Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3252/CF9E0d_aXlpspPMqElUX_M9ZjFU.roa
File: CF9E0d_aXlpspPMqElUX_M9ZjFU.roa (raw, json)
Hash identifier: hZhRJ1X2NXbVmLdvRIe57tWiOoMkIMRTGNRmKSPxQ+M=
Subject key identifier: 08:5F:44:D1:DF:DA:5E:5A:6C:A4:F3:2A:12:55:17:FC:CF:59:8C:55
Certificate issuer: /CN=EA1DD0A5BE3961989984E1C447C241FFC16DAA33
Certificate serial: 04
Authority key identifier: EA:1D:D0:A5:BE:39:61:98:99:84:E1:C4:47:C2:41:FF:C1:6D:AA:33
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6h3Qpb45YZiZhOHER8JB_8FtqjM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/CF9E0d_aXlpspPMqElUX_M9ZjFU.roa
Signing time: Tue 02 Jan 2024 04:28:44 +0000
ROA not before: Tue 02 Jan 2024 04:28:44 +0000
ROA not after: Wed 01 Jan 2025 02:06:08 +0000
asID: 63538
IP address blocks: 2401:70e0:1::/48 maxlen: 128
Validation: Failed, certificate revoked on Thu 18 Jan 2024 07:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EA1DD0A5BE3961989984E1C447C241FFC16DAA33
Validity
Not Before: Jan 2 04:28:44 2024 GMT
Not After : Jan 1 02:06:08 2025 GMT
Subject: CN=085F44D1DFDA5E5A6CA4F32A125517FCCF598C55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0a:05:d8:a5:a0:4f:c4:0c:80:ca:1d:28:e6:
46:67:93:27:83:e7:38:bb:7c:f6:d5:7e:52:b7:51:
b1:22:5e:bc:f3:50:88:03:f9:30:67:dd:43:de:a3:
3f:16:7f:e5:2b:9a:db:b6:23:5a:a3:8c:27:c2:3f:
14:1e:a2:5f:17:87:81:3d:21:72:85:bc:66:9d:1f:
8b:e1:f3:1a:ae:0c:34:91:06:de:64:f6:61:94:e9:
1b:df:f2:73:c6:97:77:a5:6a:c2:fb:f2:35:96:b6:
d6:59:be:33:c9:60:9a:fc:fc:36:f5:a2:82:5e:b1:
14:75:20:83:df:35:53:7b:5a:b0:e3:67:88:b1:dd:
d0:d7:01:e5:13:5c:19:ac:60:64:d0:2c:ee:ff:ef:
85:53:1a:64:d1:12:f4:a8:d7:2f:3c:d1:ed:c1:43:
a3:f6:99:37:92:c4:e9:38:06:f3:1b:c4:fe:df:62:
15:b6:7e:62:e8:ec:94:3a:cc:98:2b:da:60:5c:42:
cf:e4:f9:87:ac:84:82:ef:8d:f6:f0:97:be:25:21:
48:fb:17:47:3f:bc:ac:6e:5e:61:76:d7:ff:a0:b7:
1f:f1:9f:51:69:4f:f1:46:06:c0:9a:cf:e6:04:65:
41:72:64:94:03:18:bf:86:f0:0b:22:57:1e:0f:4f:
67:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:5F:44:D1:DF:DA:5E:5A:6C:A4:F3:2A:12:55:17:FC:CF:59:8C:55
X509v3 Authority Key Identifier:
keyid:EA:1D:D0:A5:BE:39:61:98:99:84:E1:C4:47:C2:41:FF:C1:6D:AA:33
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/6h3Qpb45YZiZhOHER8JB_8FtqjM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6h3Qpb45YZiZhOHER8JB_8FtqjM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/CF9E0d_aXlpspPMqElUX_M9ZjFU.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:70e0:1::/48
Signature Algorithm: sha256WithRSAEncryption
b3:37:d4:f5:96:61:49:78:51:cd:21:02:cb:c6:b8:5e:77:21:
47:43:61:6c:9f:47:5b:49:55:50:6f:9b:71:8b:12:ab:a4:c8:
4f:21:08:6a:80:bc:47:5c:53:17:8e:de:e5:68:ef:c6:3c:3f:
8b:3b:bb:95:63:7f:af:88:c1:d2:5e:26:1c:d1:68:a4:1b:93:
5b:5c:9e:dd:f2:73:b2:64:93:60:8d:e6:8d:c9:e4:d0:81:85:
59:1b:f8:4e:c0:2b:18:7f:37:4c:25:64:24:ca:1e:20:fa:11:
dc:fd:39:3a:5c:4d:d3:14:a5:d5:49:d0:f2:e4:c8:d6:b9:50:
57:0d:cc:45:61:31:57:28:e7:5b:c7:e9:fa:d4:a3:6e:a4:20:
c5:16:c4:5c:ca:51:b7:b4:2e:88:6c:0c:2b:52:5f:f1:f5:4c:
14:da:f6:59:b2:cd:73:3e:5f:11:ec:c9:d3:94:f1:24:50:fc:
1d:00:a9:bf:87:fc:a6:80:0e:70:bf:8c:ae:95:76:83:0d:cd:
9c:7a:56:5f:bc:9c:c6:cd:fd:ac:7b:3e:7e:e3:d4:e6:dc:4a:
36:7d:e5:b2:da:34:33:a8:69:d8:6f:2d:9a:61:c3:64:22:cd:
be:a6:6e:de:29:0d:38:1a:db:7e:fb:20:37:73:10:d8:de:2d:
7d:87:f5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 18 10:25:27 2024 by rpki-client on console-fra.rpki-client.org