Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3250/kaUBsn_ERepo3y1j4STV_a4nXQM.roa
File: kaUBsn_ERepo3y1j4STV_a4nXQM.roa (raw, json)
Hash identifier: OAZLgouP+BLi4m3u308uQHF2QUd4ULjaI8F14edWqAg=
Subject key identifier: 91:A5:01:B2:7F:C4:45:EA:68:DF:2D:63:E1:24:D5:FD:AE:27:5D:03
Certificate issuer: /CN=8D34D5981D7B6A00127B9F268748A4E1233E138F
Certificate serial: CE
Authority key identifier: 8D:34:D5:98:1D:7B:6A:00:12:7B:9F:26:87:48:A4:E1:23:3E:13:8F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jTTVmB17agASe58mh0ik4SM-E48.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3250/kaUBsn_ERepo3y1j4STV_a4nXQM.roa
Signing time: Sat 03 Feb 2024 13:00:37 +0000
ROA not before: Sat 03 Feb 2024 13:00:37 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 4837
IP address blocks: 36.50.226.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 04 Feb 2024 10:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206 (0xce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D34D5981D7B6A00127B9F268748A4E1233E138F
Validity
Not Before: Feb 3 13:00:37 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=91A501B27FC445EA68DF2D63E124D5FDAE275D03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e0:10:80:92:42:dc:01:c8:be:91:fc:23:93:
f5:58:9e:76:be:c4:6b:81:be:00:28:1b:51:59:d7:
39:96:64:f7:2c:6a:0b:ef:07:09:fc:f2:fd:62:8b:
4d:ee:4e:1b:5d:94:5a:3a:68:7c:87:fd:d6:28:f1:
36:49:01:6a:f5:e9:a8:90:8e:34:14:3a:4d:43:52:
79:95:5c:ab:84:94:52:23:b9:17:56:17:01:d7:89:
4d:ed:21:e5:5c:10:9f:10:b6:4f:71:54:44:a9:e8:
22:bc:3d:1d:1c:1a:a7:a2:02:1a:d4:dc:04:45:c0:
54:07:b7:6d:5f:20:8f:a6:c8:72:c7:d5:ac:19:b1:
65:14:1b:ea:f8:21:f9:b2:19:e9:a3:38:83:81:ad:
25:26:ad:cd:c7:87:46:9d:b5:b0:01:1e:09:ea:5f:
34:2f:01:b0:7f:28:f9:8d:86:27:44:6d:79:f1:32:
d7:f0:91:19:5c:27:9e:0c:d6:2f:60:cf:e1:27:f1:
97:82:66:23:0c:ba:5e:39:0a:f3:21:48:9c:cd:05:
4d:8e:6e:2d:13:ea:e3:8d:d5:50:f8:f4:5d:6c:ae:
1e:7f:a1:65:ff:b2:49:eb:ab:7f:7a:9e:ea:38:2a:
46:4a:c8:79:21:57:a2:aa:3b:60:57:11:e6:9a:90:
1f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A5:01:B2:7F:C4:45:EA:68:DF:2D:63:E1:24:D5:FD:AE:27:5D:03
X509v3 Authority Key Identifier:
keyid:8D:34:D5:98:1D:7B:6A:00:12:7B:9F:26:87:48:A4:E1:23:3E:13:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3250/jTTVmB17agASe58mh0ik4SM-E48.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jTTVmB17agASe58mh0ik4SM-E48.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3250/kaUBsn_ERepo3y1j4STV_a4nXQM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.226.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:11:9a:32:c4:cd:d6:e5:30:5a:7e:5b:44:6a:fb:1d:07:c8:
2d:42:cf:f7:59:5c:5e:b3:8d:ce:42:1c:46:e3:26:61:6c:ac:
0b:a9:0d:2c:3f:c9:4f:cc:24:50:ed:14:a1:34:62:b7:80:62:
75:78:aa:9b:7e:ab:76:6e:44:95:a3:66:fe:11:ce:fc:66:43:
9f:04:f4:de:21:f0:30:e9:40:a5:f3:f4:c4:b7:7c:c5:c9:cf:
16:36:18:dc:14:da:00:ce:36:aa:37:19:49:c5:04:ca:49:19:
32:f9:d3:db:48:3b:c0:4c:54:f1:27:73:75:57:c4:92:ef:e5:
ba:a1:12:86:25:32:61:cd:91:d8:e1:a9:d1:b7:29:82:7c:e7:
13:ca:07:75:5d:ee:29:04:2a:43:69:17:60:b8:db:0e:60:64:
56:6f:d0:84:6a:0f:b3:af:34:aa:d8:ca:f2:c8:28:9a:94:51:
78:d4:87:ce:4e:59:7e:80:37:03:83:1b:ce:c8:fa:a5:c1:6e:
02:ed:01:30:a6:20:be:a4:77:86:c5:79:ec:cb:9d:f9:6f:42:
0f:ca:b6:77:00:1a:8d:33:5b:59:4c:d8:82:48:5d:aa:86:be:
18:40:a5:7c:0b:0d:fd:52:43:79:97:2b:82:59:5a:25:70:9d:
ae:aa:df:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 4 15:10:20 2024 by rpki-client on console-ams.rpki-client.org