Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/jWihyAaERuAXwxXW_um1kd7V_-U.roa
File: jWihyAaERuAXwxXW_um1kd7V_-U.roa (raw, json)
Hash identifier: HCTc2lHpkw0VpqJm49sULhMacFlv7FhW2CftpZK2kyA=
Subject key identifier: 8D:68:A1:C8:06:84:46:E0:17:C3:15:D6:FE:E9:B5:91:DE:D5:FF:E5
Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Certificate serial: 0D67
Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/jWihyAaERuAXwxXW_um1kd7V_-U.roa
Signing time: Thu 03 Oct 2024 15:05:35 +0000
ROA not before: Thu 03 Oct 2024 15:05:35 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 215784
IP address blocks: 123.98.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 15:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3431 (0xd67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Validity
Not Before: Oct 3 15:05:35 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=8D68A1C8068446E017C315D6FEE9B591DED5FFE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:61:e1:af:2e:d8:9e:38:a5:f7:7f:7f:a4:2b:
06:42:fe:f6:d5:8f:1b:32:af:78:28:7e:b1:80:0c:
27:a5:a4:19:62:36:99:cf:60:f3:5a:47:25:66:c4:
1a:ea:e6:fb:1a:bc:8a:ba:36:ba:64:56:8d:4e:72:
d4:05:1b:4e:a3:57:a1:c7:93:d7:a5:a6:c7:67:55:
d8:14:04:3b:9d:f0:dd:7c:79:c6:b8:83:7e:b7:05:
78:8b:45:6d:cd:cd:92:bf:d0:da:10:1e:21:b5:39:
9c:e9:36:85:b4:34:a5:0f:9d:45:e2:45:90:e8:c1:
29:b1:28:b3:e3:1e:17:fd:17:38:d1:44:6a:36:6d:
2f:d8:c3:38:60:37:48:f0:d8:63:75:01:9c:5d:cf:
cc:ce:4f:40:47:9a:ea:04:62:fd:d1:18:42:81:af:
c0:7a:76:b0:14:57:48:19:5d:3e:e4:56:95:c2:f7:
14:e5:be:c2:b6:17:b1:88:b5:77:e5:05:98:2d:56:
81:d3:e0:af:8f:76:55:5b:57:fe:fb:a7:f1:1b:fe:
4b:53:73:a2:3d:f8:8e:9c:68:cc:33:ab:72:1c:8b:
15:28:d1:cf:a5:c6:78:04:8e:83:6f:8e:26:e2:37:
32:32:c5:89:28:e9:55:cf:6d:45:80:7c:af:d3:2c:
04:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:68:A1:C8:06:84:46:E0:17:C3:15:D6:FE:E9:B5:91:DE:D5:FF:E5
X509v3 Authority Key Identifier:
keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/jWihyAaERuAXwxXW_um1kd7V_-U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.98.48.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:3c:bc:8a:84:87:f4:39:06:aa:06:e9:0b:7e:86:07:2a:f1:
49:61:d0:4b:c6:9a:57:a7:9b:6b:5d:86:ed:6b:02:52:e2:e0:
6a:42:99:37:d3:b8:fb:64:86:2a:2a:56:c0:60:9f:d1:34:1b:
ed:02:80:5c:12:59:c4:7a:5e:58:ff:1f:33:cc:19:a6:5d:69:
f8:a6:b4:5e:7e:69:c9:16:44:89:84:e4:f1:e1:c0:a1:7f:59:
a8:8f:f6:5a:b8:57:51:f9:65:20:27:6e:92:99:3a:c8:14:07:
c8:87:a3:80:db:0f:63:11:4a:6f:0c:06:4c:eb:d9:96:77:0f:
e7:f9:3e:c2:07:2a:d0:c9:1d:cb:b7:9e:e7:bd:b5:bc:40:03:
64:d8:dd:f7:1b:3e:10:d6:92:d2:48:02:1f:ec:b9:97:7d:e3:
36:71:bf:5c:de:1f:dc:07:8d:14:d8:f9:94:9c:8e:26:f5:6a:
be:3b:40:58:e5:d0:46:e6:07:02:f4:3e:6c:4d:a3:86:4b:44:
30:75:70:ca:16:c8:77:91:b5:52:ca:5e:db:8d:fa:ed:8e:1b:
ea:df:3a:50:f0:a8:ef:55:89:15:ce:85:31:02:d3:9e:ba:3c:
2d:ac:53:af:d1:f2:57:bd:4e:59:51:34:a2:3d:72:e7:e2:bc:
8d:f8:14:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 19:27:09 2024 by rpki-client on console-ams.rpki-client.org