Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/2kSpUd-jkwICzHa_pzliYvgNUvo.roa
File: 2kSpUd-jkwICzHa_pzliYvgNUvo.roa (raw, json)
Hash identifier: ah4UMee9XOhp/iyDgeDpnPfuJKvZ4ntM/+yguaf+s7w=
Subject key identifier: DA:44:A9:51:DF:A3:93:02:02:CC:76:BF:A7:39:62:62:F8:0D:52:FA
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 04CD
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/2kSpUd-jkwICzHa_pzliYvgNUvo.roa
Signing time: Tue 13 May 2025 11:38:01 +0000
ROA not before: Tue 13 May 2025 11:38:01 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1229 (0x4cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 13 11:38:01 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=DA44A951DFA3930202CC76BFA7396262F80D52FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4f:a7:a2:f5:4a:4d:ec:0b:e0:62:c7:89:41:
34:78:53:c8:22:a4:79:67:93:b7:e5:62:40:67:d6:
7a:48:27:56:50:57:be:6b:72:44:fd:27:74:9e:aa:
76:58:b1:d4:82:b6:93:d0:49:8b:b2:04:4a:c9:52:
1b:51:d2:51:ec:a6:eb:f6:38:d2:dd:93:55:7e:4c:
90:08:85:57:07:60:2f:e9:e9:e5:e2:11:84:d2:5e:
8f:47:4d:5f:75:50:a7:d5:8e:30:39:f7:c5:24:24:
75:a0:a4:e2:55:c8:6d:0e:9e:0f:a5:39:cc:df:21:
bc:be:2f:eb:15:25:5a:fd:dd:ab:ac:0b:71:de:02:
17:ee:0f:00:b7:41:3c:03:5e:8e:d6:64:27:6b:48:
80:ec:72:bd:6e:c2:e8:53:f5:42:6e:bb:6c:5b:67:
5f:1a:f6:a4:81:64:3c:19:47:45:3b:79:a4:b8:69:
c1:7d:fd:4e:9a:f5:e7:88:a6:5b:a8:3e:7c:c4:50:
9a:91:4a:7b:1f:40:fc:f9:d1:ad:89:a6:6e:44:ae:
66:f0:9c:97:83:a3:7e:ec:0e:66:78:18:b7:41:13:
2d:e2:1c:36:5c:64:de:3e:f9:80:47:31:c6:87:dc:
77:be:5e:b6:3c:1d:7f:0b:c8:76:d7:ab:7f:e0:40:
94:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:44:A9:51:DF:A3:93:02:02:CC:76:BF:A7:39:62:62:F8:0D:52:FA
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/2kSpUd-jkwICzHa_pzliYvgNUvo.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
23:0a:ac:53:9f:7a:8b:5e:94:72:a6:48:47:df:75:7a:67:e6:
53:80:ed:96:c6:6a:ba:f1:7c:ae:c7:08:6f:1f:c1:cc:1c:84:
55:c3:1c:9e:3b:1e:14:39:ca:d2:d3:35:46:2a:db:29:f5:a0:
f5:0a:a3:86:4a:a0:7b:59:eb:91:79:19:a4:d6:16:e7:ac:dd:
5f:46:33:e4:de:d8:41:be:0b:c3:35:53:96:85:24:ba:00:e1:
8e:ac:42:22:53:5b:2e:48:81:09:6d:f7:74:dd:14:84:f3:fc:
3d:3d:19:ea:37:3a:ec:ae:ae:cb:37:64:25:87:c0:91:01:92:
63:52:c7:92:91:37:ea:fa:16:7e:6b:0f:e5:9c:ad:a7:94:ad:
43:2c:15:57:d4:19:d2:78:a9:97:ff:40:77:d7:d3:ef:67:50:
e2:8c:27:d8:67:89:f7:85:17:16:f2:ff:0e:9b:28:23:48:46:
f7:84:cd:69:7a:39:21:1f:02:7c:19:f8:3c:73:a4:6a:36:4c:
e4:6a:0b:d0:56:e1:5f:8b:a7:54:28:a4:28:88:47:d9:82:9e:
3e:42:da:59:de:f5:2e:d9:c9:93:e8:1a:da:9c:13:57:b2:87:
98:b4:e7:06:9e:be:a9:fa:de:61:21:e4:a7:cd:1f:a9:11:cb:
ac:a5:2e:a4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy
NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNTA1MTMx
MTM4MDFaFw0yNjA0MDkwNjMzMjFaMDMxMTAvBgNVBAMTKERBNDRBOTUxREZBMzkz
MDIwMkNDNzZCRkE3Mzk2MjYyRjgwRDUyRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqT6ei9UpN7AvgYseJQTR4U8gipHlnk7flYkBn1npIJ1ZQV75r
ckT9J3SeqnZYsdSCtpPQSYuyBErJUhtR0lHspuv2ONLdk1V+TJAIhVcHYC/p6eXi
EYTSXo9HTV91UKfVjjA598UkJHWgpOJVyG0Ong+lOczfIby+L+sVJVr93ausC3He
AhfuDwC3QTwDXo7WZCdrSIDscr1uwuhT9UJuu2xbZ18a9qSBZDwZR0U7eaS4acF9
/U6a9eeIpluoPnzEUJqRSnsfQPz50a2Jpm5ErmbwnJeDo37sDmZ4GLdBEy3iHDZc
ZN4++YBHMcaH3He+XrY8HX8LyHbXq3/gQJSXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2kSpUd+jkwICzHa/pzliYvgNUvowHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK
ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv
TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni8ya1NwVWQtamt3SUN6SGFf
cHpsaVl2Z05Vdm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu
Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA
G2cwDQYJKoZIhvcNAQELBQADggEBACMKrFOfeotelHKmSEffdXpn5lOA7ZbGarrx
fK7HCG8fwcwchFXDHJ47HhQ5ytLTNUYq2yn1oPUKo4ZKoHtZ65F5GaTWFues3V9G
M+Te2EG+C8M1U5aFJLoA4Y6sQiJTWy5IgQlt93TdFITz/D09Geo3Ouyurss3ZCWH
wJEBkmNSx5KRN+r6Fn5rD+WcraeUrUMsFVfUGdJ4qZf/QHfX0+9nUOKMJ9hnifeF
Fxby/w6bKCNIRveEzWl6OSEfAnwZ+DxzpGo2TORqC9BW4V+Lp1QopCiIR9mCnj5C
2lne9S7ZyZPoGtqcE1eyh5i05waevqn63mEh5KfNH6kRy6ylLqQ=
-----END CERTIFICATE-----
Generated at Sun Jul 20 19:04:08 2025 by rpki-client