Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/lGFvQi7TpgIA0C6PqS1-X-fMkyY.roa
File: lGFvQi7TpgIA0C6PqS1-X-fMkyY.roa (raw, json)
Hash identifier: JhYz4t4PYSFirYz2HpVxTq0OBaR4s4Nr9j373gOj5iU=
Subject key identifier: 94:61:6F:42:2E:D3:A6:02:00:D0:2E:8F:A9:2D:7E:5F:E7:CC:93:26
Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Certificate serial: 0C81
Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/lGFvQi7TpgIA0C6PqS1-X-fMkyY.roa
Signing time: Sun 01 Sep 2024 11:37:28 +0000
ROA not before: Sun 01 Sep 2024 11:37:28 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 215784
IP address blocks: 211.149.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 13:22:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3201 (0xc81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Validity
Not Before: Sep 1 11:37:28 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=94616F422ED3A60200D02E8FA92D7E5FE7CC9326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ea:0c:e0:e6:0e:22:8b:81:27:e7:a9:ca:97:
74:ed:a9:d8:82:b8:b4:8c:ab:78:9c:c6:05:ad:44:
23:c8:a4:01:ba:bc:31:d2:4d:3b:6a:94:25:a9:fc:
02:18:28:7a:ea:33:4a:b8:7d:7b:0a:1d:87:f1:a7:
5c:db:eb:c9:e2:46:3f:96:1d:f2:7c:43:74:94:fe:
78:c6:73:f0:a0:34:52:ee:4e:f7:ba:5b:47:1c:48:
c3:94:6b:d5:69:fe:4c:da:e9:c3:da:09:68:8f:dc:
fb:e4:18:69:b6:8c:9f:dd:9c:bd:1c:57:7f:1c:44:
39:cc:09:25:71:6d:46:65:50:d6:f3:d3:13:99:38:
ac:4a:75:2c:d2:db:dc:38:44:41:b5:f1:5a:d2:65:
87:0f:d5:cd:ca:e0:8b:65:47:a0:75:49:e9:f4:c9:
11:b9:05:66:d1:e3:22:4e:a7:47:3c:59:90:65:1f:
8e:ca:b8:83:32:3e:f2:c2:d5:69:d8:6a:b0:d6:99:
ba:cc:c5:74:f8:d9:63:20:1e:8f:d6:1f:67:86:ef:
e8:a4:bd:1d:52:ab:bf:d5:e9:59:ac:bd:4d:f2:36:
42:0b:67:25:ff:a1:f3:7b:e0:45:26:3f:57:f4:d2:
80:74:08:83:0a:e2:a4:53:13:4c:8f:90:f8:20:d8:
b9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:61:6F:42:2E:D3:A6:02:00:D0:2E:8F:A9:2D:7E:5F:E7:CC:93:26
X509v3 Authority Key Identifier:
keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/lGFvQi7TpgIA0C6PqS1-X-fMkyY.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.149.64.0/22
Signature Algorithm: sha256WithRSAEncryption
56:3f:a8:7e:8f:38:23:7f:14:c0:53:e9:9f:bd:c4:17:64:41:
67:ec:51:a6:1b:a6:75:fb:c0:e4:a5:1b:16:9b:15:15:78:45:
c7:43:aa:db:8a:50:c4:38:0e:e9:c9:64:52:55:75:66:b7:51:
76:69:80:13:5f:76:b4:f7:d0:5b:37:78:fd:18:1a:63:dc:58:
e0:c3:68:9f:59:0d:a0:91:20:d7:9e:b5:4b:a5:40:a2:3c:5d:
40:1c:fd:d4:ee:b3:a7:97:ce:98:0a:d7:b1:2f:27:4f:8f:90:
a5:cf:37:25:27:c8:fc:66:43:9c:b7:59:de:ec:89:7c:d4:da:
47:15:57:04:0e:59:55:5b:19:d0:e1:b9:ff:03:f6:c8:6e:e7:
ca:1d:93:a0:4c:15:5c:a4:09:23:13:42:87:5b:ce:33:d4:4d:
aa:39:ce:17:98:1f:13:bd:e6:07:eb:70:18:81:2b:4d:a4:ed:
d1:9f:b8:69:0c:a9:de:f4:bb:27:dd:b3:e1:48:69:14:19:41:
84:d1:2a:cc:cc:31:58:97:5e:be:87:5f:a4:5f:e0:f7:50:64:
b1:99:98:99:54:ce:72:bf:5d:9e:06:5d:06:1d:5a:b4:5f:2f:
0e:c4:3d:90:c3:62:62:8e:68:ee:6e:9d:ff:95:fd:34:03:80:
57:c9:5c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 16:58:40 2024 by rpki-client on console-ams.rpki-client.org