Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/dYP0fg8IrR8_rhmviiRdCDv_wd8.roa
File: dYP0fg8IrR8_rhmviiRdCDv_wd8.roa (raw, json)
Hash identifier: Tmxd3/qG+BldobOQZ0Asldyb1f7dPoY8tzZchG379ko=
Subject key identifier: 75:83:F4:7E:0F:08:AD:1F:3F:AE:19:AF:8A:24:5D:08:3B:FF:C1:DF
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 12F6
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/dYP0fg8IrR8_rhmviiRdCDv_wd8.roa
Signing time: Wed 10 Apr 2024 12:53:06 +0000
ROA not before: Wed 10 Apr 2024 12:53:06 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4854 (0x12f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 10 12:53:06 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=7583F47E0F08AD1F3FAE19AF8A245D083BFFC1DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:1b:06:6b:1b:67:4c:3c:3b:e3:b3:92:21:2a:
0d:43:b8:96:27:cd:cc:d5:6c:a4:ec:c1:f7:51:d8:
82:0a:ea:79:55:5e:37:e6:d0:8c:4d:b9:85:c1:ae:
44:f2:08:f9:28:47:36:27:28:dc:bd:d2:57:26:7d:
d7:53:04:32:0b:fc:c7:47:c3:ae:c8:c0:5f:9e:98:
4b:f8:45:73:96:12:1c:9b:46:6b:a9:91:a7:59:13:
b2:03:d0:c4:4e:9e:ef:db:fe:57:c4:da:72:0c:ac:
3e:91:d7:be:6d:86:d8:4b:e5:40:e5:6d:d1:22:ba:
25:d5:06:e3:5e:1a:50:67:6d:71:40:4e:d6:66:b6:
2e:d4:cf:7f:97:0f:df:a3:45:23:ea:e8:43:1c:45:
8e:bf:44:6d:b2:f5:cf:7a:3e:91:d4:48:1e:f5:48:
bb:e9:d1:20:75:cc:22:ab:02:a1:31:8c:ae:74:4e:
30:4a:25:63:8b:c3:d5:5d:57:31:5c:39:7c:b5:8d:
c1:d7:bb:a1:02:c3:3d:52:c4:21:ae:a6:fa:2d:51:
67:54:aa:80:e7:f4:c5:cf:14:63:e3:13:92:15:09:
c8:ba:7c:1c:89:e8:df:ce:d9:0f:45:57:a5:e0:f1:
f9:ff:a3:c8:48:79:67:36:70:f1:54:ec:7a:ee:e3:
2e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:83:F4:7E:0F:08:AD:1F:3F:AE:19:AF:8A:24:5D:08:3B:FF:C1:DF
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/dYP0fg8IrR8_rhmviiRdCDv_wd8.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
79:e4:13:a6:ba:d0:b8:1a:0b:bd:ae:e3:6b:73:88:cf:5f:62:
0f:37:b5:34:bc:8d:f2:6c:e7:26:1d:b9:58:9c:41:3d:ea:28:
96:f7:da:ff:02:b9:61:ae:ff:1f:fb:76:aa:01:2f:14:9f:05:
f8:64:18:05:84:e2:a0:a3:e0:92:99:e5:52:46:10:ba:5e:ba:
43:81:81:c3:1f:c1:40:61:c0:ba:e8:93:2f:75:1b:50:be:90:
ac:d3:fe:22:45:32:55:73:38:78:3d:16:41:dd:b0:f4:4f:77:
82:f9:ee:12:4d:f3:25:b7:39:a3:b9:13:43:ee:55:a2:7f:d5:
3f:b1:1e:ab:f0:08:48:49:d3:f7:26:b2:5d:e2:90:39:bf:a8:
3b:33:d2:ee:fe:22:52:43:60:4f:78:e6:fb:f6:3c:2c:22:81:
7a:8b:13:77:2b:c3:a8:66:d1:12:a1:eb:78:62:22:1f:65:07:
ec:60:6d:ee:f7:61:fe:9a:e9:53:8b:99:8e:43:f6:2f:a7:7c:
d5:62:28:47:06:4e:c2:be:37:5d:22:fc:f6:9b:39:b5:62:74:
21:9b:14:9a:be:b8:97:0b:1c:e1:ed:8f:c1:cb:41:8f:e2:24:
85:44:ff:89:84:27:dc:7e:27:ae:68:8c:56:84:4e:88:29:fd:
f7:87:45:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 19:53:41 2024 by rpki-client on console.sobornost.net