Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/kAld4Y_EeoRsijBOWNSacGeipbA.roa
File: kAld4Y_EeoRsijBOWNSacGeipbA.roa (raw, json)
Hash identifier: pVmOiA2Enfe7Ohz5MEMFGE5STXiskT49DTxydQOzPC0=
Subject key identifier: 90:09:5D:E1:8F:C4:7A:84:6C:8A:30:4E:58:D4:9A:70:67:A2:A5:B0
Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Certificate serial: 0D71
Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/kAld4Y_EeoRsijBOWNSacGeipbA.roa
Signing time: Thu 03 Oct 2024 15:06:51 +0000
ROA not before: Thu 03 Oct 2024 15:06:51 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 215784
IP address blocks: 123.98.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 04:13:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3441 (0xd71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Validity
Not Before: Oct 3 15:06:51 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=90095DE18FC47A846C8A304E58D49A7067A2A5B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:66:11:ac:1d:66:11:02:f3:22:11:c4:52:25:
6c:13:74:c9:27:10:1a:3f:1d:a8:e3:c0:e1:57:67:
6e:07:be:65:98:a0:f3:78:8a:03:81:e1:74:1b:e3:
d7:db:53:95:53:9b:80:d4:1c:4c:83:82:af:5f:99:
6b:c1:d4:e7:31:5e:1e:cd:7c:36:68:0e:24:13:20:
0a:48:1c:8f:f3:37:ec:00:95:96:10:f9:9a:86:9e:
81:ab:76:ef:9a:16:da:c7:3a:c0:ac:4d:f8:69:8b:
b6:aa:d9:05:33:40:d3:5e:0b:50:4b:a2:eb:04:bd:
f2:ad:39:19:f1:c9:30:c3:c5:39:3d:e2:2a:b9:c3:
9c:71:6c:b1:f2:36:30:23:67:31:c5:82:e5:78:e4:
02:6f:3c:1e:01:14:34:bd:2e:2f:4d:15:ab:76:dc:
23:1b:f2:bd:47:a4:39:bf:88:2d:e7:b6:19:c7:22:
cb:82:9c:8c:88:54:69:35:25:77:d0:7b:3f:75:af:
87:14:2a:d4:9a:35:df:43:29:5e:fa:9d:dd:36:87:
1b:eb:ae:8c:72:08:60:ac:8a:0b:fb:9d:74:0a:26:
34:26:ea:73:a2:1f:06:2e:47:15:2a:8c:eb:01:90:
73:6c:cd:7e:fd:ce:4a:d0:c1:94:68:2e:6f:a6:e9:
c4:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:09:5D:E1:8F:C4:7A:84:6C:8A:30:4E:58:D4:9A:70:67:A2:A5:B0
X509v3 Authority Key Identifier:
keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/kAld4Y_EeoRsijBOWNSacGeipbA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.98.80.0/22
Signature Algorithm: sha256WithRSAEncryption
d7:09:89:47:0b:60:04:ff:c9:ba:6d:fd:34:03:e8:77:58:7a:
89:61:6d:02:75:d6:b2:06:91:f3:34:83:53:67:d1:c8:00:04:
2f:dc:44:d5:6e:bb:6e:0b:59:e4:33:fd:05:fb:c5:bf:88:4e:
8e:59:c3:e7:0e:a1:04:70:d9:c6:3f:c0:6f:0d:a3:c1:ea:a6:
d0:1e:c5:6c:48:59:51:d0:53:9b:79:11:2c:a5:9d:65:c1:0a:
9c:77:3e:52:c9:86:af:af:29:fd:a3:02:16:73:55:3d:85:b4:
b1:78:21:6f:d5:9b:9b:96:f0:7b:c6:58:a7:f2:92:bb:2c:a4:
6d:ee:4f:fc:49:45:65:ca:99:2c:fc:55:a5:63:65:aa:08:ab:
a7:34:da:fa:16:40:59:5c:ff:01:97:72:1e:b6:ae:b0:94:68:
c0:7d:6e:3d:ec:58:82:6f:95:0d:b7:67:1f:a2:15:c3:eb:79:
ef:9b:b5:04:f1:2f:15:91:4a:10:46:ff:ba:92:fd:96:e4:a5:
c9:84:cc:03:ee:93:bb:99:8b:7a:23:f5:80:e4:46:e2:80:2e:
a3:75:ca:dc:d6:15:a6:3e:19:12:4e:80:6a:59:a5:17:7f:ba:
ca:b4:a4:c1:72:4f:6a:a9:9a:e6:4d:27:33:92:b1:66:c4:bb:
36:3b:ec:bc
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1
QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNDEwMDMx
NTA2NTFaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDkwMDk1REUxOEZDNDdB
ODQ2QzhBMzA0RTU4RDQ5QTcwNjdBMkE1QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYZhGsHWYRAvMiEcRSJWwTdMknEBo/HajjwOFXZ24HvmWYoPN4
igOB4XQb49fbU5VTm4DUHEyDgq9fmWvB1OcxXh7NfDZoDiQTIApIHI/zN+wAlZYQ
+ZqGnoGrdu+aFtrHOsCsTfhpi7aq2QUzQNNeC1BLousEvfKtORnxyTDDxTk94iq5
w5xxbLHyNjAjZzHFguV45AJvPB4BFDS9Li9NFat23CMb8r1HpDm/iC3nthnHIsuC
nIyIVGk1JXfQez91r4cUKtSaNd9DKV76nd02hxvrroxyCGCsigv7nXQKJjQm6nOi
HwYuRxUqjOsBkHNszX79zkrQwZRoLm+m6cQnAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUkAld4Y/EeoRsijBOWNSacGeipbAwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l
qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz
L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL2tBbGQ0WV9FZW9Sc2lq
Qk9XTlNhY0dlaXBiQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAJ7YlAwDQYJKoZIhvcNAQELBQADggEBANcJiUcLYAT/ybpt/TQD6HdYeolhbQJ1
1rIGkfM0g1Nn0cgABC/cRNVuu24LWeQz/QX7xb+ITo5Zw+cOoQRw2cY/wG8No8Hq
ptAexWxIWVHQU5t5ESylnWXBCpx3PlLJhq+vKf2jAhZzVT2FtLF4IW/Vm5uW8HvG
WKfykrsspG3uT/xJRWXKmSz8VaVjZaoIq6c02voWQFlc/wGXch62rrCUaMB9bj3s
WIJvlQ23Zx+iFcPree+btQTxLxWRShBG/7qS/ZbkpcmEzAPuk7uZi3oj9YDkRuKA
LqN1ytzWFaY+GRJOgGpZpRd/usq0pMFyT2qpmuZNJzOSsWbEuzY77Lw=
-----END CERTIFICATE-----
Generated at Thu Oct 10 08:31:18 2024 by rpki-client on console-ams.rpki-client.org