Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/fw9JeSxzncmjV739yDEhsD0DhsY.roa
File: fw9JeSxzncmjV739yDEhsD0DhsY.roa (raw, json)
Hash identifier: DAnmaU3rM8lZcPgyb66y6QqLJdbS/hiBkKmd7vWsQc8=
Subject key identifier: 7F:0F:49:79:2C:73:9D:C9:A3:57:BD:FD:C8:31:21:B0:3D:03:86:C6
Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Certificate serial: 0917
Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/fw9JeSxzncmjV739yDEhsD0DhsY.roa
Signing time: Tue 26 Mar 2024 03:57:58 +0000
ROA not before: Tue 26 Mar 2024 03:57:58 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 34549
IP address blocks: 123.98.64.0/22 maxlen: 24
123.98.72.0/22 maxlen: 24
123.98.100.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 08:53:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2327 (0x917)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Validity
Not Before: Mar 26 03:57:58 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=7F0F49792C739DC9A357BDFDC83121B03D0386C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8d:79:f7:39:63:1d:d8:ad:f1:14:a1:cf:59:
13:11:0b:07:12:cf:8f:a1:fa:53:59:12:1b:1a:ed:
f9:57:0f:f5:8f:eb:e5:68:a8:b2:12:81:c6:a7:36:
d2:f5:e6:08:93:99:7f:7d:54:a6:70:77:b5:bb:34:
b8:24:89:99:9a:ee:72:e5:d8:cf:9b:8b:d9:66:2d:
5c:f2:1e:00:14:a3:ba:09:40:04:21:4b:ea:c8:ae:
5f:2b:af:7e:97:c7:4c:da:31:5f:89:2a:be:05:9c:
55:be:b4:0c:34:51:e9:56:f4:44:13:7d:f4:7b:c5:
08:bd:90:42:83:8c:5d:e0:fc:10:88:ec:56:28:c0:
1a:b8:51:62:78:2f:72:22:5f:42:76:f2:13:79:22:
b7:bf:3b:73:9a:b4:7c:a4:44:14:b1:47:91:c8:5e:
96:2b:4f:ae:7e:ab:7c:6e:01:ee:0a:e4:ec:8c:43:
57:c4:ee:8e:f2:3f:aa:1e:bf:2d:6f:04:2b:f3:31:
5e:4e:a4:3e:10:a6:69:b2:bf:8e:96:de:c6:cc:8f:
db:09:dd:e9:38:ec:8d:aa:ef:48:51:b0:28:dd:31:
97:6d:29:4d:b4:4d:ad:84:5d:c0:ee:33:6f:73:f1:
09:73:a0:0f:cd:24:3f:cf:f3:55:93:6f:5c:ec:3f:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0F:49:79:2C:73:9D:C9:A3:57:BD:FD:C8:31:21:B0:3D:03:86:C6
X509v3 Authority Key Identifier:
keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/fw9JeSxzncmjV739yDEhsD0DhsY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.98.64.0/22
123.98.72.0/22
123.98.100.0/23
Signature Algorithm: sha256WithRSAEncryption
37:62:b1:c3:dc:00:32:6a:00:c4:a9:58:91:13:4d:b7:3b:93:
79:7b:b1:84:a5:4a:ef:9d:aa:4f:e9:9f:1f:40:0a:77:e9:2d:
7f:fe:bc:85:9b:d1:f4:0a:7b:24:da:3b:73:cc:b5:8e:3d:52:
2c:0e:da:a0:3c:cf:b9:e5:5b:cd:b2:ba:ba:5a:5a:d7:62:2f:
21:d7:d8:52:92:76:6d:9a:76:9f:fd:1a:34:a2:c8:4a:e4:46:
72:c2:82:37:86:e3:0a:0a:aa:09:05:08:3c:b2:bc:50:21:98:
6e:54:bd:63:1a:cf:24:a1:d6:16:68:09:52:40:c2:eb:2c:f0:
3a:02:6c:c9:01:16:45:47:59:5e:a9:94:43:2b:7e:2d:84:4b:
2e:c0:25:73:76:c5:68:f5:18:4f:62:fc:c8:a2:d4:82:72:80:
23:b1:47:22:32:e9:f7:ca:1e:c0:be:3c:18:a6:f6:8b:4b:19:
5d:c9:d3:6f:06:3e:0a:59:b2:1d:88:1b:eb:73:70:61:31:2a:
61:aa:c3:0b:b3:47:b6:ae:66:a3:da:08:3e:19:17:28:db:2b:
8c:bc:3e:83:32:10:69:4f:e4:38:31:38:19:de:ad:6e:cb:83:
28:68:64:72:ce:57:0a:4a:c3:df:c8:9e:cd:21:2e:c8:75:9b:
8f:8e:20:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 11:56:59 2024 by rpki-client on console-fra.rpki-client.org