Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/at82CQmCF_mmQSQ2HeIhH-g2cVs.roa
File: at82CQmCF_mmQSQ2HeIhH-g2cVs.roa (raw, json)
Hash identifier: J6tBmB8fuewMtgRZ6S5x2MfIYNojQsoPB0uaRI/1gw0=
Subject key identifier: 6A:DF:36:09:09:82:17:F9:A6:41:24:36:1D:E2:21:1F:E8:36:71:5B
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1C80
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/at82CQmCF_mmQSQ2HeIhH-g2cVs.roa
Signing time: Sun 05 May 2024 23:24:30 +0000
ROA not before: Sun 05 May 2024 23:24:30 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7296 (0x1c80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: May 5 23:24:30 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6ADF3609098217F9A64124361DE2211FE836715B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:37:cc:ef:d0:e8:50:63:5b:58:8f:6d:d9:0d:
0e:a0:af:f9:fe:27:91:77:e1:2a:68:b1:00:ec:28:
6f:8d:7b:42:ca:bd:9b:77:58:13:10:9d:dc:a6:aa:
66:64:2e:6b:1e:b8:cb:07:98:7f:8b:f4:86:5c:33:
97:23:fc:6c:3c:a6:af:aa:91:eb:6a:bf:7d:ae:f4:
ed:d0:ac:1b:07:a8:2f:58:16:7e:54:55:40:79:6a:
38:9d:c0:a9:27:cc:c8:4d:6f:b8:4d:1e:df:89:c4:
9c:9e:5f:a6:cb:f4:9b:d7:7b:16:9c:f4:53:71:ad:
6d:72:63:e2:01:39:4a:6c:d4:a0:85:17:e7:2d:a8:
4a:5d:99:c2:60:f7:1c:86:87:05:53:26:02:90:f6:
3e:a4:04:03:6a:7a:6c:fb:01:01:e3:be:f2:1e:9a:
fa:a5:82:69:d0:cf:43:75:ba:c0:4c:6a:31:8b:c5:
f9:e2:a6:12:a4:65:47:66:2d:e3:58:8a:ef:9f:c9:
ef:c1:c2:4b:7a:ff:fa:3c:4f:a0:86:f8:58:48:87:
6e:ff:2c:0a:0c:a8:f5:d0:ac:e1:b8:a2:ef:2a:4a:
9d:3f:a9:14:b3:8e:97:a8:d9:d5:d4:49:47:cd:93:
c7:60:9c:04:3b:5f:61:95:c1:4b:20:70:05:f5:a0:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DF:36:09:09:82:17:F9:A6:41:24:36:1D:E2:21:1F:E8:36:71:5B
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/at82CQmCF_mmQSQ2HeIhH-g2cVs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9d:57:ed:ce:65:34:db:91:80:35:48:99:67:b7:1b:be:67:d3:
d3:dc:dd:b9:d0:40:f5:82:29:1f:6d:38:eb:35:ae:19:00:9b:
fb:b5:92:67:32:93:93:48:99:f0:2f:57:05:cf:d0:11:a5:d1:
6c:34:b3:49:15:55:0b:df:8e:76:78:38:ef:34:7f:51:e0:87:
e6:df:d7:6e:4b:39:24:af:c0:f6:44:45:b1:c2:8f:81:9c:28:
26:d4:c3:91:b9:6d:df:01:77:18:e6:9a:57:33:83:36:62:4f:
4b:d7:fe:cc:00:54:77:5f:c8:b6:36:c2:51:93:7d:a1:9e:08:
ee:9d:e6:da:c2:49:a1:b3:af:13:38:30:08:b1:68:65:59:a6:
85:d0:c0:f5:3b:50:5c:1d:b1:0b:88:6d:b3:84:95:c9:82:6d:
88:f2:89:b3:1f:b5:ca:8a:01:52:98:b0:d6:39:69:a0:6a:e1:
50:de:69:79:c0:ba:b1:9c:48:8d:91:4e:80:4e:8c:c2:66:23:
bf:15:fb:18:ff:28:6d:20:4b:0e:65:2b:f9:61:2a:84:71:7a:
26:4d:1c:f6:ff:af:50:da:51:76:bd:08:3a:3c:7c:b8:87:03:
ff:91:84:d1:46:3d:3b:db:05:0f:66:16:64:ac:bb:da:49:f1:
13:18:a1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 01:08:56 2024 by rpki-client on console-fra.rpki-client.org