Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/817/bvesOL7NWbYaXSyHC9uhxaqij3Q.roa
File: bvesOL7NWbYaXSyHC9uhxaqij3Q.roa (raw, json)
Hash identifier: EoPx8XfzXhKjYzq6Cxgh8sy7d7Tcs+amOEbk76B04rI=
Subject key identifier: 6E:F7:AC:38:BE:CD:59:B6:1A:5D:2C:87:0B:DB:A1:C5:AA:A2:8F:74
Certificate issuer: /CN=2A711AA7DC60049B0B0D884897E015B1171F37B9
Certificate serial: 1141
Authority key identifier: 2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/bvesOL7NWbYaXSyHC9uhxaqij3Q.roa
Signing time: Wed 24 May 2023 03:53:31 +0000
ROA not before: Wed 24 May 2023 03:53:31 +0000
ROA not after: Wed 27 Mar 2024 01:13:10 +0000
asID: 4811
IP address blocks: 2401:3480:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Mar 2024 01:21:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4417 (0x1141)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A711AA7DC60049B0B0D884897E015B1171F37B9
Validity
Not Before: May 24 03:53:31 2023 GMT
Not After : Mar 27 01:13:10 2024 GMT
Subject: CN=6EF7AC38BECD59B61A5D2C870BDBA1C5AAA28F74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0a:72:66:20:e1:80:3e:7b:46:e8:ae:bb:31:
9e:7c:a4:d7:c9:76:b3:24:77:60:b7:60:68:bb:fc:
0c:51:25:ca:cb:34:dc:be:29:cd:f5:21:c7:0f:ab:
96:44:b7:ee:9f:c9:7f:ff:de:a9:eb:c7:e7:b9:bf:
29:2b:05:1b:14:cc:2a:18:c0:76:7b:1a:58:04:03:
ce:7b:5d:12:cc:c4:76:47:81:8f:1c:1b:f0:5a:16:
4d:59:fc:eb:e4:1a:6b:a5:dc:12:29:2a:04:55:2a:
0e:32:7d:05:d1:12:ed:ed:f5:7d:4c:d4:41:36:4d:
52:ac:1b:b2:97:55:86:55:a8:84:9d:2c:69:c1:de:
a9:6a:ca:6b:99:53:24:ee:7d:45:35:4d:26:8f:33:
bb:f4:4f:c8:0b:b0:9c:b7:ba:ef:db:54:a2:5a:3f:
a6:e7:ea:9e:e3:93:87:0f:86:1b:14:26:7a:88:17:
f3:67:f1:47:88:62:11:08:f9:ae:a5:fa:b3:6b:67:
c4:d6:7c:a9:6a:bf:a5:c9:6b:5f:09:7e:ea:50:b7:
d7:33:3c:5b:e0:21:fc:3a:b0:74:60:be:f2:4f:50:
91:0d:b8:f5:72:e0:d2:6c:02:80:9e:53:a9:c5:a3:
66:3d:09:be:ff:e0:89:f8:b6:50:a9:79:81:08:12:
b1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F7:AC:38:BE:CD:59:B6:1A:5D:2C:87:0B:DB:A1:C5:AA:A2:8F:74
X509v3 Authority Key Identifier:
keyid:2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/bvesOL7NWbYaXSyHC9uhxaqij3Q.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:3480:2000::/48
Signature Algorithm: sha256WithRSAEncryption
2f:fd:b0:06:c8:77:80:9b:56:b6:aa:28:cf:d3:1f:4b:9f:a9:
5b:59:e2:4c:d3:ba:c9:c0:57:64:4b:41:9b:af:5a:94:45:0b:
84:d4:ff:ae:08:b7:75:b9:f5:8d:c4:c5:30:69:21:e0:98:00:
e5:f1:9d:e9:6e:17:41:ec:8c:dd:1b:9a:e1:d1:e7:db:31:12:
2a:9c:00:e8:ee:11:64:68:55:83:c5:8a:a1:a4:2a:9c:d7:c5:
de:d0:ab:da:fc:32:e0:ec:33:e1:00:a4:df:a7:95:a2:bd:c5:
89:c3:29:c4:2d:fc:6b:a2:d0:be:be:5b:af:e0:35:0b:aa:9f:
67:5d:40:0c:f9:3e:6a:7d:b9:f7:5d:05:ba:a8:08:47:58:aa:
a9:d9:35:2d:62:b5:92:4b:6d:66:55:e8:0c:05:4c:97:03:60:
b4:2c:fc:3a:b5:93:48:f0:53:21:b0:97:04:f8:d6:42:1e:63:
76:12:44:19:cb:b6:45:f5:dc:5a:8c:9b:6e:05:3c:67:71:02:
e5:34:66:9d:1b:d5:7b:db:10:a9:e0:ff:50:a8:9f:16:3f:5e:
78:2a:4b:5c:9a:84:94:c7:89:0e:c5:19:7d:e2:1c:e4:a1:cd:
ce:d9:8d:97:ce:a2:96:38:6b:26:a1:94:dc:85:7c:81:ad:5b:
a3:b9:e5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 04:25:16 2024 by rpki-client on console-fra.rpki-client.org