Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/UTOYB--jPfA-O-d_mo7TiNxE4_4.roa
File: UTOYB--jPfA-O-d_mo7TiNxE4_4.roa (raw, json)
Hash identifier: JsIumYJOp+7CPIX4esYnSVLQDHCvqG+Dht2qWg8UDAY=
Subject key identifier: 51:33:98:07:EF:A3:3D:F0:3E:3B:E7:7F:9A:8E:D3:88:DC:44:E3:FE
Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221
Certificate serial: 0F2E
Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/UTOYB--jPfA-O-d_mo7TiNxE4_4.roa
Signing time: Mon 25 Mar 2024 07:47:58 +0000
ROA not before: Mon 25 Mar 2024 07:47:58 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 2914
IP address blocks: 180.223.32.0/21 maxlen: 24
180.223.192.0/21 maxlen: 24
180.223.200.0/21 maxlen: 24
180.223.208.0/21 maxlen: 24
180.223.216.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 08:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3886 (0xf2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221
Validity
Not Before: Mar 25 07:47:58 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=51339807EFA33DF03E3BE77F9A8ED388DC44E3FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a0:c0:29:bc:cd:08:b2:2b:5a:04:b2:ea:38:
c1:d5:1a:55:8b:ac:7a:43:e6:8b:2e:a0:58:80:4f:
d1:17:b6:0f:b6:6d:34:fc:73:bf:e7:42:bb:12:3e:
c2:1f:2d:4d:f7:6d:aa:a7:2d:02:db:a0:e2:73:37:
6d:53:e7:6d:f9:40:cd:e6:1a:e2:ce:6d:a2:2c:5f:
2f:7f:d7:79:cc:b2:7f:a0:a1:98:f2:ee:75:59:c6:
a0:80:9f:9c:7b:91:fa:8e:f2:3b:dd:34:67:68:bc:
1c:5a:5e:27:a6:97:22:03:9b:af:4f:69:e0:98:51:
39:c5:01:df:4b:c6:19:97:ce:1b:62:b5:42:81:78:
55:a8:db:b9:53:77:8f:97:a8:1a:7c:53:e7:f3:d2:
03:c3:83:b0:09:a0:35:42:16:f4:8b:19:a3:9c:fc:
4a:c7:72:bf:c3:29:c3:cb:64:5b:e4:fd:21:a1:4c:
15:ae:f1:bc:66:2e:fa:07:86:d5:4b:59:2e:ca:6b:
81:88:e7:96:a0:04:78:b4:fd:14:c4:c3:10:3b:b7:
b8:15:61:81:09:92:10:a4:f1:82:dd:c8:ed:0a:5f:
d3:7c:6e:cd:5d:30:6e:68:e3:cb:10:e9:00:a1:f5:
98:21:a6:fd:98:e6:b5:f5:7f:47:8a:84:3d:48:a8:
94:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:33:98:07:EF:A3:3D:F0:3E:3B:E7:7F:9A:8E:D3:88:DC:44:E3:FE
X509v3 Authority Key Identifier:
keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/UTOYB--jPfA-O-d_mo7TiNxE4_4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.223.32.0/21
180.223.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1f:4a:65:2b:f8:30:e2:9e:38:6b:aa:a4:b6:44:75:5e:df:46:
12:06:62:22:31:c0:40:50:7b:6f:61:bb:37:51:13:fb:d2:5f:
88:b1:94:2a:da:68:09:da:03:f1:a0:9a:fb:73:be:b4:4c:f0:
6a:c5:09:1a:5a:ce:50:20:cf:f2:d5:e2:62:e5:c0:1b:35:b7:
24:be:fe:1b:e4:ac:c2:68:7d:28:66:32:70:cd:11:f6:06:9e:
33:51:df:eb:5e:e9:0e:be:e7:68:9c:11:b8:a2:fc:79:4b:df:
85:80:63:81:ee:b0:cb:eb:ab:76:4c:fe:3f:fd:db:b4:b4:82:
9f:79:71:74:dc:7e:92:8c:05:86:4e:3f:33:3b:61:a6:a9:11:
6e:75:e3:76:4d:3c:84:71:cb:f3:07:bb:c1:23:ab:e2:3a:48:
21:89:81:fb:67:80:66:aa:bf:03:f0:f8:be:b8:d6:0d:20:55:
a6:a4:66:81:82:d8:29:d7:41:ee:c8:6b:ce:68:56:62:73:bc:
09:de:5a:a5:e0:ee:4e:ce:a1:70:c1:e3:8a:fa:49:47:48:55:
7e:0a:5b:07:6d:ac:ab:d6:96:2b:17:9e:6a:e1:67:ca:1a:90:
4e:27:93:c0:c4:71:59:4e:02:0f:99:5e:28:e0:2f:e9:6f:1f:
ed:92:d7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 12:23:06 2024 by rpki-client on console-fra.rpki-client.org