Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/cebpD9GluMGB0_lb9G06LuNa-ts.roa
File: cebpD9GluMGB0_lb9G06LuNa-ts.roa (raw, json)
Hash identifier: FeHxv1ioJIJAQoYmtb/9YghP3HEYh3mcoG14QREVJYc=
Subject key identifier: 71:E6:E9:0F:D1:A5:B8:C1:81:D3:F9:5B:F4:6D:3A:2E:E3:5A:FA:DB
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 142E
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/cebpD9GluMGB0_lb9G06LuNa-ts.roa
Signing time: Sat 13 Apr 2024 18:53:18 +0000
ROA not before: Sat 13 Apr 2024 18:53:18 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5166 (0x142e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 13 18:53:18 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=71E6E90FD1A5B8C181D3F95BF46D3A2EE35AFADB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fd:80:8d:bf:68:66:3c:9e:7c:47:39:95:c7:
cb:80:da:3a:e7:4f:13:0a:2b:25:dc:ac:6f:48:75:
d3:89:b9:c4:32:06:10:55:27:a2:47:3a:96:ef:a4:
36:5f:5d:8e:dc:f5:ee:e5:bc:ae:9c:c2:55:7c:c2:
b2:49:42:88:e2:dd:74:ff:d7:a0:fe:66:33:56:59:
3a:83:24:a0:d0:31:de:c3:a9:02:7a:83:f5:f0:39:
ef:7f:d3:4a:9c:19:10:9e:07:d6:bb:6f:1e:44:6c:
a1:94:74:68:ef:91:c3:2c:33:71:6b:d9:b7:bb:1a:
52:79:0e:f2:69:42:6b:2e:d0:a8:34:a0:36:e1:04:
31:c1:e1:18:35:9f:a9:7d:73:9e:e7:98:09:f8:72:
4d:2e:6f:33:20:09:45:f6:76:68:e5:0d:e3:57:5e:
6c:a4:d2:a5:b7:ca:9b:7f:d2:65:9b:2a:26:d9:ac:
69:f5:08:7d:51:e6:72:51:50:b4:87:79:07:1b:54:
c2:b6:77:b1:d6:29:c6:9f:67:a2:63:56:d1:e3:c1:
c6:de:39:16:47:8f:ea:ca:68:a7:ac:10:09:3d:5d:
f5:0f:45:d5:ed:65:ab:ce:fe:19:0c:0d:c2:b3:cc:
45:a2:01:b7:22:63:60:dd:c3:24:08:d9:1e:5e:c1:
eb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E6:E9:0F:D1:A5:B8:C1:81:D3:F9:5B:F4:6D:3A:2E:E3:5A:FA:DB
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/cebpD9GluMGB0_lb9G06LuNa-ts.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
66:6f:10:11:e8:7e:7b:a3:3d:45:69:fb:1e:1f:c2:03:7a:3a:
35:e9:b2:3e:8f:38:7d:87:48:8b:40:63:51:9a:cf:b5:f2:bd:
cf:04:f7:c5:3d:70:26:ed:13:35:a7:10:2b:20:ec:67:a3:fb:
64:00:96:21:7d:ce:9a:57:24:11:b3:98:a8:33:4a:f3:0b:5e:
e3:b8:91:7a:72:13:8b:e4:f1:be:0c:0d:b6:11:ec:cc:49:49:
a0:71:02:22:a2:3c:95:1c:33:b9:37:da:f9:52:da:d7:0b:73:
2a:41:5f:0d:e1:77:4f:00:6b:d4:61:c6:20:68:49:a0:8f:20:
1f:74:54:a7:56:06:73:c9:6e:1c:75:5a:16:f2:e1:72:25:8d:
2f:00:39:39:29:1d:3d:be:eb:6a:31:8b:7b:bd:31:f6:d5:68:
8e:7d:b6:d8:52:a6:e4:ed:42:cd:b0:78:12:35:11:ae:2b:4a:
d8:8b:16:a1:50:0e:3a:d9:a6:ca:6d:3b:49:9c:4b:52:ed:fd:
4a:c3:af:d1:a3:a1:6c:f9:81:77:79:c3:94:97:8e:0a:77:10:
fc:09:6a:34:f5:7f:aa:28:39:d3:f5:3d:69:63:e0:ec:c1:9a:
77:58:de:f9:7b:43:0f:3f:ac:c4:85:e6:30:10:a2:85:42:97:
04:f8:14:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 13 20:15:27 2024 by rpki-client on console-fra.rpki-client.org