Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/g828Fl1cex-rNGU_Nyd86FwzwTE.roa
File: g828Fl1cex-rNGU_Nyd86FwzwTE.roa (raw, json)
Hash identifier: i1aIfaL4oD/UG1lLhm6B8CHXoBiYUipnXF9Uu+rLzr8=
Subject key identifier: 83:CD:BC:16:5D:5C:7B:1F:AB:34:65:3F:37:27:7C:E8:5C:33:C1:31
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 165A
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/g828Fl1cex-rNGU_Nyd86FwzwTE.roa
Signing time: Fri 19 Apr 2024 13:54:19 +0000
ROA not before: Fri 19 Apr 2024 13:54:19 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5722 (0x165a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 19 13:54:19 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=83CDBC165D5C7B1FAB34653F37277CE85C33C131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:29:32:94:8c:cf:a4:c2:7e:3a:b7:1c:89:
9e:ff:0f:f5:a8:4d:cd:f4:0c:b0:1f:6b:20:f8:2f:
2f:b1:7e:c3:bc:64:ec:8d:3b:a9:3f:18:5e:0b:a6:
0e:aa:f2:2f:f4:a0:87:3f:d6:1c:ef:d5:58:73:ed:
e5:59:9d:77:b6:bc:29:67:fd:0d:c7:f4:48:49:8e:
62:7b:37:7a:1d:9b:2d:b9:5d:2b:46:ec:99:3a:f4:
37:cf:16:2e:76:06:2e:e9:32:23:29:00:86:f6:83:
cd:58:bd:68:d7:ab:9a:0f:7d:6c:dc:12:a7:47:e1:
47:f8:d0:88:02:fe:a2:bc:54:13:71:5d:55:59:81:
3b:00:26:69:ff:77:c5:d2:c8:7b:57:ab:00:95:99:
1a:3a:07:7d:b1:a9:85:4e:60:cd:cc:71:fe:5b:1d:
a3:d5:50:36:9e:75:f8:f7:67:bc:e6:5c:14:e0:72:
ea:97:b1:1b:39:f2:86:b3:af:d7:4f:5c:36:3f:74:
7b:9a:73:8f:d3:a4:20:ef:1d:ec:3b:6a:35:1d:32:
1e:68:ed:e2:03:f8:c0:c4:f4:dd:73:81:c2:1c:70:
e6:f2:44:9f:97:27:00:26:20:60:b2:a9:3b:44:46:
4e:17:e7:b8:c0:11:70:16:ad:87:4f:c2:6c:c3:71:
1f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:CD:BC:16:5D:5C:7B:1F:AB:34:65:3F:37:27:7C:E8:5C:33:C1:31
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/g828Fl1cex-rNGU_Nyd86FwzwTE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c7:16:3b:36:7d:e4:5a:7e:5d:cf:bb:2b:70:b3:da:0e:da:22:
c3:e9:4b:d6:d0:5e:8e:66:ca:0d:7c:82:88:0f:c8:5a:fd:b3:
4d:fb:c8:12:1b:21:0d:e6:2d:4e:a9:1a:82:fb:0e:2a:5d:39:
87:ad:de:54:70:56:d5:8b:30:f4:3c:40:3c:47:82:91:1e:fe:
46:7c:dc:6c:f5:70:9e:88:af:2d:92:ac:06:dd:5a:03:0c:a2:
bc:e2:11:a8:d5:d0:e7:fe:06:16:9d:c4:47:1d:ad:43:10:c5:
fb:40:2a:9f:34:46:a2:19:83:4b:27:1c:c6:fa:05:16:a7:4b:
6b:dd:36:dc:cd:dc:e4:96:0a:bd:b3:1a:20:c3:91:4b:81:fe:
f9:0a:4a:92:f9:67:cb:f8:9e:19:99:eb:0a:25:28:51:6b:8a:
47:a5:c5:2a:4a:10:b1:fd:75:2a:60:cb:0b:bc:df:c1:18:c5:
f5:84:29:72:78:02:d3:fa:76:10:b3:96:ab:ad:51:ba:25:a2:
4e:b3:3b:a6:da:b2:5d:85:79:26:52:1b:f2:81:c4:d9:f3:a0:
11:c7:ad:81:1a:af:81:56:c0:74:48:06:aa:0b:b4:bf:61:81:
48:3d:27:c9:45:af:7e:b0:c0:d1:19:4a:33:4a:f9:cb:4d:6f:
66:c4:3f:c5
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICFlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MTkx
MzU0MTlaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDgzQ0RCQzE2NUQ1QzdC
MUZBQjM0NjUzRjM3Mjc3Q0U4NUMzM0MxMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI+ykylIzPpMJ+OrcciZ7/D/WoTc30DLAfayD4Ly+xfsO8ZOyN
O6k/GF4Lpg6q8i/0oIc/1hzv1Vhz7eVZnXe2vCln/Q3H9EhJjmJ7N3odmy25XStG
7Jk69DfPFi52Bi7pMiMpAIb2g81YvWjXq5oPfWzcEqdH4Uf40IgC/qK8VBNxXVVZ
gTsAJmn/d8XSyHtXqwCVmRo6B32xqYVOYM3Mcf5bHaPVUDaedfj3Z7zmXBTgcuqX
sRs58oazr9dPXDY/dHuac4/TpCDvHew7ajUdMh5o7eID+MDE9N1zgcIccObyRJ+X
JwAmIGCyqTtERk4X57jAEXAWrYdPwmzDcR+3AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUg828Fl1cex+rNGU/Nyd86FwzwTEwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL2c4MjhGbDFjZXgtck5H
VV9OeWQ4NkZ3endURS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAxxY7Nn3kWn5dz7srcLPaDtoiw+lL1tBe
jmbKDXyCiA/IWv2zTfvIEhshDeYtTqkagvsOKl05h63eVHBW1Ysw9DxAPEeCkR7+
RnzcbPVwnoivLZKsBt1aAwyivOIRqNXQ5/4GFp3ERx2tQxDF+0AqnzRGohmDSycc
xvoFFqdLa9023M3c5JYKvbMaIMORS4H++QpKkvlny/ieGZnrCiUoUWuKR6XFKkoQ
sf11KmDLC7zfwRjF9YQpcngC0/p2ELOWq61RuiWiTrM7ptqyXYV5JlIb8oHE2fOg
EcetgRqvgVbAdEgGqgu0v2GBSD0nyUWvfrDA0RlKM0r5y01vZsQ/xQ==
Generated at Fri Apr 19 19:03:59 2024 by rpki-client on console.sobornost.net