3iYXKuXEBOFFtuSxTvZ+okNG
0ZJ/BGjz8r9AUz/vliF+ODFA/WC1ZoSaHI9DVs9UQH1iVFRqbXptlQ6SwuZkqUSS
D2ripqKqZaZDSIk05yfluBf0vhkiTdYnaEsXHQBidsM/ZMtrGJRn4O/xMUzSlyOC
AM9+QgM5hf7jpyx0qdZ1wM3c+vxdrXUoJrgm12c2SgJwJ50xAerzTjDNtc0LFoZS
AEQpmQIiX96NxoTu2MbHwR7FEAUtKTlBuN/xTGOx3/Vt7wbpfYwG9zPxQoXhwUG9
8Fa6Mfd9Y8MtYkrtH8S6e3tNwiT2pZv+uheXAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUJn2j1zR9x5yO11mJz5pPGGT5hdMwHwYDVR0jBBgwFoAUhfO/0aFAkMSCmlox
Ok0x+cyPMS8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEy
L2hmT18wYUZBa01TQ21sb3hPazB4LWN5UE1TOC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvaGZPXzBhRkFrTVNDbWxveE9rMHgtY3lQTVM4LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEyL0puMmoxelI5eDV5TzEx
bUp6NXBQR0dUNWhkTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD
BAVwSSADBAJ4H6QwDQYJKoZIhvcNAQELBQADggEBAHuHrbRXOOyfcv9M1whdeQ5d
csV576XRIC6ACKeZ+6yks3yqqVlFY/fIUJO52HKaBnUN/UfJHDdkESor35VXNu/w
ZyjTuDcN24VzuqjX2KfGON9ikOUVdtSuK44wL+QwVxSr75CU8fyK6wqRQYVBhDJh
bDfSfhhX4SepJQI2NCPQ2jRH16+u5FvCr2/HEUoT0aLJDnzN5xZBM0N7yqhds88E
UHs3wSCYyJa7e7F0eAsAAUJr7w1TBIG6x2TfiauePo+RZJhmBHLKgi/5sBRhQx8K
hexCzddnHaQTXgXfi2pLUTAdol7X6RYJ2oEg6fPCdDZEFqjUxzSjyMxxTvUSvDs=
-----END CERTIFICATE-----
Generated at Tue Sep 3 10:16:08 2024 by rpki-client on console-ams.rpki-client.org