Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/GQxxuweQ8KC718O6vNAahQhwUiE.roa
File: GQxxuweQ8KC718O6vNAahQhwUiE.roa (raw, json)
Hash identifier: GIjqX/K86yRcdbDH5VJqXZ4uoOZV2TWn6DiT2eNphCs=
Subject key identifier: 19:0C:71:BB:07:90:F0:A0:BB:D7:C3:BA:BC:D0:1A:85:08:70:52:21
Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA
Certificate serial: 04
Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/GQxxuweQ8KC718O6vNAahQhwUiE.roa
Signing time: Mon 15 Apr 2024 08:43:47 +0000
ROA not before: Mon 15 Apr 2024 08:43:47 +0000
ROA not after: Tue 15 Apr 2025 07:02:50 +0000
asID: 7641
IP address blocks: 42.204.0.0/14 maxlen: 24
103.8.204.0/22 maxlen: 24
112.128.0.0/14 maxlen: 24
150.242.52.0/22 maxlen: 24
211.89.0.0/16 maxlen: 24
211.156.128.0/19 maxlen: 24
223.162.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 May 2024 08:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA
Validity
Not Before: Apr 15 08:43:47 2024 GMT
Not After : Apr 15 07:02:50 2025 GMT
Subject: CN=190C71BB0790F0A0BBD7C3BABCD01A8508705221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fb:d9:69:b6:f9:fc:04:1d:92:f6:4e:c3:76:
12:b2:22:1c:2e:e6:f1:1c:7e:3f:1e:46:6c:72:14:
7e:d4:73:e6:c5:94:87:2d:87:ce:88:49:ac:2f:62:
9a:b1:5b:bb:30:3b:36:c4:d1:ef:bb:ac:bb:2e:73:
01:80:1a:84:7f:5a:f4:9b:0e:36:99:81:ca:12:8f:
5d:3f:6d:27:c2:fe:97:bc:66:7b:02:21:4f:4c:b2:
f0:78:a7:f6:2c:6b:e1:30:c5:ea:03:d5:da:49:20:
57:78:53:0d:66:1b:7f:6d:60:b2:6a:b7:7f:66:71:
60:8e:f1:5b:00:e9:c2:ab:a4:a1:5a:db:38:06:76:
c5:e2:d1:06:5d:e7:68:ef:ad:12:95:00:3a:e4:35:
1c:66:a6:d9:3f:7a:fd:c7:73:3a:aa:ea:95:76:bb:
89:1d:69:98:cd:9f:d4:f3:9d:18:e4:45:91:70:c8:
8d:17:19:c1:b3:99:a5:e1:b7:a4:77:c2:5c:17:bf:
81:ce:a4:6f:21:39:99:2c:bc:e2:ca:d1:3d:16:28:
e1:02:d1:21:2c:87:60:89:7a:70:b9:3d:d6:f7:39:
ad:ac:bc:09:77:59:c8:2a:c5:9e:94:aa:6e:a9:e3:
7a:20:b5:a5:c1:76:3f:c1:ac:aa:2f:01:c1:a3:9a:
d2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0C:71:BB:07:90:F0:A0:BB:D7:C3:BA:BC:D0:1A:85:08:70:52:21
X509v3 Authority Key Identifier:
keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/GQxxuweQ8KC718O6vNAahQhwUiE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.204.0.0/14
103.8.204.0/22
112.128.0.0/14
150.242.52.0/22
211.89.0.0/16
211.156.128.0/19
223.162.0.0/15
Signature Algorithm: sha256WithRSAEncryption
62:39:0c:dc:e2:8e:93:3e:1b:82:3e:82:a6:cb:61:1c:01:eb:
3b:31:64:bd:47:ca:bd:05:de:18:26:7d:41:37:3f:59:01:4c:
f3:be:37:27:52:8e:32:6a:71:7b:91:d5:ca:8b:ff:74:55:cf:
b0:9a:eb:49:27:a7:03:33:c5:a7:92:32:e3:28:03:b1:99:67:
7b:25:fe:79:17:75:c0:d9:9e:40:91:8b:31:a9:9a:69:b4:ad:
d4:46:ae:25:c0:73:7e:3e:34:54:32:b6:4b:70:f0:15:12:e1:
82:25:db:d5:44:a4:47:cb:56:e0:82:9e:72:44:35:9d:3b:71:
c5:80:15:03:4f:12:de:d1:64:72:e7:c2:fc:c7:a7:3d:f5:b9:
69:8a:d7:30:84:3c:7b:80:06:6e:a1:a3:b4:61:5b:86:1d:1e:
a2:00:8b:be:a7:2d:f9:1e:db:c3:91:4a:9a:18:8e:ca:04:4b:
10:0d:71:bf:85:be:af:48:f9:1b:50:4e:d4:39:94:5d:06:fc:
f5:93:a5:07:6b:1f:ac:c7:c2:b7:25:ab:61:4a:50:3e:a5:48:
0e:e8:9a:4f:27:f1:e2:89:50:5f:b6:37:7e:cf:92:0b:f1:e8:
1c:c4:b9:2e:b0:af:94:10:ac:8d:ac:08:cf:1d:02:8f:ee:82:
3e:86:da:05
-----BEGIN CERTIFICATE-----
MIIE8jCCA9qgAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyQzAz
MTRERkRFRDQxQUI2MTFEOTlGNTQyMDYzOTgyRkUzODA4MEJBMB4XDTI0MDQxNTA4
NDM0N1oXDTI1MDQxNTA3MDI1MFowMzExMC8GA1UEAxMoMTkwQzcxQkIwNzkwRjBB
MEJCRDdDM0JBQkNEMDFBODUwODcwNTIyMTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOb72Wm2+fwEHZL2TsN2ErIiHC7m8Rx+Px5GbHIUftRz5sWUhy2H
zohJrC9imrFbuzA7NsTR77usuy5zAYAahH9a9JsONpmByhKPXT9tJ8L+l7xmewIh
T0yy8Hin9ixr4TDF6gPV2kkgV3hTDWYbf21gsmq3f2ZxYI7xWwDpwqukoVrbOAZ2
xeLRBl3naO+tEpUAOuQ1HGam2T96/cdzOqrqlXa7iR1pmM2f1POdGORFkXDIjRcZ
wbOZpeG3pHfCXBe/gc6kbyE5mSy84srRPRYo4QLRISyHYIl6cLk91vc5ray8CXdZ
yCrFnpSqbqnjeiC1pcF2P8Gsqi8BwaOa0jUCAwEAAaOCAg8wggILMB0GA1UdDgQW
BBQZDHG7B5DwoLvXw7q80BqFCHBSITAfBgNVHSMEGDAWgBQsAxTf3tQathHZn1Qg
Y5gv44CAujAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO
oEyGSnJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9M
QU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY3JsMGMGCCsGAQUFBwEBBFcwVTBT
BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw
MDAwL0xBTVUzOTdVR3JZUjJaOVVJR09ZTC1PQWdMby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtp
LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzL0dReHh1d2VROEtDNzE4TzZ2
TkFhaFFod1VpRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5j
bi9ycmRwL25vdGlmeS54bWwwPwYIKwYBBQUHAQcBAf8EMDAuMCwEAgABMCYDAwIq
zAMEAmcIzAMDAnCAAwQClvI0AwMA01kDBAXTnIADAwHfojANBgkqhkiG9w0BAQsF
AAOCAQEAYjkM3OKOkz4bgj6CpsthHAHrOzFkvUfKvQXeGCZ9QTc/WQFM8743J1KO
Mmpxe5HVyov/dFXPsJrrSSenAzPFp5Iy4ygDsZlneyX+eRd1wNmeQJGLMamaabSt
1EauJcBzfj40VDK2S3DwFRLhgiXb1USkR8tW4IKeckQ1nTtxxYAVA08S3tFkcufC
/MenPfW5aYrXMIQ8e4AGbqGjtGFbhh0eogCLvqct+R7bw5FKmhiOygRLEA1xv4W+
r0j5G1BO1DmUXQb89ZOlB2sfrMfCtyWrYUpQPqVIDuiaTyfx4olQX7Y3fs+SC/Ho
HMS5LrCvlBCsjawIzx0Cj+6CPobaBQ==
-----END CERTIFICATE-----
Generated at Thu May 16 11:16:31 2024 by rpki-client on console-fra.rpki-client.org