Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/316/XxSnL3mBa-VU2zjYYjPJkWRVf8U.roa
File: XxSnL3mBa-VU2zjYYjPJkWRVf8U.roa (raw, json)
Hash identifier: LgS7C8yteRcw8fxU/OaqE6VRSkztcQttEPumA/CRE/U=
Subject key identifier: 5F:14:A7:2F:79:81:6B:E5:54:DB:38:D8:62:33:C9:91:64:55:7F:C5
Certificate issuer: /CN=4BC6A9B58BBEEAD50DDD48F844782C8294A18B39
Certificate serial: 0442
Authority key identifier: 4B:C6:A9:B5:8B:BE:EA:D5:0D:DD:48:F8:44:78:2C:82:94:A1:8B:39
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/S8aptYu-6tUN3Uj4RHgsgpShizk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/316/XxSnL3mBa-VU2zjYYjPJkWRVf8U.roa
Signing time: Thu 15 Sep 2022 00:58:43 +0000
ROA not before: Thu 15 Sep 2022 00:58:43 +0000
ROA not after: Mon 28 Aug 2023 04:15:34 +0000
asID: 38378
IP address blocks: 103.92.88.0/22 maxlen: 24
119.40.64.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1090 (0x442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4BC6A9B58BBEEAD50DDD48F844782C8294A18B39
Validity
Not Before: Sep 15 00:58:43 2022 GMT
Not After : Aug 28 04:15:34 2023 GMT
Subject: CN=5F14A72F79816BE554DB38D86233C99164557FC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e4:c9:42:b6:88:f4:1a:a2:21:e8:ab:69:14:
68:4e:3a:ad:d6:d2:24:47:52:79:0a:f2:a0:95:21:
94:0c:b2:36:2e:25:c7:d5:6b:3c:08:68:30:2f:ad:
3c:ea:3f:1f:63:af:20:09:19:1c:21:81:8f:39:97:
be:17:c7:4b:82:9b:b7:3a:f9:19:28:5d:b4:ca:80:
98:8c:29:8a:6b:60:24:07:d2:a7:4f:7a:49:7b:1a:
e9:4b:60:9c:b7:27:48:56:f0:c1:d2:ce:22:dc:f0:
d9:42:aa:80:c6:e8:b7:26:7a:56:71:91:4d:04:76:
24:d4:ba:41:2e:15:4d:f0:14:e8:64:40:9a:f5:dd:
3b:f0:52:99:76:42:b4:c5:7b:fb:85:d5:c7:a7:60:
a7:b3:d7:5a:b1:f1:c2:3f:47:31:db:b7:70:ed:11:
23:6a:81:99:81:63:eb:40:07:b4:cb:29:29:de:dc:
e2:62:05:c1:9d:e8:f8:ce:c5:90:39:03:f8:97:7a:
b5:6d:af:ae:ad:08:51:7d:f0:54:ab:4d:2f:d4:ed:
20:f0:04:a0:42:04:58:2a:1d:c6:6b:54:45:89:33:
bf:f6:67:d0:de:40:f4:72:86:db:fd:c1:df:0c:08:
c7:75:83:eb:9a:69:f7:50:d4:9f:29:3d:6e:ec:93:
9e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:14:A7:2F:79:81:6B:E5:54:DB:38:D8:62:33:C9:91:64:55:7F:C5
X509v3 Authority Key Identifier:
keyid:4B:C6:A9:B5:8B:BE:EA:D5:0D:DD:48:F8:44:78:2C:82:94:A1:8B:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/316/S8aptYu-6tUN3Uj4RHgsgpShizk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/S8aptYu-6tUN3Uj4RHgsgpShizk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/316/XxSnL3mBa-VU2zjYYjPJkWRVf8U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.92.88.0/22
119.40.64.0/20
Signature Algorithm: sha256WithRSAEncryption
11:e2:1c:34:f5:14:b3:22:16:1d:73:d1:1a:27:70:cf:63:97:
9a:f9:81:c2:b5:a2:b4:88:0e:4f:6f:94:0a:7b:29:19:42:56:
7c:56:cf:67:5a:d9:c3:3e:fc:36:34:36:41:71:50:4c:da:77:
eb:6e:f3:fc:5b:aa:d5:4a:29:40:b2:4a:dd:87:b6:4c:c2:d2:
ae:02:5a:70:f1:a5:bf:2e:63:ab:f6:05:cc:8c:64:79:0a:d6:
84:e6:31:7f:ee:e6:88:ee:ba:2b:d9:86:38:8d:bd:88:ff:08:
8c:3d:29:bf:1e:3e:32:e6:3b:fe:98:1e:74:9d:da:f7:1d:9c:
f3:87:38:ce:26:3d:b4:b0:08:e3:29:0b:51:80:d9:62:6f:4a:
29:8b:ea:a0:cb:2e:9f:99:26:73:74:34:93:ed:31:27:4e:51:
6e:ee:39:a4:c3:e3:ba:49:fd:25:0d:c4:d1:07:3c:62:3e:fa:
9a:aa:b2:d6:67:26:e1:42:af:62:87:18:86:41:98:93:61:34:
03:e0:08:af:ee:f7:68:eb:23:b2:74:16:a0:55:65:7b:49:2b:
d1:fe:8c:83:ba:dc:ee:72:9f:05:d3:29:a6:81:ed:4d:ba:09:
a4:b9:dd:94:c4:a4:b2:10:6c:19:a5:4a:2a:af:f2:e3:77:e1:
51:c6:2b:4a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Aug 14 04:51:52 2023 by rpki-client on console-fra.rpki-client.org