Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/vMKwCuIyL85AVWb_7Nb7-wZ1q0s.roa
File: vMKwCuIyL85AVWb_7Nb7-wZ1q0s.roa (raw, json)
Hash identifier: 6YaAxCIZEcdujssw17fWE2h2INLTNXMDNTqidxXb/uM=
Subject key identifier: BC:C2:B0:0A:E2:32:2F:CE:40:55:66:FF:EC:D6:FB:FB:06:75:AB:4B
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 145C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/vMKwCuIyL85AVWb_7Nb7-wZ1q0s.roa
Signing time: Sun 14 Apr 2024 06:24:09 +0000
ROA not before: Sun 14 Apr 2024 06:24:09 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5212 (0x145c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 14 06:24:09 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=BCC2B00AE2322FCE405566FFECD6FBFB0675AB4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:48:5f:4e:a1:ba:62:17:0a:cf:bd:64:3f:e8:
ed:88:c3:9d:da:0f:71:53:ad:76:59:b1:07:ef:72:
a8:0d:a3:cf:ab:24:af:3a:d9:65:ec:18:9a:e1:1c:
df:ed:e2:a9:be:69:b6:05:89:39:cb:a4:3d:3c:6c:
91:b9:38:f0:8d:e1:fc:43:f9:92:c9:d4:12:70:ad:
a8:ca:40:15:17:e7:7e:fa:8d:42:3b:58:7d:96:25:
46:60:7a:36:20:50:0d:23:47:69:5e:dd:6c:ff:ca:
3a:0d:b1:25:b4:59:df:5f:ea:51:59:3e:e4:08:2e:
f3:e6:79:09:49:63:29:2d:7b:60:28:d4:c6:f2:87:
fa:f4:8b:c3:f6:16:41:c6:af:81:8d:cb:24:9a:f3:
a8:07:8d:3a:dd:60:f7:47:f4:ac:b5:72:db:1d:28:
5e:05:8a:6c:43:a4:67:58:79:ad:36:1f:1d:83:1c:
bb:49:23:71:02:b4:78:45:d6:04:0e:a1:42:ed:73:
0f:c6:0b:62:5c:eb:de:73:37:2d:0d:38:cc:2e:dd:
75:51:74:cd:38:bb:73:ed:b5:08:67:fc:21:66:7b:
53:fa:ee:92:bb:33:9d:b8:df:75:83:05:31:b6:fd:
10:2d:68:99:0c:9b:2e:11:9a:4d:96:09:57:48:15:
7b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C2:B0:0A:E2:32:2F:CE:40:55:66:FF:EC:D6:FB:FB:06:75:AB:4B
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/vMKwCuIyL85AVWb_7Nb7-wZ1q0s.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d4:8e:56:4a:e7:ae:e1:2f:55:0f:c3:7b:5a:f6:4b:8f:27:ba:
f3:29:ac:b7:fb:74:a9:9d:e5:0a:a3:06:74:20:76:b4:40:91:
ac:ed:35:10:a3:cd:31:89:4f:c0:37:6b:af:53:cb:f6:88:1c:
cd:ca:fe:05:50:7a:52:3b:30:49:cd:1a:32:7e:58:1e:9d:50:
2e:92:44:79:1c:56:65:52:11:f3:2f:35:e2:79:f2:b7:16:f6:
29:2e:1d:4e:fa:8f:d1:8b:00:af:da:87:27:74:e5:fc:11:72:
13:80:a2:4f:6c:0e:73:70:7d:af:95:bd:5e:b3:1c:e1:e3:77:
3a:e2:b9:7a:ec:c6:bd:e1:8e:eb:2b:0e:62:8c:5e:1e:38:61:
a7:8e:58:30:d1:c3:14:d6:b0:71:c4:11:3b:47:4e:db:0b:9b:
01:51:ec:fe:b8:26:a2:17:37:4e:fb:46:ed:3c:59:10:de:67:
f5:c2:0f:9e:c1:cf:83:75:27:70:2d:3d:0f:22:f8:5d:43:85:
aa:ec:7f:4c:25:4b:fa:24:67:28:3c:13:1f:26:bf:8b:74:83:
f2:0c:64:c3:5e:fd:bc:b0:a6:84:2e:3d:51:52:03:7d:bd:61:
e5:b5:1b:fe:ed:4b:a3:37:1b:4d:e8:1f:2c:dc:38:08:40:27:
11:b4:6d:eb
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICFFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MTQw
NjI0MDlaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEJDQzJCMDBBRTIzMjJG
Q0U0MDU1NjZGRkVDRDZGQkZCMDY3NUFCNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhSF9OobpiFwrPvWQ/6O2Iw53aD3FTrXZZsQfvcqgNo8+rJK86
2WXsGJrhHN/t4qm+abYFiTnLpD08bJG5OPCN4fxD+ZLJ1BJwrajKQBUX5376jUI7
WH2WJUZgejYgUA0jR2le3Wz/yjoNsSW0Wd9f6lFZPuQILvPmeQlJYykte2Ao1Mby
h/r0i8P2FkHGr4GNyySa86gHjTrdYPdH9Ky1ctsdKF4FimxDpGdYea02Hx2DHLtJ
I3ECtHhF1gQOoULtcw/GC2Jc695zNy0NOMwu3XVRdM04u3PttQhn/CFme1P67pK7
M52433WDBTG2/RAtaJkMmy4Rmk2WCVdIFXtFAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUvMKwCuIyL85AVWb/7Nb7+wZ1q0swHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL3ZNS3dDdUl5TDg1QVZX
Yl83TmI3LXdaMXEwcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEA1I5WSueu4S9VD8N7WvZLjye68ymst/t0
qZ3lCqMGdCB2tECRrO01EKPNMYlPwDdrr1PL9ogczcr+BVB6UjswSc0aMn5YHp1Q
LpJEeRxWZVIR8y814nnytxb2KS4dTvqP0YsAr9qHJ3Tl/BFyE4CiT2wOc3B9r5W9
XrMc4eN3OuK5euzGveGO6ysOYoxeHjhhp45YMNHDFNawccQRO0dO2wubAVHs/rgm
ohc3TvtG7TxZEN5n9cIPnsHPg3UncC09DyL4XUOFqux/TCVL+iRnKDwTHya/i3SD
8gxkw179vLCmhC49UVIDfb1h5bUb/u1LozcbTegfLNw4CEAnEbRt6w==
-----END CERTIFICATE-----
Generated at Sun Apr 14 07:21:07 2024 by rpki-client on console-fra.rpki-client.org