Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/AIuewynb54ZMkxONII4eh9SKNRg.roa
File: AIuewynb54ZMkxONII4eh9SKNRg.roa (raw, json)
Hash identifier: Ms8el2Rfb573dhcb0S1SpwM0xfJGEMGBbh/dLfK4fb4=
Subject key identifier: 00:8B:9E:C3:29:DB:E7:86:4C:93:13:8D:20:8E:1E:87:D4:8A:35:18
Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Certificate serial: 04B4
Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/AIuewynb54ZMkxONII4eh9SKNRg.roa
Signing time: Fri 08 Sep 2023 16:09:29 +0000
ROA not before: Fri 08 Sep 2023 16:09:29 +0000
ROA not after: Sat 10 Aug 2024 07:41:13 +0000
asID: 62387
IP address blocks: 123.98.76.0/22 maxlen: 24
123.98.84.0/22 maxlen: 24
211.149.48.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1204 (0x4b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Validity
Not Before: Sep 8 16:09:29 2023 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=008B9EC329DBE7864C93138D208E1E87D48A3518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:48:82:1b:dd:f0:3a:d4:a4:43:75:25:6a:10:
7b:a8:39:75:e4:ee:1d:3f:84:4e:c2:28:ac:3c:9e:
01:a5:2f:5e:fd:23:5e:65:4a:ba:38:6c:7a:db:19:
01:06:66:82:2f:36:fd:ef:e5:d2:64:7a:eb:9b:63:
19:88:56:2f:c5:d9:ad:d7:f1:ed:93:4d:4b:04:ee:
5b:a1:3d:5a:72:ac:5c:00:8a:c6:ea:e8:a9:4e:68:
05:d3:d7:1c:73:58:c2:0c:cc:46:32:e2:b8:cf:93:
fc:bf:70:c7:e3:7a:1e:c5:f7:b2:f8:30:a4:d8:34:
fd:9a:0d:f3:7e:98:16:60:a8:ca:6d:89:1f:e6:74:
f9:ba:a1:4f:af:8f:06:86:12:74:f9:97:35:bd:a7:
30:31:a0:f0:ba:6e:55:47:06:0a:e4:61:00:0c:9c:
20:7a:77:d3:7b:36:09:7a:1b:48:32:62:4c:07:2a:
27:97:25:17:36:71:cc:cc:bb:01:99:32:73:23:73:
6b:27:7a:c4:50:b2:55:04:04:21:d3:a2:f9:f8:27:
30:ea:5a:6f:17:36:bd:67:4f:ef:b1:e4:e2:e8:50:
9e:0b:29:38:47:6e:ba:27:d2:db:27:af:64:bb:1c:
6b:00:80:3b:44:79:b0:60:e5:b6:fd:5a:28:fe:6e:
dd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8B:9E:C3:29:DB:E7:86:4C:93:13:8D:20:8E:1E:87:D4:8A:35:18
X509v3 Authority Key Identifier:
keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/AIuewynb54ZMkxONII4eh9SKNRg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.98.76.0/22
123.98.84.0/22
211.149.48.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:43:af:fe:d3:28:da:bd:b8:e4:b5:2e:b5:58:8a:45:67:05:
66:33:66:34:4e:ed:a3:3a:57:70:98:94:99:02:70:f7:b7:38:
7d:85:ef:de:eb:31:37:91:ce:3a:5f:ee:5b:8a:c6:4b:ac:a2:
88:31:56:d9:3b:b7:5a:a0:ed:53:d3:4f:23:66:e1:c6:7b:b6:
42:1d:e6:d2:f8:be:5c:aa:ac:aa:c6:9a:6d:09:63:a5:44:9e:
a9:f6:4d:1b:46:76:0a:39:a5:b8:07:1d:cb:23:55:10:42:c9:
21:fe:ed:85:e4:66:8c:c3:8e:2d:99:7c:5c:64:10:41:d0:10:
64:c8:67:88:84:c3:07:dc:ee:8c:ec:81:a1:e8:0f:7b:fb:5f:
50:7d:85:e6:5d:e3:f1:e5:7e:54:c4:5c:a2:59:b4:a1:52:96:
3d:d0:06:0e:41:de:b1:49:66:a9:7c:ea:24:4f:e3:ae:4d:01:
eb:92:94:ae:4e:c4:41:80:f4:25:d2:e9:11:25:06:ee:f1:86:
98:80:72:dd:d8:ee:70:2c:12:4e:87:ed:fc:c7:17:75:f7:34:
76:85:3f:ca:a2:27:4a:a0:8b:51:63:9c:ae:8b:3b:c7:15:9e:
d6:f9:7b:4b:43:c2:24:e3:7e:2b:6a:b8:31:17:03:91:47:b5:
72:c3:81:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 25 10:44:04 2023 by rpki-client on console-fra.rpki-client.org