Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/tOIJjrV-gkgIDsKvV6GJR46NvKY.roa
File: tOIJjrV-gkgIDsKvV6GJR46NvKY.roa (raw, json)
Hash identifier: F3yoZf/FTIQQBMCKyRCalFMQ8yP3p78W2HNJg9JMTFc=
Subject key identifier: B4:E2:09:8E:B5:7E:82:48:08:0E:C2:AF:57:A1:89:47:8E:8D:BC:A6
Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156
Certificate serial: 090C
Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/tOIJjrV-gkgIDsKvV6GJR46NvKY.roa
Signing time: Sat 25 Nov 2023 08:37:49 +0000
ROA not before: Sat 25 Nov 2023 08:37:49 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 137443
IP address blocks: 103.139.92.0/24 maxlen: 24
103.139.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 05:34:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2316 (0x90c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156
Validity
Not Before: Nov 25 08:37:49 2023 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=B4E2098EB57E8248080EC2AF57A189478E8DBCA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:78:33:e7:c7:cb:3c:5f:c7:7d:09:68:86:d6:
f5:3c:41:fe:ba:28:84:61:3a:5a:ae:cc:d1:d5:db:
95:7a:14:9f:21:05:4f:5e:9d:8a:b2:60:5d:af:27:
3d:48:d4:41:12:02:cd:27:fc:0b:18:80:1e:65:43:
bb:9d:8b:20:e9:d5:b4:ba:37:43:e1:eb:0f:c9:32:
7a:d2:b5:ab:af:db:00:40:0d:a1:f2:64:42:32:50:
ad:de:74:c8:78:3c:ad:02:71:23:5e:f9:ec:29:64:
a4:67:57:a6:28:81:a7:41:b7:79:c8:17:58:f5:c3:
e7:4e:41:43:91:ad:6d:ac:4c:54:f4:1a:29:88:59:
b4:f8:37:54:05:65:de:91:85:35:3a:83:43:8b:4c:
03:ea:3d:b5:8a:46:59:fa:b4:88:ba:02:5e:ca:30:
1f:cc:aa:de:83:13:9c:cc:35:00:34:95:d1:de:dc:
7d:8a:78:3c:7b:3b:1e:16:22:ed:b1:13:5c:02:6e:
fd:60:e3:7d:50:6d:fe:b2:64:aa:46:86:70:e3:5d:
69:7d:93:73:4a:ae:57:bb:59:65:d8:36:b6:e9:16:
f8:d2:90:cc:02:fa:20:fb:b7:53:e8:0c:a8:24:39:
52:56:b5:70:c1:0b:6a:25:40:9b:88:7b:d4:07:85:
b9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E2:09:8E:B5:7E:82:48:08:0E:C2:AF:57:A1:89:47:8E:8D:BC:A6
X509v3 Authority Key Identifier:
keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/tOIJjrV-gkgIDsKvV6GJR46NvKY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.92.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:be:72:86:08:65:bb:e0:03:ce:c3:3e:71:15:d7:23:df:67:
60:d2:12:fa:99:fb:3e:c1:52:87:ea:5b:c0:d1:90:f3:9a:ef:
08:cf:bf:61:0f:14:fe:97:0f:c1:e1:00:05:13:65:b1:84:c1:
2e:6b:1d:66:ed:3c:7f:ba:12:c2:8d:d4:47:bd:cc:4a:46:36:
1a:a5:55:f5:bf:cd:7e:22:9e:0f:91:0a:ed:f4:ff:5a:89:a1:
5a:f7:48:84:25:73:4a:0b:c9:b1:da:f6:b2:ca:d4:76:c1:50:
50:b1:30:fc:63:4b:a5:00:30:9d:88:f0:99:6b:54:0a:9a:24:
be:3e:a0:e2:f2:3b:17:7e:2e:fd:7f:4a:86:78:93:a6:97:3d:
f6:54:23:46:17:38:ab:a1:a5:5c:c1:e0:8b:b3:b2:3c:5a:e8:
51:b6:15:86:6c:58:8c:c3:e0:71:c3:6c:17:62:03:1a:38:03:
34:25:0e:bc:2d:17:14:4a:4f:cf:1b:a1:13:d2:e8:df:89:6f:
d8:73:2c:20:b2:80:ce:c2:ec:b1:df:1c:8a:72:27:58:6b:e3:
20:be:e2:e4:20:62:df:9c:7d:bf:aa:ff:c3:5a:cb:35:09:12:
54:3a:4d:9b:99:2f:fb:bf:f9:01:f1:5b:aa:b8:bb:69:a1:33:
f4:a4:67:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 06:19:26 2024 by rpki-client on console-fra.rpki-client.org