Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/006j_I-fvPOULhAPKNKQf4lDMgQ.roa
File: 006j_I-fvPOULhAPKNKQf4lDMgQ.roa (raw, json)
Hash identifier: nMpKVMedxBNCrHPvIoUTsdKMwHKb7jHWcw18YsafVtM=
Subject key identifier: D3:4E:A3:FC:8F:9F:BC:F3:94:2E:10:0F:28:D2:90:7F:89:43:32:04
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 070F
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/006j_I-fvPOULhAPKNKQf4lDMgQ.roa
Signing time: Thu 18 May 2023 07:24:19 +0000
ROA not before: Thu 18 May 2023 07:24:19 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 4812
IP address blocks: 43.254.152.0/24 maxlen: 24
103.5.192.0/22 maxlen: 24
103.24.116.0/24 maxlen: 24
103.24.118.0/23 maxlen: 24
150.242.238.0/23 maxlen: 24
202.89.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1807 (0x70f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: May 18 07:24:19 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=D34EA3FC8F9FBCF3942E100F28D2907F89433204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:42:6b:9b:f9:19:f3:5c:fd:f8:24:e3:50:86:
84:34:72:8b:b1:97:36:79:14:62:90:64:b4:89:12:
bb:49:51:65:d3:2a:a5:49:01:c9:81:f0:b0:7d:e4:
cd:29:c1:fd:99:c3:a7:22:e8:75:71:a8:7c:36:ac:
bb:3d:fb:b3:19:ad:3b:b6:22:2d:e9:88:f8:cf:eb:
5f:b8:aa:6a:1a:c3:11:86:84:c7:81:8c:39:c6:20:
18:08:35:bf:8a:d3:b4:11:58:08:71:48:7e:28:fa:
4c:c5:97:bc:c9:b9:bb:bd:82:f5:78:4f:53:dd:73:
7b:53:d5:2b:98:df:c6:ac:19:12:19:e4:3c:ed:ea:
d2:ae:f8:58:13:b7:b9:8f:4f:cf:33:ee:48:08:44:
a0:c2:53:75:bf:b0:bf:f8:3d:e0:6f:69:fa:39:00:
ab:17:a2:76:7a:36:eb:8a:59:fc:6f:3d:4c:9e:15:
ba:4e:63:96:91:23:b1:72:81:5a:17:bf:c6:f2:56:
81:b1:25:9c:bd:b9:79:f8:ee:ec:08:a7:e2:79:53:
7f:6d:13:d0:35:56:ca:c6:c6:24:f0:43:bc:6e:35:
97:99:f0:c0:f8:98:ad:c1:bd:8a:30:a9:b2:03:af:
4c:9a:c2:a8:12:36:cc:b9:d2:c9:8c:38:7f:c7:08:
53:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4E:A3:FC:8F:9F:BC:F3:94:2E:10:0F:28:D2:90:7F:89:43:32:04
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/006j_I-fvPOULhAPKNKQf4lDMgQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.152.0/24
103.5.192.0/22
103.24.116.0/24
103.24.118.0/23
150.242.238.0/23
202.89.96.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:1e:ae:15:f3:23:54:32:34:03:27:c6:e5:63:4f:2c:f5:5b:
ff:4c:12:70:6f:ae:06:7a:92:1d:e2:e2:e2:1b:15:c6:d8:cc:
20:7d:97:23:34:c9:3d:f9:88:d9:11:49:52:7b:79:1d:1e:b6:
24:c7:62:1e:70:30:e2:f8:00:7c:3e:eb:0f:61:42:05:10:97:
f9:a2:1e:82:42:3d:a1:63:0d:1f:06:c8:b4:fd:d9:c1:5c:bf:
b7:b7:8e:71:23:cb:d1:4a:f3:c8:58:96:47:04:97:e5:c8:6f:
fb:c7:c9:4d:58:9e:a4:cb:f6:99:72:93:6e:c2:8c:1f:50:1f:
da:9b:3b:c5:50:05:b9:61:d3:bf:da:46:22:58:4f:bd:c1:08:
58:40:d2:c6:27:85:d5:c0:9c:9d:f5:19:bf:f9:9a:34:a6:28:
4c:82:c7:dd:6e:d7:9d:4f:a1:e1:cc:d9:f1:80:e7:ec:fe:05:
85:89:55:bf:e6:9c:a4:1e:fc:b2:3e:14:91:ff:d2:e5:58:1f:
b5:89:c7:8c:14:44:b2:11:f2:26:97:7e:d7:72:55:5c:9d:d3:
dd:20:b3:da:51:c2:cd:18:5f:9b:79:3b:ac:af:73:1d:a4:cc:
c4:16:b9:8e:19:60:d9:10:95:81:bb:5e:cd:be:ed:03:3a:66:
ed:cf:03:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org