Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/497/XgPMnQZLo2ggXfcSjc4YrAEO2Mo.roa
File: XgPMnQZLo2ggXfcSjc4YrAEO2Mo.roa (raw, json)
Hash identifier: 0ER2kmC5dTwXUDv3cy+M97nTzf7Wugzd5uDzxKBLAEA=
Subject key identifier: 5E:03:CC:9D:06:4B:A3:68:20:5D:F7:12:8D:CE:18:AC:01:0E:D8:CA
Certificate issuer: /CN=46F8343DCDAD3AAC408560492C21B59D762BC456
Certificate serial: 1042
Authority key identifier: 46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/XgPMnQZLo2ggXfcSjc4YrAEO2Mo.roa
Signing time: Wed 24 May 2023 03:54:16 +0000
ROA not before: Wed 24 May 2023 03:54:16 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 56002
IP address blocks: 103.12.232.0/22 maxlen: 24
103.12.232.0/24 maxlen: 24
103.12.233.0/24 maxlen: 24
103.12.234.0/24 maxlen: 24
103.12.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:21:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4162 (0x1042)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46F8343DCDAD3AAC408560492C21B59D762BC456
Validity
Not Before: May 24 03:54:16 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=5E03CC9D064BA368205DF7128DCE18AC010ED8CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:bb:bd:ee:f1:56:0e:92:2e:74:42:87:ff:02:
ca:65:12:e1:a8:a0:e2:e0:e9:3d:3f:fe:1f:2d:c3:
f1:cf:eb:6f:dd:ef:42:7a:2f:cf:44:22:2c:8c:7a:
c2:1b:d6:96:1f:68:ac:58:92:31:a2:9c:6d:03:39:
36:8e:4c:ef:61:dd:52:bd:ed:9d:86:c2:82:87:e1:
65:19:d4:7e:67:de:89:3c:e5:83:bf:22:db:f5:6c:
d8:e9:ac:bd:2c:2d:83:a8:1c:7c:ff:a7:0d:07:7d:
f8:a6:ba:c0:1e:31:d5:9f:89:57:4b:c3:1b:3a:8d:
f4:6b:45:30:3d:56:b7:fb:85:e1:02:38:51:9c:d4:
95:e8:ec:5d:2d:6f:4d:6e:fe:b8:cb:80:d3:e6:46:
a5:4b:4d:86:91:cd:9b:c2:34:00:da:15:9b:8f:5f:
5b:db:9f:1f:90:35:ac:b4:c3:dc:57:ab:71:19:ef:
bf:3e:a8:a3:71:20:29:70:fd:01:99:47:9d:c3:2e:
12:1b:b3:df:90:2b:6e:3f:d2:ce:d3:71:16:e0:d9:
1e:e6:d5:3d:9b:d9:31:c6:bd:43:f9:0f:c1:f5:95:
f2:e8:c5:86:8a:08:a1:33:ea:56:47:60:d5:83:77:
76:8e:b7:1c:eb:21:16:50:c7:1d:d8:f5:b3:44:a1:
41:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:03:CC:9D:06:4B:A3:68:20:5D:F7:12:8D:CE:18:AC:01:0E:D8:CA
X509v3 Authority Key Identifier:
keyid:46:F8:34:3D:CD:AD:3A:AC:40:85:60:49:2C:21:B5:9D:76:2B:C4:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rvg0Pc2tOqxAhWBJLCG1nXYrxFY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/XgPMnQZLo2ggXfcSjc4YrAEO2Mo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.12.232.0/22
Signature Algorithm: sha256WithRSAEncryption
89:c4:b7:31:76:a0:91:a9:65:5f:6c:47:88:a1:35:e6:24:77:
f0:98:71:40:39:21:33:b4:df:1b:2d:00:ed:5f:31:6b:f5:f2:
ce:58:27:2f:d6:60:4e:47:c8:97:51:ce:9b:f8:9e:f7:85:c2:
ff:00:a7:24:41:08:30:f3:cc:85:4a:fe:46:76:fc:0c:33:85:
5e:5d:ce:40:a8:15:42:51:6a:36:06:14:31:e1:77:09:81:7c:
5c:f2:b5:c5:94:69:ae:eb:4f:a0:09:7c:1b:8e:c1:a8:22:cb:
fd:d3:d9:60:c9:cc:01:76:4f:e4:e1:25:6c:53:31:fd:13:b2:
79:79:76:cc:37:6d:02:98:18:42:41:aa:b6:9b:b7:3c:5f:2f:
d3:2f:eb:7d:e9:3d:4d:40:f1:43:f0:2d:15:9b:f6:8c:43:a0:
52:3f:4c:c6:70:c2:d0:11:9b:0c:12:a3:ba:d8:c9:91:f8:65:
9a:99:b4:35:82:eb:b4:cf:96:87:ff:6e:1e:13:f3:42:2d:8c:
1b:d6:c5:38:b7:4d:7a:cb:82:0d:9e:ac:40:08:a5:4b:73:f8:
03:87:34:08:d1:cf:8b:67:88:67:c6:8b:b8:8c:24:3b:46:c8:
62:06:10:fa:33:ce:a6:5b:ee:f9:4e:68:13:02:09:94:8b:78:
aa:41:7a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org