Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/b62CH4ev3mBWITOoyTqhatoWhLc.roa
File: b62CH4ev3mBWITOoyTqhatoWhLc.roa (raw, json)
Hash identifier: BhyyKBQPOEfpCXepsxSc4wEVcb9eNLOgfgcImROYwdU=
Subject key identifier: 6F:AD:82:1F:87:AF:DE:60:56:21:33:A8:C9:3A:A1:6A:DA:16:84:B7
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 0E8C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/b62CH4ev3mBWITOoyTqhatoWhLc.roa
Signing time: Fri 29 Mar 2024 18:22:29 +0000
ROA not before: Fri 29 Mar 2024 18:22:29 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3724 (0xe8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Mar 29 18:22:29 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=6FAD821F87AFDE60562133A8C93AA16ADA1684B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:28:7e:2b:83:16:71:c0:8c:ca:6d:53:a4:
43:7d:6f:05:f5:71:ad:67:23:8a:dd:43:67:e5:87:
e1:1c:41:69:9c:7b:d1:a7:3f:9c:67:04:95:a4:21:
5c:27:89:1b:d3:12:79:a5:2f:bc:3d:d8:a9:2a:ff:
f4:b1:3a:93:8f:b0:6a:20:55:fa:a6:10:58:f1:f3:
d6:69:0b:e2:be:44:3e:30:52:4c:7a:dd:bf:d6:39:
17:d0:2b:ed:51:38:f1:26:91:e2:6a:be:b6:f1:33:
f0:89:71:6b:91:fd:b2:46:9e:f4:b4:fa:09:e6:a7:
49:61:51:27:1e:63:10:19:09:ff:6c:08:b0:b1:b9:
f9:0b:ba:c3:f5:f0:5a:bd:22:48:3f:e5:8d:e0:b4:
b6:05:ba:c8:a2:55:79:2d:f9:e1:cf:01:eb:41:f5:
04:38:31:05:4a:87:6e:97:bb:24:49:8a:bd:00:1b:
58:c6:ad:ee:f0:d1:17:95:3d:55:59:9c:ca:54:6d:
19:82:56:38:4e:cf:41:8d:49:c7:09:2b:db:05:7e:
b5:ef:c0:65:47:0e:12:93:39:1b:59:36:d7:e6:3a:
24:1e:e8:20:1d:89:2a:4a:87:53:0a:e2:c6:ad:3d:
8d:52:4c:15:66:1d:17:38:a4:1a:f8:15:4e:47:f3:
33:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:AD:82:1F:87:AF:DE:60:56:21:33:A8:C9:3A:A1:6A:DA:16:84:B7
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/b62CH4ev3mBWITOoyTqhatoWhLc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:66:92:2c:d7:c0:a8:35:83:a2:f5:71:47:c1:4b:20:71:fc:
34:cc:ae:7f:84:20:d6:22:89:10:05:8d:5a:e6:b4:2c:4a:6d:
61:1a:3d:0a:f1:06:90:38:95:74:18:ee:18:ef:f0:29:a4:6c:
37:52:be:58:35:4c:42:fd:64:80:1d:21:7d:a0:65:cc:88:fc:
48:8b:75:b9:15:b3:4c:53:7d:1e:06:61:aa:bc:e4:97:93:a9:
5a:da:03:70:42:74:14:6b:63:f9:c1:43:42:d3:b4:cb:b5:02:
0e:e4:1c:5a:ae:7c:27:ab:31:4c:47:6b:43:49:08:da:af:d4:
a1:3b:94:f2:f6:04:2f:60:19:ff:3e:41:7d:41:75:e5:b4:df:
d5:30:13:8a:72:74:38:be:f5:85:44:25:ef:9b:32:d8:a3:96:
5c:55:67:4d:5b:5b:fa:d4:86:9d:77:b7:9d:28:40:54:00:a7:
e6:82:58:33:26:25:4f:16:6f:4e:79:4e:25:d4:8c:a7:3e:72:
da:cb:1c:d1:07:ea:44:af:91:1a:83:ba:d1:a7:5a:2c:c2:3c:
e9:e8:41:93:ea:f1:53:8d:de:9e:1a:44:33:c5:f0:75:4d:8a:
7f:fa:e9:04:eb:4b:a3:c7:14:65:86:2d:cf:3a:cc:af:30:23:
af:a0:5a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 30 00:02:22 2024 by rpki-client on console.sobornost.net