Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/txGdbcktJvXcnu_TGyNGYmpxUZ0.roa
File: txGdbcktJvXcnu_TGyNGYmpxUZ0.roa (raw, json)
Hash identifier: W1GFVHOepVzuBrnm0QSINsucxuQ5Z+bjsPjxuIfjmE0=
Subject key identifier: B7:11:9D:6D:C9:2D:26:F5:DC:9E:EF:D3:1B:23:46:62:6A:71:51:9D
Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Certificate serial: 12EA
Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/txGdbcktJvXcnu_TGyNGYmpxUZ0.roa
Signing time: Sat 29 Jun 2024 19:44:15 +0000
ROA not before: Sat 29 Jun 2024 19:44:15 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24373
IP address blocks: 45.252.8.0/22 maxlen: 24
45.252.12.0/22 maxlen: 24
45.252.16.0/22 maxlen: 24
45.252.20.0/22 maxlen: 24
45.252.24.0/22 maxlen: 24
45.252.28.0/22 maxlen: 24
45.252.32.0/22 maxlen: 24
45.252.36.0/22 maxlen: 24
45.252.40.0/22 maxlen: 24
45.252.44.0/22 maxlen: 24
45.252.48.0/22 maxlen: 24
45.252.100.0/22 maxlen: 24
45.252.144.0/22 maxlen: 24
103.220.248.0/22 maxlen: 24
103.220.252.0/22 maxlen: 24
103.221.0.0/22 maxlen: 24
103.221.4.0/22 maxlen: 24
103.221.8.0/22 maxlen: 24
103.221.12.0/22 maxlen: 24
103.221.16.0/22 maxlen: 24
103.221.20.0/22 maxlen: 24
103.221.24.0/22 maxlen: 24
103.221.28.0/22 maxlen: 24
103.221.32.0/22 maxlen: 24
103.221.36.0/22 maxlen: 24
103.221.40.0/22 maxlen: 24
103.221.44.0/22 maxlen: 24
103.221.48.0/22 maxlen: 24
103.221.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 02:23:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4842 (0x12ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Validity
Not Before: Jun 29 19:44:15 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=B7119D6DC92D26F5DC9EEFD31B2346626A71519D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:32:04:bd:f5:cc:d4:92:29:fc:59:53:d4:21:
f0:29:db:45:18:e3:08:0d:3f:ae:21:c5:21:28:39:
7e:4a:a0:12:f9:3b:a2:8b:a9:4d:69:ce:0a:14:53:
7f:38:63:2f:2f:a7:f2:5e:ac:eb:ff:88:e5:0f:fa:
79:61:65:f4:b9:39:09:4f:1d:f9:71:8b:1a:fe:32:
a0:71:92:6d:71:bf:f5:c5:25:df:9c:73:9d:36:85:
94:43:b3:a0:13:63:75:ff:3c:4d:b2:3b:e8:01:6f:
31:8f:8c:d3:82:4f:e9:3b:6a:1f:a3:93:de:6f:65:
2d:96:14:59:7b:73:4c:dc:58:3d:fc:9a:65:ad:49:
ce:d8:4a:fa:7f:1a:4f:9c:4d:71:76:ba:54:b5:a3:
73:ba:e6:ac:ea:72:d8:fd:8a:27:d0:e5:d6:24:f2:
06:74:35:1b:c9:0b:6d:47:68:7a:5a:22:e9:91:da:
0e:85:8c:44:9e:aa:82:6d:ca:13:de:7f:84:c8:ea:
b9:c9:1b:61:77:83:5c:e7:8e:0c:e2:b8:6e:2e:f8:
b9:70:47:17:8a:17:2e:ec:f5:54:6e:38:e6:ea:11:
f6:20:de:37:ac:29:30:23:d6:f6:8c:de:55:82:3e:
e3:22:16:59:fe:4e:cf:e7:33:9d:85:de:6c:e3:18:
2c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:11:9D:6D:C9:2D:26:F5:DC:9E:EF:D3:1B:23:46:62:6A:71:51:9D
X509v3 Authority Key Identifier:
keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/txGdbcktJvXcnu_TGyNGYmpxUZ0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.252.8.0-45.252.51.255
45.252.100.0/22
45.252.144.0/22
103.220.248.0-103.221.51.255
103.221.92.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:c4:f6:05:1c:69:56:b1:38:c4:93:e2:11:f9:6f:91:0a:c3:
02:b5:9d:14:6b:5b:32:f5:6b:b2:ca:0d:5f:d6:5b:d0:ef:a7:
4d:8f:01:46:5d:9b:97:bc:9b:53:e1:26:9b:31:b3:6b:c8:7b:
7e:4d:19:19:25:88:52:dc:e7:61:54:34:97:8e:2f:8d:0e:39:
fe:88:a7:68:50:f1:6f:f2:55:c8:60:ca:ec:f4:cc:e7:8a:4b:
d3:30:4f:fc:3d:48:e1:7f:b0:a3:77:39:ad:44:00:12:30:dc:
34:62:03:a3:fd:94:36:3d:d4:37:28:61:4d:0e:b2:d1:ee:5b:
00:44:76:52:e2:68:14:5d:6d:47:6a:1f:65:50:d3:9e:78:b4:
5e:f6:4e:a6:60:6a:3e:b5:35:d6:b4:67:fb:04:b5:28:89:a2:
45:8c:ef:4c:bf:b5:08:ef:17:90:c1:e4:b7:39:d0:2a:db:00:
a2:1e:7e:db:6d:29:7c:e1:da:3c:ae:8b:d5:3a:a1:44:05:f7:
cb:07:cd:ce:87:30:7e:aa:4b:77:e3:dc:69:f2:23:03:ee:90:
72:50:4e:b5:4e:8a:bd:ef:cf:71:69:54:08:46:8a:74:56:f4:
f2:26:5a:42:2e:5b:25:0d:3f:77:c3:79:4a:76:06:0f:47:d4:
c8:5a:f5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 03:47:53 2024 by rpki-client on console-fra.rpki-client.org