Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/dX6NlxEZw7V3O41g_1Rfvbehnfs.roa
File: dX6NlxEZw7V3O41g_1Rfvbehnfs.roa (raw, json)
Hash identifier: QDvZV+yOric5/cgYSfPl/0lC+5+1luOiwv4o6Ptp2pc=
Subject key identifier: 75:7E:8D:97:11:19:C3:B5:77:3B:8D:60:FF:54:5F:BD:B7:A1:9D:FB
Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Certificate serial: 0946
Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/dX6NlxEZw7V3O41g_1Rfvbehnfs.roa
Signing time: Fri 17 Jan 2025 01:23:45 +0000
ROA not before: Fri 17 Jan 2025 01:23:45 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 2914
IP address blocks: 58.66.104.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 07:23:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2374 (0x946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0
Validity
Not Before: Jan 17 01:23:45 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=757E8D971119C3B5773B8D60FF545FBDB7A19DFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:95:78:d9:f9:95:f1:42:c3:34:e3:ac:75:90:
21:bd:84:32:bb:1b:73:80:ef:4d:ef:af:06:81:4f:
6b:55:93:f0:f3:d5:d0:b3:2e:6e:6b:32:d2:64:2c:
81:08:3a:f7:f0:2e:17:1e:37:ef:0e:65:90:3a:87:
27:3f:11:eb:71:2e:87:1a:7b:c6:38:82:ad:5e:38:
bb:49:a4:b7:09:7f:2b:01:f7:cb:50:11:a5:13:8c:
4f:c8:9e:43:01:41:b3:9a:5f:b3:a8:d7:e2:0f:58:
58:ac:b0:46:07:48:9f:af:69:b2:f0:a7:d7:69:47:
64:48:e7:f4:a1:ef:df:c8:b8:2a:45:7c:38:51:50:
e4:1f:82:58:df:90:2c:58:7e:de:95:44:43:09:88:
b5:d3:37:6f:f7:46:19:d2:59:15:db:67:e6:4a:5e:
1f:56:af:25:3e:c2:b7:30:b4:32:02:61:ac:06:f2:
b7:98:2d:4c:53:88:12:b9:bc:e6:57:4f:63:94:06:
a8:3f:b7:a8:39:fd:dd:2d:6d:ea:35:a4:94:7c:c9:
fd:ac:a3:46:bd:94:7e:aa:3c:60:73:a7:7a:0a:a7:
5c:a3:80:72:9c:0c:82:3a:cd:86:54:76:e6:8e:4e:
73:a7:36:9b:68:cd:14:64:74:32:28:52:94:9e:df:
ca:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7E:8D:97:11:19:C3:B5:77:3B:8D:60:FF:54:5F:BD:B7:A1:9D:FB
X509v3 Authority Key Identifier:
keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/dX6NlxEZw7V3O41g_1Rfvbehnfs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.66.104.0/21
Signature Algorithm: sha256WithRSAEncryption
95:b1:72:87:93:74:21:6d:27:5f:a7:ed:d8:4f:76:52:0b:7c:
48:cd:f1:2a:66:4a:53:79:71:8e:44:aa:38:66:17:92:7f:c5:
5d:a3:d3:b6:31:dd:c3:29:a9:59:53:e4:95:fa:0b:14:c2:e8:
2d:f9:94:a7:03:1a:7c:80:5f:75:4b:bb:2e:8e:e2:dc:af:0f:
8e:04:de:af:c7:f8:d8:5d:25:36:b2:ed:76:f7:81:87:a8:13:
4c:b3:15:b7:5e:a2:a5:30:e7:d2:e2:b0:b4:1b:60:5b:30:6f:
f5:49:10:7e:b5:cf:3e:e6:37:5c:04:af:28:c2:05:da:f3:37:
55:84:1c:5c:99:02:5a:1d:0a:6d:83:86:ca:0a:d9:6e:39:73:
a6:8b:7f:71:58:d0:17:ef:c9:ff:b8:1f:cd:e4:13:ed:2c:ee:
26:9f:bb:8d:7d:4a:5c:cb:5b:1c:f2:d8:18:3d:a5:25:10:ed:
af:80:ca:4f:e7:59:e1:cf:ff:6a:f2:3d:f6:78:53:fc:f0:11:
9f:4f:46:90:91:ac:cf:8f:06:9f:50:a4:72:69:fd:4c:ef:25:
3c:63:68:f3:f4:22:f3:0d:a1:5b:01:5f:50:4c:36:1b:42:84:
34:06:88:a0:9c:8a:65:f3:a4:af:00:ca:81:c2:31:80:25:0f:
a4:90:cc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:34:52 2025 by rpki-client