Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/890/pHuqs6j5DrQJ3rNKUrGnSI6F2lo.roa
File: pHuqs6j5DrQJ3rNKUrGnSI6F2lo.roa (raw, json)
Hash identifier: pboN0V/XGIg2Fv2YeLJjSASs/VLVQP1/opscKZCZtqI=
Subject key identifier: A4:7B:AA:B3:A8:F9:0E:B4:09:DE:B3:4A:52:B1:A7:48:8E:85:DA:5A
Certificate issuer: /CN=DBB4C5FA96B8741BF68B48BF004DBD6FD9636FAD
Certificate serial: 0C7D
Authority key identifier: DB:B4:C5:FA:96:B8:74:1B:F6:8B:48:BF:00:4D:BD:6F:D9:63:6F:AD
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27TF-pa4dBv2i0i_AE29b9ljb60.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/pHuqs6j5DrQJ3rNKUrGnSI6F2lo.roa
Signing time: Wed 04 Jun 2025 07:44:48 +0000
ROA not before: Wed 04 Jun 2025 07:44:48 +0000
ROA not after: Thu 09 Apr 2026 06:41:00 +0000
asID: 63567
IP address blocks: 43.248.176.0/20 maxlen: 20
Validation: Failed, certificate revoked on Thu 05 Jun 2025 03:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3197 (0xc7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBB4C5FA96B8741BF68B48BF004DBD6FD9636FAD
Validity
Not Before: Jun 4 07:44:48 2025 GMT
Not After : Apr 9 06:41:00 2026 GMT
Subject: CN=A47BAAB3A8F90EB409DEB34A52B1A7488E85DA5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:20:28:c6:a9:e4:5e:6d:d3:e9:d1:86:4d:2e:
27:49:5d:63:44:2a:7f:26:49:41:c9:b3:e2:b9:e6:
df:f5:de:9a:49:12:74:3f:30:cf:49:b0:93:d0:fd:
b1:93:9d:da:e2:f9:8d:d2:2b:4c:3b:31:7f:4f:6e:
00:f6:46:12:d4:92:60:97:f9:f0:0d:31:5f:10:cb:
8f:c2:9b:a3:4c:d5:ee:92:e3:e1:98:c2:c4:27:23:
8d:97:61:52:d3:0d:11:6a:fa:a7:a3:b3:ff:74:e3:
a4:1a:2e:93:c3:9d:11:19:3b:1c:91:6f:6d:86:e9:
d5:9d:95:7a:50:5c:0b:38:c6:8a:4e:78:2b:71:ff:
b6:5d:a2:97:0b:25:5a:db:9f:97:c0:ac:03:e3:b6:
c0:00:8c:fc:be:dc:44:76:5e:df:e5:ba:a0:35:88:
59:8f:4b:23:44:21:f5:06:a0:b7:6a:14:92:10:61:
0d:f6:67:ae:d8:0b:ba:5e:43:53:fd:16:e0:96:02:
aa:f4:08:95:23:76:80:9a:61:b3:c1:ea:5e:65:c9:
c9:8f:b8:0c:f0:7f:c2:26:36:2c:74:9c:70:94:77:
cf:56:f1:f1:ab:b5:80:bb:0c:4f:1e:a3:e1:74:46:
ee:f5:46:93:3f:ea:f8:30:3f:0b:e5:84:4e:cd:79:
fc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7B:AA:B3:A8:F9:0E:B4:09:DE:B3:4A:52:B1:A7:48:8E:85:DA:5A
X509v3 Authority Key Identifier:
keyid:DB:B4:C5:FA:96:B8:74:1B:F6:8B:48:BF:00:4D:BD:6F:D9:63:6F:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/27TF-pa4dBv2i0i_AE29b9ljb60.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27TF-pa4dBv2i0i_AE29b9ljb60.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/pHuqs6j5DrQJ3rNKUrGnSI6F2lo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.248.176.0/20
Signature Algorithm: sha256WithRSAEncryption
49:32:15:47:05:05:34:6b:c0:4a:c9:a3:d2:e9:78:a1:04:ff:
e6:07:ef:a2:0f:f3:0b:8d:ae:a5:50:6c:b4:c6:5f:a3:0f:96:
73:02:b0:52:ab:09:9f:48:04:c4:3f:4c:1e:55:79:cc:23:bd:
69:62:f1:a1:3e:4b:56:25:5c:a6:14:d4:60:e0:8b:12:f4:c8:
7d:0d:17:f8:dc:b6:aa:f3:cf:49:93:6e:52:da:55:05:60:7d:
24:0d:30:d3:2e:54:3c:cb:f6:61:4f:27:4c:93:35:6f:c8:49:
83:ff:a2:90:97:62:9b:58:9b:bc:4b:60:f8:c4:39:81:a8:27:
be:3e:a5:35:e4:f2:46:c8:00:e7:38:2f:47:ed:9b:9a:6c:57:
23:17:ea:2e:43:7c:c4:d0:5d:7d:6a:9a:c1:a2:f3:5c:78:b3:
10:6c:fb:81:57:28:74:b1:f6:88:13:eb:bc:22:da:a1:63:d6:
a8:19:71:77:20:e4:e9:b6:b6:70:d4:dc:b6:d9:6d:7e:d1:0b:
1d:91:cf:15:89:74:d7:4b:16:89:59:c1:11:6a:51:1a:e1:69:
c9:7f:fe:99:f1:d0:36:40:47:cd:39:1b:da:54:48:18:cb:03:
a3:41:0e:f0:df:a6:fa:a9:00:3e:0e:02:14:9c:5c:0c:4e:f0:
87:e5:33:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 05:29:08 2025 by rpki-client