Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/msyBjMZ9YjneM4XQavy4mteB_J0.roa
File: msyBjMZ9YjneM4XQavy4mteB_J0.roa (raw, json)
Hash identifier: SdedfqVm3M5KY18+vVp9yBb/dxD59FuHqMOFMehmeu8=
Subject key identifier: 9A:CC:81:8C:C6:7D:62:39:DE:33:85:D0:6A:FC:B8:9A:D7:81:FC:9D
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1570
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/msyBjMZ9YjneM4XQavy4mteB_J0.roa
Signing time: Wed 17 Apr 2024 03:23:20 +0000
ROA not before: Wed 17 Apr 2024 03:23:20 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5488 (0x1570)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 17 03:23:20 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9ACC818CC67D6239DE3385D06AFCB89AD781FC9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1d:f7:2e:0d:13:5e:a5:40:1e:90:fc:9d:f5:
fb:4f:17:4b:3b:87:b8:57:80:e5:9e:65:1f:6d:7c:
65:12:68:32:49:70:64:ee:60:56:80:5d:28:77:02:
5f:28:d2:d2:7d:25:0e:df:c8:15:8b:de:73:71:54:
bc:11:df:8f:d2:90:98:a5:e9:71:fd:50:a8:30:ac:
fc:e8:a3:fa:31:88:68:77:56:3a:08:0f:4b:30:40:
42:a6:c9:33:bc:76:2c:9c:7b:8c:46:bb:f7:57:a6:
d9:06:43:b5:05:86:64:a0:6e:aa:30:79:08:70:d9:
f0:8f:d8:d6:8c:d7:ca:8f:d2:13:43:62:15:da:c1:
33:e6:a1:73:a8:5b:2a:53:3b:fb:a1:46:b3:d4:90:
c6:b1:ab:91:b5:64:43:55:f8:43:59:ad:83:25:10:
c1:8e:a7:49:86:74:83:2f:32:05:1c:da:28:e6:2a:
c2:35:e0:c6:c1:0c:08:b3:84:1f:86:c6:10:f3:1a:
f5:bc:68:34:fa:f4:0f:e5:aa:ad:40:c9:ac:50:10:
95:1d:01:95:31:be:6c:96:31:80:e5:9b:2b:51:3c:
f7:bb:cd:d3:03:07:8e:7f:86:36:9a:8c:58:9c:b4:
11:5a:6f:71:8b:7c:d2:bc:98:8c:66:4f:07:71:16:
54:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CC:81:8C:C6:7D:62:39:DE:33:85:D0:6A:FC:B8:9A:D7:81:FC:9D
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/msyBjMZ9YjneM4XQavy4mteB_J0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
90:86:70:3a:d6:d1:af:76:c3:32:dc:67:cc:34:9e:e4:d3:3f:
81:68:12:b1:e0:d7:64:a2:01:bd:c2:bd:b1:a1:e5:91:2b:5c:
e5:a4:23:4d:d8:d8:22:0f:2f:4f:b1:bf:af:68:90:38:25:3f:
4e:11:6c:c3:98:72:3b:f0:48:a5:8c:87:8f:cf:83:65:ed:08:
56:8b:cc:f6:e8:cb:df:a7:87:b8:71:28:ca:56:c0:e6:77:f6:
a7:11:c3:73:fb:21:07:d3:69:23:72:11:f3:da:ec:d0:19:60:
3a:58:03:93:b0:bc:2b:c8:11:fe:03:5b:26:2a:a3:f3:d2:ef:
e5:f8:5b:cb:b4:9f:e8:8c:44:2f:dc:28:4b:99:f6:b5:40:a2:
58:a5:d2:0f:f2:04:16:13:bc:d8:33:e1:9d:ec:90:94:ed:26:
d4:fc:95:3c:03:74:39:e6:84:ac:5b:88:66:f0:52:23:17:f5:
4c:bb:22:17:da:81:78:9e:5b:f7:36:f9:76:1e:1e:58:6b:30:
71:36:03:94:c3:15:43:0d:df:43:20:59:60:ea:17:8b:72:0a:
97:34:87:e6:fd:4e:19:3b:14:4a:88:38:0c:e3:f8:c7:96:e3:
63:7b:89:97:69:0f:67:c1:0b:a4:dd:30:3a:de:d4:d4:ce:fe:
08:a0:e6:56
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICFXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MTcw
MzIzMjBaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDlBQ0M4MThDQzY3RDYy
MzlERTMzODVEMDZBRkNCODlBRDc4MUZDOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCTHfcuDRNepUAekPyd9ftPF0s7h7hXgOWeZR9tfGUSaDJJcGTu
YFaAXSh3Al8o0tJ9JQ7fyBWL3nNxVLwR34/SkJil6XH9UKgwrPzoo/oxiGh3VjoI
D0swQEKmyTO8diyce4xGu/dXptkGQ7UFhmSgbqoweQhw2fCP2NaM18qP0hNDYhXa
wTPmoXOoWypTO/uhRrPUkMaxq5G1ZENV+ENZrYMlEMGOp0mGdIMvMgUc2ijmKsI1
4MbBDAizhB+GxhDzGvW8aDT69A/lqq1AyaxQEJUdAZUxvmyWMYDlmytRPPe7zdMD
B45/hjaajFictBFab3GLfNK8mIxmTwdxFlR/AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUmsyBjMZ9YjneM4XQavy4mteB/J0wHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL21zeUJqTVo5WWpuZU00
WFFhdnk0bXRlQl9KMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAkIZwOtbRr3bDMtxnzDSe5NM/gWgSseDX
ZKIBvcK9saHlkStc5aQjTdjYIg8vT7G/r2iQOCU/ThFsw5hyO/BIpYyHj8+DZe0I
VovM9ujL36eHuHEoylbA5nf2pxHDc/shB9NpI3IR89rs0BlgOlgDk7C8K8gR/gNb
Jiqj89Lv5fhby7Sf6IxEL9woS5n2tUCiWKXSD/IEFhO82DPhneyQlO0m1PyVPAN0
OeaErFuIZvBSIxf1TLsiF9qBeJ5b9zb5dh4eWGswcTYDlMMVQw3fQyBZYOoXi3IK
lzSH5v1OGTsUSog4DOP4x5bjY3uJl2kPZ8ELpN0wOt7U1M7+CKDmVg==
-----END CERTIFICATE-----
Generated at Wed Apr 17 04:52:50 2024 by rpki-client on console-ams.rpki-client.org