Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/MgiizebqN3m_yw3ubWTiNWDM7hA.roa
File: MgiizebqN3m_yw3ubWTiNWDM7hA.roa (raw, json)
Hash identifier: oRY80fdUsyYiV2iaib9j5nCqJjjPUgjbZKtfDdRAZW8=
Subject key identifier: 32:08:A2:CD:E6:EA:37:79:BF:CB:0D:EE:6D:64:E2:35:60:CC:EE:10
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 0708
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/MgiizebqN3m_yw3ubWTiNWDM7hA.roa
Signing time: Thu 18 May 2023 07:24:17 +0000
ROA not before: Thu 18 May 2023 07:24:17 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 59083
IP address blocks: 103.10.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:21:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1800 (0x708)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: May 18 07:24:17 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=3208A2CDE6EA3779BFCB0DEE6D64E23560CCEE10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5f:c2:df:47:31:8e:cb:19:9c:db:ac:69:23:
ac:3a:f8:89:dd:03:72:44:81:60:eb:62:ed:1b:1d:
f6:94:15:d7:23:a0:22:f3:ea:85:2f:db:09:95:14:
d4:f8:a4:59:2d:7e:0a:18:19:b9:e2:ee:21:85:d2:
7c:f9:d1:54:3b:d4:de:46:2b:9f:b4:f6:b4:d5:7d:
dc:c8:32:b8:38:50:41:20:0e:df:45:bf:0d:08:58:
00:72:c7:a1:da:e5:f6:66:ad:e8:a0:1e:99:c1:d5:
12:f4:ad:44:5b:e5:fd:7e:8d:f9:c1:77:47:57:5d:
15:a9:00:22:a4:5c:ef:f6:bc:22:df:95:9c:77:85:
0e:a8:7f:80:2c:8b:01:67:08:ee:55:ff:35:9b:4d:
bb:09:2a:d6:33:c6:52:62:b0:78:37:95:79:bc:7e:
fa:c0:33:01:eb:ac:e1:32:7c:d4:b3:f3:ae:20:bb:
5d:ba:a7:3e:3e:84:2a:42:d5:07:07:95:a3:86:ea:
3a:4c:6e:ad:4a:05:46:a4:bb:04:7c:cb:f5:ef:48:
c7:5d:bf:67:80:80:42:71:a5:90:d5:20:f4:7f:1e:
90:a3:9b:26:06:17:16:87:1e:f8:c0:c6:89:58:5f:
39:a3:62:ff:d9:e2:8b:f1:3a:26:f4:98:57:d9:39:
72:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:08:A2:CD:E6:EA:37:79:BF:CB:0D:EE:6D:64:E2:35:60:CC:EE:10
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/MgiizebqN3m_yw3ubWTiNWDM7hA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.10.0.0/22
Signature Algorithm: sha256WithRSAEncryption
98:23:dd:3c:9d:d9:94:6b:49:43:eb:86:f5:c4:d3:6f:70:81:
dc:84:8e:9c:42:76:c7:8c:a9:03:02:fd:54:e7:e6:b4:1d:7a:
5e:04:40:38:54:ac:ee:4d:bd:e4:d6:93:59:dc:a9:64:d2:35:
96:a6:9d:91:d5:8f:97:5f:6a:b8:fa:36:c9:6b:e6:b9:9c:c8:
3f:c3:1e:63:70:b0:b6:dd:46:c6:74:a2:3e:ae:0e:e3:b7:34:
c2:44:69:4b:82:0c:11:c7:b0:9f:b5:0f:de:ff:c3:2e:79:30:
6e:cc:9f:1d:c3:80:20:fd:24:d9:9c:93:8f:45:70:8d:0a:73:
76:66:58:ff:84:aa:92:62:54:c2:9a:76:bf:e2:7c:a2:01:cf:
6c:eb:57:70:b7:cd:b2:c9:1e:1d:8c:5c:67:02:44:03:da:48:
89:0e:f1:ec:a5:ad:8b:d6:7a:99:b5:92:68:64:8e:9e:50:2e:
97:a4:c1:25:1e:90:c3:56:44:37:6f:7c:9e:64:4d:56:84:4c:
6a:84:9f:d7:2d:a7:f0:fe:6f:a1:b1:e7:8f:34:f5:9a:c0:7c:
6c:4f:c4:7f:15:7e:6c:ec:13:ce:7a:cb:b4:f5:80:55:cf:c8:
f6:40:3b:ce:56:ba:65:4b:8d:5c:de:57:4d:d1:2e:51:b9:de:
ce:df:db:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org