Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/s1qjxC9uX81QEQvIQK6q5_Q5Z0g.roa
File: s1qjxC9uX81QEQvIQK6q5_Q5Z0g.roa (raw, json)
Hash identifier: qzBGDez/luLjlY9/Ts3rIcR3UCIXFEGvIoJ+WQyBqIo=
Subject key identifier: B3:5A:A3:C4:2F:6E:5F:CD:50:11:0B:C8:40:AE:AA:E7:F4:39:67:48
Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Certificate serial: 0588
Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/s1qjxC9uX81QEQvIQK6q5_Q5Z0g.roa
Signing time: Thu 12 Oct 2023 03:55:36 +0000
ROA not before: Thu 12 Oct 2023 03:55:36 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 34549
IP address blocks: 123.98.64.0/22 maxlen: 24
123.98.72.0/22 maxlen: 24
123.98.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1416 (0x588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA
Validity
Not Before: Oct 12 03:55:36 2023 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=B35AA3C42F6E5FCD50110BC840AEAAE7F4396748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b3:16:43:9d:e3:d5:15:1a:98:45:06:5f:fe:
77:12:db:ea:36:d3:81:22:0f:db:fb:86:ad:ff:ef:
89:c3:93:8b:62:6d:7e:b2:42:77:e5:63:fd:46:da:
a5:74:96:c3:50:33:af:f0:d1:23:13:c3:19:c5:ae:
5f:78:ff:13:07:4d:ae:57:bf:a5:75:9d:2c:ff:ea:
ec:05:1b:6a:59:1c:f7:19:45:bc:cf:5b:f0:ca:0d:
9d:27:0a:50:30:6b:29:d8:b1:39:90:07:43:d7:9c:
35:24:f1:da:39:95:99:16:b4:70:5d:dd:c3:4f:f6:
4e:8e:f9:0f:c1:b9:05:5e:3c:57:9f:3c:03:3e:13:
7e:05:f3:8c:18:8e:86:48:ba:64:85:28:66:d0:06:
67:a4:c4:89:8a:a0:fa:a5:30:96:bb:d3:64:48:23:
9e:19:0c:86:8c:1a:8d:85:89:75:a5:c9:59:82:05:
9f:c9:8d:17:80:33:28:c7:94:b3:93:8d:bb:a0:b2:
bd:7c:a9:0d:44:d4:2a:2c:5c:6e:8e:ba:a1:75:ff:
4a:76:38:e0:30:d8:14:dd:94:d2:57:8b:36:5c:dc:
7c:4e:b1:92:a5:be:f2:04:35:f8:70:4b:2c:2c:43:
af:d4:a0:a7:3d:cb:6c:59:41:24:7d:e6:5c:22:31:
d6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5A:A3:C4:2F:6E:5F:CD:50:11:0B:C8:40:AE:AA:E7:F4:39:67:48
X509v3 Authority Key Identifier:
keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/s1qjxC9uX81QEQvIQK6q5_Q5Z0g.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.98.64.0/22
123.98.72.0/22
123.98.102.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:3a:75:ee:de:0a:ea:17:36:dc:e0:7e:e7:3a:a0:07:a7:a0:
3b:ed:e0:ee:1a:d4:3e:c4:38:49:18:b2:5c:fe:e2:e1:e5:49:
8e:80:ba:6b:88:41:d5:37:b1:3a:cd:10:d3:bd:e1:b8:a6:b6:
34:b0:d8:fe:e8:e6:30:00:74:6e:d5:28:b9:17:48:a2:eb:da:
22:81:4d:0c:39:fb:09:62:ac:d3:7f:77:b5:42:cc:1a:0f:67:
75:1f:3e:88:43:66:54:7e:90:ee:aa:85:5d:55:0d:8e:c7:7d:
db:5f:24:34:57:dc:0b:76:39:da:25:58:f4:f6:41:70:da:ca:
63:90:4e:3b:4b:b0:05:52:de:a9:c4:25:32:15:5f:47:56:8d:
3e:a8:a7:69:01:eb:ce:83:c0:f3:3d:51:0e:9e:d7:92:49:df:
45:56:96:f8:b8:c8:f5:06:3a:4a:0a:fb:fe:9b:fa:5b:cb:fd:
62:ec:3e:bf:08:97:d0:f1:e4:17:2d:1f:0d:a1:a6:97:dd:40:
e0:07:9d:53:ee:39:72:09:7a:2b:84:5e:63:96:c6:69:52:5b:
c1:ed:06:49:c7:e1:d3:aa:5a:ca:38:9a:17:b5:a8:cc:ef:49:
60:54:62:ab:7b:f1:14:ff:be:42:b7:56:9d:9c:aa:96:d3:78:
c5:20:72:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 7 03:36:48 2023 by rpki-client on console-ams.rpki-client.org