Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/gUqDviR2a4UvzPUex7_yje7Pqto.roa
File: gUqDviR2a4UvzPUex7_yje7Pqto.roa (raw, json)
Hash identifier: bTutt9w+C+0dYINDS3nLzjCWqsOwSKBHdoFSCq3Ptvo=
Subject key identifier: 81:4A:83:BE:24:76:6B:85:2F:CC:F5:1E:C7:BF:F2:8D:EE:CF:AA:DA
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 08C2
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/gUqDviR2a4UvzPUex7_yje7Pqto.roa
Signing time: Mon 14 Aug 2023 04:34:24 +0000
ROA not before: Mon 14 Aug 2023 04:34:24 +0000
ROA not after: Fri 07 Jun 2024 02:16:11 +0000
asID: 138527
IP address blocks: 45.252.8.0/22 maxlen: 24
45.252.12.0/22 maxlen: 24
45.252.16.0/22 maxlen: 24
45.252.20.0/22 maxlen: 24
45.252.24.0/22 maxlen: 24
45.252.28.0/22 maxlen: 24
45.252.32.0/22 maxlen: 24
45.252.36.0/22 maxlen: 24
45.252.40.0/22 maxlen: 24
45.252.44.0/22 maxlen: 24
45.252.48.0/22 maxlen: 24
45.252.100.0/22 maxlen: 24
45.252.144.0/22 maxlen: 24
103.198.224.0/22 maxlen: 24
103.198.232.0/22 maxlen: 24
103.198.236.0/22 maxlen: 24
103.198.240.0/22 maxlen: 24
103.220.248.0/22 maxlen: 24
103.220.252.0/22 maxlen: 24
103.221.0.0/22 maxlen: 24
103.221.4.0/22 maxlen: 24
103.221.8.0/22 maxlen: 24
103.221.12.0/22 maxlen: 24
103.221.16.0/22 maxlen: 24
103.221.20.0/22 maxlen: 24
103.221.24.0/22 maxlen: 24
103.221.28.0/22 maxlen: 24
103.221.32.0/22 maxlen: 24
103.221.36.0/22 maxlen: 24
103.221.40.0/22 maxlen: 24
103.221.44.0/22 maxlen: 24
103.221.48.0/22 maxlen: 24
103.221.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 06:04:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2242 (0x8c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Aug 14 04:34:24 2023 GMT
Not After : Jun 7 02:16:11 2024 GMT
Subject: CN=814A83BE24766B852FCCF51EC7BFF28DEECFAADA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:04:ec:b4:ac:6d:16:3e:c7:80:be:7e:12:9c:
4f:d1:6d:83:80:96:e8:ae:b4:d3:21:fd:76:4e:14:
09:f8:3c:6d:f4:be:15:18:0f:c4:ee:7c:2d:3a:4e:
90:8b:67:cc:fc:83:82:44:00:3e:07:36:6e:0b:ff:
24:e4:25:b2:81:33:67:5b:c8:5a:56:54:8c:a5:44:
03:10:02:3b:d7:a5:69:8b:d9:70:b6:9b:07:b0:fa:
99:8f:ee:10:2d:48:35:d2:fa:2e:7e:d1:33:84:ec:
55:99:0a:7c:54:8c:ba:6c:c3:d2:67:f4:d0:30:91:
6e:af:2d:bb:4c:1b:07:9c:d3:2b:ad:a7:0f:c4:a2:
79:8a:1e:da:3e:b5:21:86:99:3e:a4:eb:d3:05:24:
26:43:7d:f1:dd:b0:0b:50:1a:e4:b1:40:73:c4:ae:
f5:0d:50:65:65:df:c5:32:fe:73:65:d3:2f:f8:e9:
63:f7:cc:37:f3:cc:42:b3:30:c5:d7:70:75:9b:2a:
8e:95:f5:46:77:39:30:60:bd:bb:2c:80:d2:7c:57:
35:13:e6:7c:9b:33:0a:26:47:67:a1:c1:f7:19:ba:
8a:b5:25:40:ea:6f:47:7f:94:cb:5c:04:f8:32:fb:
57:c9:e7:32:8c:5b:e6:4e:50:ce:c9:6b:55:b3:ec:
6a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4A:83:BE:24:76:6B:85:2F:CC:F5:1E:C7:BF:F2:8D:EE:CF:AA:DA
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/gUqDviR2a4UvzPUex7_yje7Pqto.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.252.8.0-45.252.51.255
45.252.100.0/22
45.252.144.0/22
103.198.224.0/22
103.198.232.0-103.198.243.255
103.220.248.0-103.221.51.255
103.221.92.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:ae:ad:de:12:5f:30:3b:0f:39:ea:2c:ff:e0:cb:69:49:f9:
5b:1e:92:0f:d4:76:f1:04:64:24:0a:aa:ce:0f:5c:60:cc:de:
ab:bf:02:6b:e0:91:52:3c:64:e2:03:e7:e4:3b:f9:68:5e:b4:
e0:1d:89:f3:65:41:c4:2f:9a:3f:46:09:fe:1f:1e:99:66:75:
b6:2d:a4:ce:19:57:3f:34:31:23:1b:a4:5b:37:d4:e7:c6:78:
8a:d4:65:7c:45:1f:4f:91:20:1c:d9:ff:b2:89:bb:34:e7:56:
aa:0f:29:7a:e2:92:fd:10:c5:d6:d7:65:90:ff:03:2c:76:b1:
91:99:df:4f:23:36:ca:7e:76:d1:3b:07:6e:41:b4:e6:7b:44:
ae:85:63:92:3d:7b:e5:8e:ee:aa:ea:45:fa:12:df:eb:4c:36:
27:f7:4a:fc:c1:ba:84:d9:61:b9:37:a9:53:ab:a0:7e:1b:22:
55:e8:37:c2:ce:6e:07:77:58:1b:80:3d:d6:a6:13:55:74:9b:
b4:7e:e5:b0:9e:3a:27:3c:ef:4f:06:02:76:2f:37:32:03:4c:
ae:00:e3:00:21:d9:2c:1f:70:90:2a:bb:f9:16:08:72:2e:16:
dd:3c:66:c4:36:2e:a3:1d:b3:d6:6f:87:0d:34:de:d6:84:bb:
3e:6e:61:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 09:34:41 2024 by rpki-client on console-fra.rpki-client.org