Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/H0pGukMdSYOCTNEWbBzTrJklBGw.roa
File: H0pGukMdSYOCTNEWbBzTrJklBGw.roa (raw, json)
Hash identifier: 5+QAoCNvZLGLYIAFATxYY02M4Aubch9iF0Z/OZI8mCo=
Subject key identifier: 1F:4A:46:BA:43:1D:49:83:82:4C:D1:16:6C:1C:D3:AC:99:25:04:6C
Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221
Certificate serial: 1187
Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/H0pGukMdSYOCTNEWbBzTrJklBGw.roa
Signing time: Mon 15 Jul 2024 15:05:32 +0000
ROA not before: Mon 15 Jul 2024 15:05:32 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 2914
IP address blocks: 180.223.32.0/21 maxlen: 24
180.223.152.0/21 maxlen: 24
180.223.216.0/21 maxlen: 24
180.223.232.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 12:56:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4487 (0x1187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221
Validity
Not Before: Jul 15 15:05:32 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=1F4A46BA431D4983824CD1166C1CD3AC9925046C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:01:74:bb:e1:d1:54:c6:4e:7f:14:39:92:ab:
3c:07:71:fa:c0:86:6a:35:4b:c3:e6:45:9c:48:2e:
6a:c8:50:34:e3:71:ce:0c:57:b5:f5:6e:ae:04:56:
88:0d:32:49:e7:f0:64:d5:68:00:7e:8e:e5:60:b0:
76:78:5b:64:46:49:2c:1e:53:43:77:3f:61:6f:64:
8e:3e:d8:ba:07:14:25:d7:65:62:8f:af:51:49:c4:
13:68:27:c0:67:25:7c:a7:5c:9b:6c:fa:05:77:10:
3d:0a:97:91:7e:2d:64:b6:1e:6c:9b:35:7a:77:af:
f4:a6:24:b1:60:7f:ab:af:e4:64:75:62:b1:10:0c:
42:10:2e:e3:f9:7b:fb:9b:8e:36:28:66:25:23:ea:
4b:6d:66:e7:21:61:54:76:4e:57:57:bd:c9:08:c9:
00:dd:08:dc:fc:46:70:40:8d:fa:cf:ba:f5:eb:d6:
6f:0d:08:fd:d9:c2:f8:11:5a:f6:80:8a:82:c6:f7:
af:66:b8:5f:ea:34:1f:4e:72:72:e8:1d:3c:79:01:
ed:5f:d4:cd:43:78:24:c2:6b:77:c7:7a:3d:55:c9:
1c:04:47:05:e8:c7:13:86:ef:8f:18:7f:32:bf:9e:
cc:35:98:0e:20:c2:93:d9:b3:13:08:f0:14:f9:43:
4b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4A:46:BA:43:1D:49:83:82:4C:D1:16:6C:1C:D3:AC:99:25:04:6C
X509v3 Authority Key Identifier:
keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/H0pGukMdSYOCTNEWbBzTrJklBGw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.223.32.0/21
180.223.152.0/21
180.223.216.0/21
180.223.232.0/21
Signature Algorithm: sha256WithRSAEncryption
c0:61:34:2a:8b:4e:9c:47:25:9e:8f:f4:1b:3b:02:21:0e:ce:
e7:c7:35:72:fe:04:c6:bb:e3:e5:14:3b:e7:02:d9:97:0d:97:
ca:43:56:80:28:62:4c:d1:90:2e:c4:a3:5a:8d:85:82:fa:a1:
0e:dd:d3:d7:87:99:62:4d:ee:4d:7b:b5:db:8f:46:9a:be:e0:
3c:92:99:a0:90:24:30:43:68:7f:f7:1e:6e:9e:3a:aa:44:ee:
51:13:a0:3b:38:e8:3a:ef:cc:07:e6:af:4c:d8:c3:9c:84:af:
cf:c1:ad:53:cd:9c:ea:20:a2:92:1a:55:6e:0d:40:11:e5:7a:
d3:73:48:21:23:32:99:66:0c:02:b9:0b:29:a8:44:78:63:76:
5b:04:20:9f:b7:52:2a:3d:0c:f5:4a:1f:5b:26:73:f2:2d:97:
f1:3f:e0:17:f4:4b:2d:cc:06:b3:a7:fe:bf:a3:0e:55:70:b6:
c6:96:2f:d5:df:4e:4e:a4:09:99:60:42:a0:82:f2:92:6f:63:
54:12:14:50:34:9d:71:c9:e7:1a:f3:d6:dc:9a:8c:04:6c:6e:
8b:38:d7:70:1d:15:23:0d:ff:99:ec:d4:1d:b3:c0:e2:b3:b3:
80:98:4f:8e:cf:fd:5f:6c:a9:61:e3:2e:60:58:4f:19:fc:44:
66:1c:74:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 14:37:36 2024 by rpki-client on console-fra.rpki-client.org