Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/_wF_AQUcY_Hc6a50HQEfLBT4d7A.roa
File: _wF_AQUcY_Hc6a50HQEfLBT4d7A.roa (raw, json)
Hash identifier: c4mLhg7u6KBh9JhjS8tzeM7zAAve+M9dc2Evy4FXG+s=
Subject key identifier: FF:01:7F:01:05:1C:63:F1:DC:E9:AE:74:1D:01:1F:2C:14:F8:77:B0
Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Certificate serial: 0BD3
Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/_wF_AQUcY_Hc6a50HQEfLBT4d7A.roa
Signing time: Mon 05 Aug 2024 03:43:34 +0000
ROA not before: Mon 05 Aug 2024 03:43:34 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 215784
IP address blocks: 123.98.0.0/22 maxlen: 24
211.149.32.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 08:53:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3027 (0xbd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Validity
Not Before: Aug 5 03:43:34 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=FF017F01051C63F1DCE9AE741D011F2C14F877B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bf:a4:d4:23:ca:50:1b:a5:62:bf:c2:45:8e:
62:0a:0d:ae:6f:2e:d9:6c:86:3b:17:ce:26:48:2f:
7e:57:e6:8f:46:b4:da:ef:28:e6:2a:a7:68:5e:7e:
10:f5:02:54:69:05:71:23:7b:08:31:43:c7:ea:2a:
d4:9c:cb:bb:12:81:ae:90:b7:74:29:4a:97:13:b5:
28:9f:95:1f:c6:f9:a5:ee:97:54:69:c6:fd:51:cd:
be:28:e3:03:9d:b4:c1:fb:8e:4d:44:e5:1c:7f:5c:
1f:68:4b:aa:bb:57:b9:14:77:b3:f8:9d:95:03:17:
f2:f6:1a:ed:a3:5f:04:bc:82:ea:85:03:33:46:50:
5e:ed:d5:e1:a2:a8:3d:5d:96:7a:8f:30:75:f4:67:
10:af:dc:38:8e:13:0a:4d:66:3c:c3:44:3a:f8:2c:
a5:b7:9b:ac:38:e7:78:75:57:6a:b4:d2:ec:7e:a8:
aa:85:8e:4e:3b:21:1a:39:4c:ba:b5:8a:9d:45:04:
79:7b:63:7b:53:59:79:eb:f8:03:ee:68:6c:3f:b8:
7c:98:51:b5:93:ac:50:c4:d6:91:45:d8:a9:3e:e2:
c3:b5:46:75:e4:1f:b1:dc:b6:de:ac:17:1b:f5:ac:
6e:ea:e7:dd:ba:f3:79:7a:db:3b:18:c5:4b:1f:7c:
f0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:01:7F:01:05:1C:63:F1:DC:E9:AE:74:1D:01:1F:2C:14:F8:77:B0
X509v3 Authority Key Identifier:
keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/_wF_AQUcY_Hc6a50HQEfLBT4d7A.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.98.0.0/22
211.149.32.0/22
Signature Algorithm: sha256WithRSAEncryption
de:6c:1d:8d:20:fa:f5:c9:80:bc:36:58:27:1a:f9:a6:c4:53:
bd:46:1d:a6:d1:82:6a:52:7f:50:af:2f:10:e8:59:af:8a:ac:
af:d4:42:0c:f1:06:f8:44:8f:9f:db:61:b4:c4:e7:84:e0:90:
7f:4f:b5:78:d2:7d:00:ee:78:83:00:54:cf:21:97:0a:80:1c:
33:5d:24:3c:25:1b:d9:ec:eb:93:68:bf:61:53:da:b8:a7:d5:
d2:54:c4:c7:8e:b0:9c:68:34:7e:e3:92:95:34:67:97:05:5d:
1f:45:71:b4:81:f7:92:08:0b:65:ee:11:1d:eb:d4:09:b4:94:
97:fc:69:7c:8c:fa:9d:48:6d:db:05:7c:eb:b7:d0:c8:4b:8c:
78:22:1e:8d:e3:77:c6:ea:da:f0:fb:a6:28:5a:8a:48:32:1d:
b5:05:bf:d3:f3:f4:00:2f:9d:ae:e6:07:69:ac:18:03:ae:b7:
5c:1d:38:31:3b:70:c9:c3:f4:b8:fb:29:c7:1b:cd:a7:d6:22:
13:16:d8:10:5a:11:9b:c1:6e:16:e7:69:42:24:36:bd:6a:3f:
7b:c0:56:26:76:45:1d:89:88:41:03:9c:a8:63:14:cc:ed:35:
58:aa:08:22:ba:5e:1d:d6:ff:f6:78:ab:30:26:79:ca:80:27:
4b:50:c6:46
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Aug 28 11:56:58 2024 by rpki-client on console-fra.rpki-client.org