Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/5y0y2VLHD31eg8kfvvMzloDriUo.roa
File: 5y0y2VLHD31eg8kfvvMzloDriUo.roa (raw, json)
Hash identifier: nDCgTdbRJMitInfgLq//MHWHZEuGnyQLh++ZCLMAz9k=
Subject key identifier: E7:2D:32:D9:52:C7:0F:7D:5E:83:C9:1F:BE:F3:33:96:80:EB:89:4A
Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156
Certificate serial: 0709
Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/5y0y2VLHD31eg8kfvvMzloDriUo.roa
Signing time: Mon 14 Aug 2023 03:45:25 +0000
ROA not before: Mon 14 Aug 2023 03:45:25 +0000
ROA not after: Sat 10 Aug 2024 07:41:13 +0000
asID: 136778
IP address blocks: 103.139.92.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1801 (0x709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156
Validity
Not Before: Aug 14 03:45:25 2023 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=E72D32D952C70F7D5E83C91FBEF3339680EB894A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:97:4a:ad:b1:9a:54:9f:11:65:78:22:fe:7b:
89:44:2e:e4:4a:0b:f9:52:04:dc:11:49:89:94:7f:
17:2d:51:f9:a2:c9:45:35:a4:05:06:3d:d9:03:44:
4a:42:81:ad:67:af:74:ab:5a:03:39:7e:78:52:4c:
03:6b:f9:e4:fc:56:95:80:59:e5:73:e4:01:f9:27:
fc:ae:07:e0:9d:e3:c4:33:75:60:5a:b7:61:d9:2f:
fa:7d:23:da:8a:98:7c:af:8f:31:2a:6b:29:2f:2e:
ed:3d:1a:da:03:bf:60:b6:3a:0c:f0:a4:f4:1d:6d:
ab:1d:91:b1:5b:94:ca:c5:3e:18:32:24:27:75:2f:
7a:63:06:81:2c:48:86:79:28:e3:8e:00:36:ba:0b:
4f:fc:e5:6c:36:3e:81:88:0e:36:11:13:3e:a2:e9:
ef:2d:87:fe:b7:e3:b7:9d:47:be:71:51:44:b0:57:
54:05:86:f5:24:7f:9e:64:73:48:3e:20:4e:1c:70:
78:59:4a:47:9e:d6:92:5f:e7:a7:ac:3c:67:3e:f9:
58:f3:a4:6e:5c:90:6f:27:d5:26:1e:50:bb:ca:63:
74:3a:77:3f:23:9f:4a:3a:19:a9:57:22:e9:d8:07:
31:1c:60:3f:fa:1d:af:ea:93:af:3a:69:2c:ed:34:
72:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2D:32:D9:52:C7:0F:7D:5E:83:C9:1F:BE:F3:33:96:80:EB:89:4A
X509v3 Authority Key Identifier:
keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/5y0y2VLHD31eg8kfvvMzloDriUo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.92.0/23
Signature Algorithm: sha256WithRSAEncryption
15:f3:26:e3:c0:46:28:03:14:6a:48:79:a6:f5:64:91:2b:f3:
26:ca:84:d3:f0:96:63:74:3a:f6:7b:92:7c:70:25:f4:8b:e1:
59:7e:46:d4:1c:f4:ab:38:10:08:ee:b3:dc:9e:ee:4a:fd:2e:
b8:59:ca:6c:cf:16:74:b8:d9:b2:66:48:a9:58:bd:29:c1:69:
a5:4e:8f:26:43:c0:e7:ad:4e:17:94:53:27:9c:97:ea:ff:c1:
ac:b6:b6:7f:66:48:cd:35:58:c5:d4:63:de:17:3f:72:3d:9a:
16:84:02:e8:84:a0:c0:0c:4b:87:b4:0d:89:0d:72:2e:dd:55:
bf:8e:dd:94:e6:b3:cb:55:d8:b2:2c:d3:a8:1a:03:3c:ef:fc:
0f:ea:68:90:54:be:cb:b3:cc:2e:9a:b6:33:b5:b8:ec:8d:78:
74:4f:8a:1c:4d:08:e6:a3:e4:c0:3b:7c:cb:ea:32:25:8c:97:
bd:74:03:5f:b8:88:63:4a:50:49:6a:4e:de:55:20:8c:76:b8:
82:93:c2:e5:11:9b:8b:de:33:ac:c2:ef:51:0a:d5:68:6b:66:
3d:c9:53:3b:4c:48:57:a2:a5:b3:ca:fd:98:bd:bd:ab:aa:ba:
c7:c5:f9:17:a1:21:9d:49:c1:46:f7:e5:43:cc:fd:6e:cd:22:
09:6c:d1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 25 09:28:26 2023 by rpki-client on console-ams.rpki-client.org