Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/721/zsZbPX_qJuanfhZ62tXgWDEcxC8.roa
File: zsZbPX_qJuanfhZ62tXgWDEcxC8.roa (raw, json)
Hash identifier: 6cowDT882lOPPODeC1V5pv/OWa1URc8/chgkLp28EbA=
Subject key identifier: CE:C6:5B:3D:7F:EA:26:E6:A7:7E:16:7A:DA:D5:E0:58:31:1C:C4:2F
Certificate issuer: /CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Certificate serial: 13FF
Authority key identifier: EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/zsZbPX_qJuanfhZ62tXgWDEcxC8.roa
Signing time: Wed 13 Mar 2024 01:22:15 +0000
ROA not before: Wed 13 Mar 2024 01:22:15 +0000
ROA not after: Tue 08 Oct 2024 00:16:33 +0000
asID: 56040
IP address blocks: 43.255.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 24 Sep 2024 00:18:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5119 (0x13ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Validity
Not Before: Mar 13 01:22:15 2024 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=CEC65B3D7FEA26E6A77E167ADAD5E058311CC42F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:36:20:7e:5c:d4:68:49:f3:ae:03:6c:09:11:
9e:6f:90:b3:0a:74:76:77:62:c4:65:d4:cb:e4:ef:
8c:52:6a:08:96:09:cd:da:f6:68:82:0f:44:ac:98:
00:10:13:a0:c6:61:aa:a8:9f:2b:f1:85:2c:8a:c4:
b5:91:7d:45:86:de:22:fe:55:08:e6:c7:45:d1:3e:
0b:8c:73:cc:75:9b:6d:76:6e:07:6e:5e:fa:01:bd:
1f:71:bd:4c:0d:eb:e2:a4:ea:e2:9a:1e:7b:44:ee:
80:e5:1d:ab:8a:19:f8:16:20:2f:b5:f0:48:27:69:
99:da:29:46:02:a0:14:4f:55:e3:10:8a:a3:69:af:
b1:b7:f2:7a:9b:3b:d2:63:1f:44:7e:5d:57:38:8c:
fa:7c:95:8e:35:14:1c:b9:71:f7:55:01:d4:fc:b4:
11:57:d6:31:ba:33:dd:54:11:99:f6:ae:29:fd:80:
28:67:f6:67:15:a8:36:b0:28:53:9a:f6:cf:4c:2d:
2b:ec:5b:6d:21:5b:d1:ff:d0:a0:2d:e1:8d:a4:f7:
37:7a:a1:f4:2e:0b:ae:16:5f:15:23:ac:1e:ad:ff:
2e:72:df:d4:aa:87:51:bf:d7:f8:b4:58:aa:14:7c:
a7:55:2f:94:30:b9:42:ca:88:d5:d7:f6:2d:55:ac:
85:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C6:5B:3D:7F:EA:26:E6:A7:7E:16:7A:DA:D5:E0:58:31:1C:C4:2F
X509v3 Authority Key Identifier:
keyid:EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/zsZbPX_qJuanfhZ62tXgWDEcxC8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.212.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:8f:8f:8d:fe:dd:0f:b1:cc:87:58:55:1b:7a:ef:d6:7e:2e:
b7:ae:2b:ed:92:55:87:a8:20:b8:6c:97:b1:68:5a:c3:b6:81:
a0:5e:ba:98:2c:c1:e8:cf:1c:19:43:b5:b1:63:4f:59:ef:99:
05:6b:2c:5e:61:a5:fd:10:69:0c:37:e6:4f:ab:57:56:92:aa:
b4:34:e7:66:29:d9:f1:40:eb:15:7e:90:86:5b:8b:5d:5e:40:
7c:4a:5d:ad:18:a6:a6:c0:0f:aa:ec:c5:80:2c:1d:d5:c9:73:
82:a3:0c:0b:d6:0d:1e:5a:29:86:4d:3c:91:56:c9:68:f9:d7:
af:1c:77:f1:5e:a1:a1:2a:5e:41:00:3e:54:ba:cd:cf:5b:98:
13:a9:d9:9e:c2:f4:9b:71:b6:04:1c:f0:17:46:7e:9b:99:54:
21:af:89:7a:a0:3e:08:8b:e6:22:90:c1:5f:30:2e:ae:c9:c0:
18:7c:de:bf:12:ff:16:56:53:93:e3:a9:93:9e:49:21:c1:9c:
bd:c7:ca:80:6a:b5:dc:8d:f2:90:7f:d0:3c:f1:7e:9c:18:ed:
85:15:f8:65:19:22:db:c6:21:05:32:61:0e:c0:a9:60:eb:fe:
da:64:e0:d8:e4:fc:40:ee:a7:d7:f3:cb:c2:33:36:10:ac:71:
3c:99:34:d5
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICE/8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUU4
ODdBQ0M3Q0U0QjVGNjZDQ0Y0OTQ2RjAyQkZBQ0JERTI4Qjc2QTAeFw0yNDAzMTMw
MTIyMTVaFw0yNDEwMDgwMDE2MzNaMDMxMTAvBgNVBAMTKENFQzY1QjNEN0ZFQTI2
RTZBNzdFMTY3QURBRDVFMDU4MzExQ0M0MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCXNiB+XNRoSfOuA2wJEZ5vkLMKdHZ3YsRl1Mvk74xSagiWCc3a
9miCD0SsmAAQE6DGYaqonyvxhSyKxLWRfUWG3iL+VQjmx0XRPguMc8x1m212bgdu
XvoBvR9xvUwN6+Kk6uKaHntE7oDlHauKGfgWIC+18EgnaZnaKUYCoBRPVeMQiqNp
r7G38nqbO9JjH0R+XVc4jPp8lY41FBy5cfdVAdT8tBFX1jG6M91UEZn2rin9gChn
9mcVqDawKFOa9s9MLSvsW20hW9H/0KAt4Y2k9zd6ofQuC64WXxUjrB6t/y5y39Sq
h1G/1/i0WKoUfKdVL5QwuULKiNXX9i1VrIWnAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUzsZbPX/qJuanfhZ62tXgWDEcxC8wHwYDVR0jBBgwFoAU7oh6zHzktfZsz0lG
8Cv6y94ot2owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzIx
LzdvaDZ6SHprdGZac3owbEc4Q3Y2eTk0b3Qyby5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvN29oNnpIemt0ZlpzejBsRzhDdjZ5OTRvdDJvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzIxL3pzWmJQWF9xSnVhbmZo
WjYydFhnV0RFY3hDOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAIr/9QwDQYJKoZIhvcNAQELBQADggEBAG6Pj43+3Q+xzIdYVRt679Z+LreuK+2S
VYeoILhsl7FoWsO2gaBeupgswejPHBlDtbFjT1nvmQVrLF5hpf0QaQw35k+rV1aS
qrQ052Yp2fFA6xV+kIZbi11eQHxKXa0YpqbAD6rsxYAsHdXJc4KjDAvWDR5aKYZN
PJFWyWj5168cd/FeoaEqXkEAPlS6zc9bmBOp2Z7C9JtxtgQc8BdGfpuZVCGviXqg
PgiL5iKQwV8wLq7JwBh83r8S/xZWU5PjqZOeSSHBnL3HyoBqtdyN8pB/0DzxfpwY
7YUV+GUZItvGIQUyYQ7AqWDr/tpk4Njk/EDup9fzy8IzNhCscTyZNNU=
-----END CERTIFICATE-----
Generated at Tue Sep 24 01:53:40 2024 by rpki-client on console-ams.rpki-client.org