Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/721/qRRXNy-gWJ2-R1efzgSPt4iFhZo.roa
File: qRRXNy-gWJ2-R1efzgSPt4iFhZo.roa (raw, json)
Hash identifier: XdmwokqSBCJ4kqV/s8iEKtnu3I1VpYRAfgfPEeYbqxI=
Subject key identifier: A9:14:57:37:2F:A0:58:9D:BE:47:57:9F:CE:04:8F:B7:88:85:85:9A
Certificate issuer: /CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Certificate serial: 13FE
Authority key identifier: EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/qRRXNy-gWJ2-R1efzgSPt4iFhZo.roa
Signing time: Wed 13 Mar 2024 01:22:14 +0000
ROA not before: Wed 13 Mar 2024 01:22:14 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 134764
IP address blocks: 43.255.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:18:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5118 (0x13fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Validity
Not Before: Mar 13 01:22:14 2024 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=A91457372FA0589DBE47579FCE048FB78885859A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:96:5f:1c:e8:72:cd:b9:a5:28:72:a5:5d:06:
a9:f8:99:81:8c:13:12:fa:29:90:ba:bd:99:6b:1d:
cd:88:12:8e:95:ea:03:14:95:39:18:85:c2:3b:ca:
7b:7b:e4:0a:3e:0b:01:ab:be:15:cc:f5:ac:01:91:
03:9f:69:d3:af:43:1b:45:68:4e:8e:11:e3:a0:34:
3a:d4:1b:75:80:80:57:57:93:bb:6c:b9:57:4a:5b:
89:a3:81:1b:51:88:26:6f:3a:da:bb:0a:bb:c3:0c:
5e:ec:7f:80:2e:d0:b6:b4:82:0e:57:14:d9:51:d2:
62:cb:33:b7:ed:2d:bd:f1:e7:bd:88:40:da:e8:54:
25:38:21:da:3b:c9:3d:a6:4d:ee:63:01:b5:bd:42:
4c:c3:cd:cf:ad:fd:c2:45:5c:fa:15:cf:ba:81:36:
f0:fb:a0:71:6b:2a:bb:bb:e4:7f:79:93:15:83:e9:
be:38:29:e6:a5:6b:08:f5:10:e9:9d:1b:38:6e:c9:
31:f7:8d:2e:01:40:f6:0b:f1:15:8a:e0:c9:51:e2:
c8:85:6f:d5:6a:9a:88:f6:2b:67:e2:f4:70:d7:ea:
8f:37:88:e3:1b:da:c2:02:81:c2:13:67:09:4c:61:
b0:fa:2f:c1:f6:44:38:1c:98:7e:ae:48:f7:d0:8e:
36:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:14:57:37:2F:A0:58:9D:BE:47:57:9F:CE:04:8F:B7:88:85:85:9A
X509v3 Authority Key Identifier:
keyid:EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/qRRXNy-gWJ2-R1efzgSPt4iFhZo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.212.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:1f:6b:b8:ae:25:cf:51:bb:c0:31:e4:54:b3:fb:e6:22:03:
87:25:c4:a3:06:13:43:b6:bd:ee:23:a1:6f:b5:42:2e:f9:ad:
85:3f:05:31:60:b0:4b:4f:1f:69:7a:ad:b6:ff:f0:19:0a:4c:
22:dc:14:97:65:ad:de:df:ee:ba:02:db:37:da:c6:25:87:04:
41:ad:c9:f1:37:2a:e3:85:0f:50:b0:d0:c1:51:f2:ad:e2:6b:
e6:6a:48:7d:65:64:e0:65:76:20:48:81:da:f4:8c:d8:09:d1:
e2:3c:23:f2:a8:db:42:49:2b:d6:1b:ce:f9:d0:78:7c:38:cd:
42:5d:4f:39:6a:70:bc:58:cc:04:f2:4e:6c:f3:45:86:98:07:
5e:e9:4f:69:d8:d4:3f:89:b1:54:3f:3f:68:ce:7e:1f:49:b8:
5e:ea:38:9f:9a:65:f1:85:75:d0:8b:51:76:66:6e:83:ec:53:
b0:2d:98:33:dc:89:de:3d:66:07:fc:c6:68:a8:8e:1d:53:09:
9c:f2:8b:e5:95:60:14:ab:2b:52:11:7f:e5:8a:93:d5:ed:b9:
61:c6:6a:15:e8:fd:a5:a8:6e:ff:0b:73:6f:3b:35:85:ea:f0:
b7:a5:32:be:52:9c:3c:af:66:79:ee:aa:8c:e6:ec:8a:52:ba:
9d:79:e6:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 01:46:28 2024 by rpki-client on console-fra.rpki-client.org