Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/513/zNV9jOHb8J04XmSIXj28M7hZD0Y.roa
File: zNV9jOHb8J04XmSIXj28M7hZD0Y.roa (raw, json)
Hash identifier: d8z78Pe52LzkXgyih7Qkrfwre4yqYsVZLyIVPzlos7w=
Subject key identifier: CC:D5:7D:8C:E1:DB:F0:9D:38:5E:64:88:5E:3D:BC:33:B8:59:0F:46
Certificate issuer: /CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Certificate serial: 15A0
Authority key identifier: EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/zNV9jOHb8J04XmSIXj28M7hZD0Y.roa
Signing time: Wed 17 Apr 2024 15:23:23 +0000
ROA not before: Wed 17 Apr 2024 15:23:23 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 55995
IP address blocks: 112.75.0.0/16 maxlen: 24
112.75.104.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5536 (0x15a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFCA4677F321F4DF2317391F98E223646745E7EE
Validity
Not Before: Apr 17 15:23:23 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=CCD57D8CE1DBF09D385E64885E3DBC33B8590F46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:47:83:f2:71:3f:64:bd:3b:b3:ca:dd:87:d2:
8b:ba:5c:4b:7d:30:55:d8:5d:52:f8:0c:46:a0:85:
5f:e7:27:7a:8e:d4:94:05:fb:ec:4d:b7:39:1c:68:
a1:e0:81:87:d9:13:fe:19:b2:58:bb:54:33:76:c2:
72:ca:d2:fa:4d:1f:98:a6:d9:b8:ce:fc:de:ce:a9:
78:af:c7:53:22:17:ea:57:ad:fb:9c:4a:90:bf:54:
da:d0:2e:44:26:28:85:db:3a:ae:5b:c0:dc:9c:d7:
a5:55:c8:6c:99:f0:06:a3:c2:f2:2f:bc:f7:3d:5a:
f0:d3:a4:03:04:a5:36:a7:c0:36:e0:76:9c:c2:93:
35:b6:06:ef:4e:f8:46:d3:2e:b5:75:bb:d2:f0:e8:
6f:fd:62:8b:35:3d:c8:01:f1:e8:05:ce:6d:5d:a9:
1c:6f:ef:c7:ab:e5:78:c9:38:cc:40:97:9f:a7:8b:
d9:18:94:de:fb:0e:d4:78:c1:8c:7a:63:0a:c7:da:
fd:52:74:5b:44:b9:e7:66:79:ae:60:4b:d2:f2:c4:
98:49:a3:5c:d1:fd:8d:a7:0b:ae:d9:85:00:81:dd:
66:85:e6:3d:e5:15:80:9a:84:55:f6:66:df:ca:2b:
2f:fb:ff:79:78:b0:92:25:ff:a6:ad:60:64:7f:bb:
a8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D5:7D:8C:E1:DB:F0:9D:38:5E:64:88:5E:3D:BC:33:B8:59:0F:46
X509v3 Authority Key Identifier:
keyid:EF:CA:46:77:F3:21:F4:DF:23:17:39:1F:98:E2:23:64:67:45:E7:EE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/78pGd_Mh9N8jFzkfmOIjZGdF5-4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/78pGd_Mh9N8jFzkfmOIjZGdF5-4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/513/zNV9jOHb8J04XmSIXj28M7hZD0Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
32:01:5c:6c:59:07:6a:29:7f:22:ac:f9:74:b7:be:11:bb:dc:
cb:25:b6:1b:ca:ca:32:b0:d8:a9:a5:d7:61:17:6f:06:db:c6:
d9:e9:53:a5:7d:62:48:eb:11:59:02:93:b1:82:90:db:5d:d6:
ee:b8:58:31:d4:8f:e3:9b:4d:4c:82:51:4f:eb:8a:27:f9:5c:
fd:aa:12:5d:8b:a6:1b:e6:34:24:4d:07:5a:87:1b:b1:c6:ee:
fb:2f:91:5f:46:7b:5d:ad:93:9d:57:05:02:41:3f:ec:21:0a:
c8:41:31:2c:cd:9e:49:be:1f:5d:49:21:81:c2:57:15:bb:3e:
c2:e1:38:6d:2a:26:95:42:42:fc:7c:d4:99:80:6f:0c:91:e3:
b1:3a:3a:28:df:bd:52:11:f8:5f:e6:6c:55:1c:dd:fd:35:09:
56:99:7b:d5:cd:8c:b7:0d:08:8c:cf:bb:fd:fa:18:3d:d6:d1:
72:60:8a:a1:25:a9:93:69:be:2c:19:4f:d2:86:d5:31:d0:9b:
05:c8:2b:59:ab:71:32:c2:d0:7e:00:98:77:be:d3:9e:e3:ea:
33:8a:d7:f6:58:90:19:01:17:97:17:af:63:1a:3d:d4:d6:4f:
25:c3:17:ca:ff:cd:2e:9c:c0:bb:8f:3a:7c:ef:55:a2:5d:1e:
05:5b:24:fb
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICFaAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD
QTQ2NzdGMzIxRjRERjIzMTczOTFGOThFMjIzNjQ2NzQ1RTdFRTAeFw0yNDA0MTcx
NTIzMjNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKENDRDU3RDhDRTFEQkYw
OUQzODVFNjQ4ODVFM0RCQzMzQjg1OTBGNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJR4PycT9kvTuzyt2H0ou6XEt9MFXYXVL4DEaghV/nJ3qO1JQF
++xNtzkcaKHggYfZE/4Zsli7VDN2wnLK0vpNH5im2bjO/N7OqXivx1MiF+pXrfuc
SpC/VNrQLkQmKIXbOq5bwNyc16VVyGyZ8AajwvIvvPc9WvDTpAMEpTanwDbgdpzC
kzW2Bu9O+EbTLrV1u9Lw6G/9Yos1PcgB8egFzm1dqRxv78er5XjJOMxAl5+ni9kY
lN77DtR4wYx6YwrH2v1SdFtEuedmea5gS9LyxJhJo1zR/Y2nC67ZhQCB3WaF5j3l
FYCahFX2Zt/KKy/7/3l4sJIl/6atYGR/u6hZAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUzNV9jOHb8J04XmSIXj28M7hZD0YwHwYDVR0jBBgwFoAU78pGd/Mh9N8jFzkf
mOIjZGdF5+4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEz
Lzc4cEdkX01oOU44akZ6a2ZtT0lqWkdkRjUtNC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNzhwR2RfTWg5TjhqRnprZm1PSWpaR2RGNS00LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEzL3pOVjlqT0hiOEowNFht
U0lYajI4TTdoWkQwWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD
AwBwSzANBgkqhkiG9w0BAQsFAAOCAQEAMgFcbFkHail/Iqz5dLe+EbvcyyW2G8rK
MrDYqaXXYRdvBtvG2elTpX1iSOsRWQKTsYKQ213W7rhYMdSP45tNTIJRT+uKJ/lc
/aoSXYumG+Y0JE0HWocbscbu+y+RX0Z7Xa2TnVcFAkE/7CEKyEExLM2eSb4fXUkh
gcJXFbs+wuE4bSomlUJC/HzUmYBvDJHjsTo6KN+9UhH4X+ZsVRzd/TUJVpl71c2M
tw0IjM+7/foYPdbRcmCKoSWpk2m+LBlP0obVMdCbBcgrWatxMsLQfgCYd77TnuPq
M4rX9liQGQEXlxevYxo91NZPJcMXyv/NLpzAu486fO9Vol0eBVsk+w==
Generated at Wed Apr 17 21:27:37 2024 by rpki-client on console.sobornost.net