Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/479/tamJWfQ6Cwf-hl9DrSbmVBR7OoM.roa
File: tamJWfQ6Cwf-hl9DrSbmVBR7OoM.roa (raw, json)
Hash identifier: 24Hshad6eG4wibwu1b+R/8jXZ4rqx1G4ZuFhrtVwmOc=
Subject key identifier: B5:A9:89:59:F4:3A:0B:07:FE:86:5F:43:AD:26:E6:54:14:7B:3A:83
Certificate issuer: /CN=025E2D794E6FFAE295BACE491100E3D18B9C7141
Certificate serial: 06DC
Authority key identifier: 02:5E:2D:79:4E:6F:FA:E2:95:BA:CE:49:11:00:E3:D1:8B:9C:71:41
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/tamJWfQ6Cwf-hl9DrSbmVBR7OoM.roa
Signing time: Thu 18 May 2023 07:25:48 +0000
ROA not before: Thu 18 May 2023 07:25:48 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 38283
IP address blocks: 60.247.128.0/17 maxlen: 24
211.149.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:23:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1756 (0x6dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025E2D794E6FFAE295BACE491100E3D18B9C7141
Validity
Not Before: May 18 07:25:48 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=B5A98959F43A0B07FE865F43AD26E654147B3A83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2c:a4:c3:8a:01:00:c3:bc:bc:fe:e3:38:e5:
b2:c4:4b:2f:bb:d5:50:d7:1a:30:4b:42:d8:56:4f:
1f:52:4e:33:14:26:f0:a1:0a:cd:3d:bc:80:d9:b2:
e5:70:90:aa:e7:36:2a:19:30:c1:c7:0c:56:cc:2a:
2a:37:1f:2c:f0:c5:f5:5b:3b:59:20:b1:37:57:85:
33:e8:8c:20:12:cc:32:0a:4a:dd:a4:ee:a0:08:71:
09:fa:19:07:48:b7:67:5b:56:31:e8:f6:67:71:d5:
6a:89:9c:84:c1:77:2b:6e:4e:2a:40:16:fe:f2:d0:
bb:c2:98:2f:13:32:b4:8e:58:ec:58:25:02:df:7c:
dc:a5:4b:2d:2e:f5:1f:87:f1:29:94:7a:8a:e3:79:
82:53:b9:7a:4c:4c:5e:6e:4a:10:8c:e3:fd:f0:a2:
4f:aa:1a:e7:40:fc:0d:e0:44:34:27:23:bf:03:ca:
34:5e:72:94:54:0c:98:39:7a:93:f4:e7:fa:77:aa:
cf:15:e5:1f:4e:d1:ea:f8:17:74:e0:59:10:20:d8:
8f:47:54:26:c0:00:7e:15:ce:65:fe:17:ca:76:ae:
29:49:0f:87:a2:64:20:e7:94:f4:9e:30:8c:7b:55:
f4:cb:87:6d:19:f3:67:8d:21:ac:88:d5:9c:fc:b6:
37:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A9:89:59:F4:3A:0B:07:FE:86:5F:43:AD:26:E6:54:14:7B:3A:83
X509v3 Authority Key Identifier:
keyid:02:5E:2D:79:4E:6F:FA:E2:95:BA:CE:49:11:00:E3:D1:8B:9C:71:41
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/Al4teU5v-uKVus5JEQDj0YuccUE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Al4teU5v-uKVus5JEQDj0YuccUE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/479/tamJWfQ6Cwf-hl9DrSbmVBR7OoM.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.247.128.0/17
211.149.128.0/17
Signature Algorithm: sha256WithRSAEncryption
0d:d4:22:54:0a:2a:f6:b2:55:78:dc:00:87:45:d1:05:72:2a:
83:a4:e5:84:7b:03:8d:ec:c9:45:12:4e:d8:83:e0:98:47:2b:
67:64:a6:22:27:7d:ae:dc:66:99:7a:53:48:70:ec:d3:af:2f:
f9:19:78:05:9f:c5:bd:90:3c:f2:c9:a3:d6:2a:1e:59:42:d4:
82:2d:70:6d:19:e4:70:70:f2:c4:56:bc:d2:98:da:aa:ae:98:
1e:f8:90:93:c7:13:e7:cb:68:e3:6f:7f:d9:c3:1b:05:8b:5f:
3e:63:64:36:ee:e8:68:0e:aa:5a:19:0c:9d:bd:70:a8:3b:cc:
92:52:23:3f:4c:5d:93:12:37:5f:70:83:6b:30:ee:ba:fc:59:
50:88:b0:c1:be:94:66:df:52:a3:98:47:f7:7b:86:ee:68:4a:
37:7e:3e:f4:1f:c3:f7:61:19:96:3b:9e:29:ac:7d:b2:38:e3:
06:49:e6:e4:57:19:9e:04:10:bc:8e:e0:29:79:6a:de:c4:18:
17:c7:81:16:5f:c4:01:35:0f:21:b0:06:9c:0c:ad:19:88:ae:
e6:42:46:0d:41:67:11:bf:79:aa:9f:71:2b:4e:d0:fa:64:40:
12:17:62:4a:30:95:59:bd:d8:95:4d:0d:9b:a8:d6:cc:36:f8:
49:c5:e9:54
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Mar 13 04:11:40 2024 by rpki-client on console-ams.rpki-client.org