Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/mmj6x-DXP3sKnuP7ECrWgYb_d_w.roa
File: mmj6x-DXP3sKnuP7ECrWgYb_d_w.roa (raw, json)
Hash identifier: 9SgevKEM/2a7RQqFYiMv6buQ+wi4sXTK2vhB8IREPak=
Subject key identifier: 9A:68:FA:C7:E0:D7:3F:7B:0A:9E:E3:FB:10:2A:D6:81:86:FF:77:FC
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 172C
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/mmj6x-DXP3sKnuP7ECrWgYb_d_w.roa
Signing time: Sun 21 Apr 2024 18:23:41 +0000
ROA not before: Sun 21 Apr 2024 18:23:41 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5932 (0x172c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 21 18:23:41 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=9A68FAC7E0D73F7B0A9EE3FB102AD68186FF77FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:df:cb:2a:c4:32:06:7c:60:73:1d:bf:16:23:
22:f0:2e:c3:1a:a2:ff:5d:72:38:4c:8e:ba:e5:a3:
09:09:a8:00:53:16:a3:33:40:07:cc:c5:bf:e1:72:
04:a5:50:e5:ad:29:9c:09:22:41:a5:93:df:7e:49:
95:fe:dc:7e:65:99:3b:c3:84:7b:78:8a:19:37:97:
a3:b1:e4:79:f9:ac:36:19:1e:c7:56:e0:30:d8:c6:
24:fa:e7:00:1e:dd:c9:54:3f:20:9d:b1:d0:86:40:
a0:5a:e6:4c:00:c5:34:50:1e:60:a6:a3:b8:45:c3:
65:6f:ca:ed:c6:dc:34:01:8c:6b:78:c6:32:88:d5:
cc:58:bd:a6:e5:3d:58:f0:6b:09:ae:c1:77:56:33:
ae:c4:8d:95:40:8f:c8:60:ca:80:d6:85:97:b3:56:
be:c3:33:19:f6:27:7d:45:51:29:df:5d:10:44:1b:
c5:6f:bb:d7:a7:7d:3f:2b:1a:c4:e6:43:de:d5:ad:
2e:12:8b:00:47:9b:96:f9:9b:66:13:b5:0a:83:82:
4b:e8:9c:55:e5:11:32:f2:45:ba:29:5a:9c:70:dd:
08:5e:f6:b7:d2:03:ca:53:4f:fc:a1:22:26:d2:d9:
ac:77:48:56:85:06:7d:36:6b:1c:60:43:49:95:e8:
0e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:68:FA:C7:E0:D7:3F:7B:0A:9E:E3:FB:10:2A:D6:81:86:FF:77:FC
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/mmj6x-DXP3sKnuP7ECrWgYb_d_w.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d8:04:ad:a0:92:5b:6e:89:2f:f6:65:ca:50:ee:a4:6e:78:0e:
b1:b1:a1:12:ba:39:e7:4e:9b:07:c7:dc:4a:22:4d:e8:9a:2b:
4b:72:90:bd:5d:25:4b:19:1f:6a:84:d8:2c:d0:b1:fb:c7:5d:
7a:e5:a5:75:8a:fe:ed:24:45:ea:0a:b7:dc:03:96:43:76:66:
5f:e0:37:8c:13:4b:5b:82:76:2a:07:c9:d8:be:34:44:be:fa:
6f:9c:af:fe:74:f1:dd:51:b9:f7:4b:82:19:e2:ea:9c:16:d5:
5a:04:31:f9:a8:85:f7:03:6a:09:5d:b8:2e:86:87:fa:94:67:
ff:6b:a8:ef:41:93:01:45:db:d2:7b:20:76:c4:db:3c:95:fd:
c9:23:98:4d:fa:a2:40:55:94:c7:d3:ae:f7:7b:9f:cc:95:39:
51:6c:20:10:ef:71:2d:b4:09:9f:01:09:56:28:5d:bd:2a:a0:
db:58:74:b3:24:01:ec:69:1d:b1:eb:44:e9:6f:b4:18:a0:6a:
eb:a3:f9:a8:a2:38:8d:bd:4e:9a:d2:12:42:b8:41:6d:9a:0d:
ec:84:0a:6c:e2:9f:27:05:20:8e:7a:61:72:36:7e:ea:d2:2d:
2c:e9:e7:76:ed:25:4b:2c:67:e5:9b:45:dd:a4:6f:68:84:07:
8f:8e:c6:88
-----BEGIN CERTIFICATE-----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Generated at Sun Apr 21 22:16:48 2024 by rpki-client on console.sobornost.net