Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/wEjelCdKi7FBXKeeoZxVzEQMSwc.roa
File: wEjelCdKi7FBXKeeoZxVzEQMSwc.roa (raw, json)
Hash identifier: sSey0nLlEM2grZ3KaueMo1hhDmJepQDgur1viT5irTU=
Subject key identifier: C0:48:DE:94:27:4A:8B:B1:41:5C:A7:9E:A1:9C:55:CC:44:0C:4B:07
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 1978
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/wEjelCdKi7FBXKeeoZxVzEQMSwc.roa
Signing time: Sat 27 Apr 2024 21:23:54 +0000
ROA not before: Sat 27 Apr 2024 21:23:54 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6520 (0x1978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 27 21:23:54 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=C048DE94274A8BB1415CA79EA19C55CC440C4B07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:13:c9:b9:df:33:38:52:31:38:3f:db:23:a0:
43:66:2e:cc:7a:f3:ca:4f:5e:1c:24:af:ba:bc:31:
18:86:cb:56:19:ee:12:4e:cb:f3:df:46:1e:00:47:
a2:db:00:47:c8:5c:05:17:d4:f3:77:e1:48:71:66:
08:fa:81:90:60:6a:ac:3e:f7:3a:ed:76:39:15:fd:
0d:53:09:b8:f6:1a:ed:55:8e:58:c5:57:bd:1b:51:
ad:c9:c8:06:db:96:60:70:a1:be:30:f7:77:1a:c3:
49:0d:03:97:0b:75:02:62:06:a2:04:4f:05:bf:eb:
de:4f:7d:25:3d:46:60:24:93:87:35:7d:dc:ef:f8:
db:ba:fa:32:b0:99:dd:e5:d1:b5:b4:ff:1a:d3:c2:
af:dd:ab:56:f0:ef:a6:41:9c:be:61:34:ab:e0:b5:
f8:34:bb:8f:9d:3d:0f:31:46:b6:1d:d1:dc:34:38:
31:95:ec:42:b3:3a:29:2c:c1:76:48:ef:ce:46:a4:
ee:b8:35:60:2d:4d:69:e6:b4:05:5e:46:07:32:4a:
7e:91:f9:0b:fe:d9:f0:8a:e9:51:ad:c1:bd:13:56:
84:41:72:de:a6:c9:78:0e:59:00:07:19:1e:ff:60:
61:d9:6c:44:45:c9:d0:b2:35:ad:53:4d:f9:e9:bc:
e6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:48:DE:94:27:4A:8B:B1:41:5C:A7:9E:A1:9C:55:CC:44:0C:4B:07
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/wEjelCdKi7FBXKeeoZxVzEQMSwc.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a0:8c:c5:20:d7:dd:f3:7a:d2:55:d9:b9:19:ed:f0:34:19:4b:
53:6f:3a:c9:bf:fc:82:01:83:19:bb:4e:9d:2d:bc:6f:f4:32:
46:9d:39:17:41:9b:cb:53:2e:ec:c7:88:55:68:9f:70:21:ee:
f6:1e:22:5d:9a:ca:19:e3:d9:fb:10:9a:8f:ae:56:b4:a7:a7:
50:a4:0e:ef:22:59:e7:28:e2:77:29:12:aa:1b:f8:f4:66:ad:
7e:a8:c6:5b:76:01:99:19:86:de:7a:28:68:c6:e5:5c:c2:45:
9e:76:a0:f2:aa:4e:58:2f:e0:60:3e:61:df:da:b9:2a:c6:7f:
ad:25:14:11:f5:e2:96:48:98:bc:f9:f7:5f:43:7c:a0:ab:90:
f1:e4:28:fb:3f:e8:58:14:a1:0e:9c:44:cf:a3:29:71:bd:01:
ce:c6:86:69:1c:19:26:50:2e:6a:89:ab:ca:cd:8c:96:fc:f5:
43:6e:60:ba:e6:40:b6:2e:cc:f0:71:d7:f4:d1:07:b7:3b:9c:
9c:4f:a6:e9:b8:9c:9b:db:59:82:7e:29:7f:8b:71:34:09:1b:
8f:0e:9b:49:82:a7:c4:80:bc:c1:c0:bc:85:9f:77:0b:aa:40:
77:11:ac:73:d7:c8:64:1b:4d:89:72:ce:67:92:f6:39:83:e6:
54:74:ff:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 23:07:07 2024 by rpki-client on console.sobornost.net