Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/81Wx4p0z9ygZi0nEElfnXc3vsho.roa
File: 81Wx4p0z9ygZi0nEElfnXc3vsho.roa (raw, json)
Hash identifier: d7V1zvlSYEhowjWbPGtENDjgk9hH+G8kh0F6TTfWuKw=
Subject key identifier: F3:55:B1:E2:9D:33:F7:28:19:8B:49:C4:12:57:E7:5D:CD:EF:B2:1A
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 1D49
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/81Wx4p0z9ygZi0nEElfnXc3vsho.roa
Signing time: Sun 15 Jun 2025 03:30:20 +0000
ROA not before: Sun 15 Jun 2025 03:30:20 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7497 (0x1d49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Jun 15 03:30:20 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=F355B1E29D33F728198B49C41257E75DCDEFB21A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:fe:18:9f:af:92:d7:b9:51:07:45:e0:6a:
27:14:2d:9e:06:50:16:23:97:d1:6d:40:1c:10:3b:
a4:4c:db:ce:20:27:fd:68:ca:ca:96:f8:3f:94:2b:
91:58:7a:30:54:26:7f:67:36:96:3b:71:51:76:3f:
a8:5c:f2:b9:be:6a:14:1e:23:75:bb:d4:38:1b:4e:
9f:3c:5a:0c:3b:9f:f3:c3:34:76:9a:2b:ea:fa:c5:
5e:82:fa:20:ea:7c:65:70:03:94:9a:b2:ae:6b:67:
ad:f4:cb:ce:05:41:20:96:33:1b:f3:75:a4:5b:83:
f5:ac:82:fc:f7:61:1e:e5:a2:b4:a0:91:8f:59:7b:
f4:93:91:fe:35:d1:f0:82:d5:71:40:10:67:dc:f1:
17:74:b5:33:30:a4:31:e8:dc:ac:39:13:1b:df:8e:
6e:bc:be:87:ce:24:0c:6f:d7:c5:0a:9d:51:d6:04:
80:c3:0f:af:aa:ae:5d:ee:4e:f8:93:7f:86:d9:c3:
5b:a1:bc:89:9c:4f:48:e4:68:58:d6:3e:41:74:88:
51:77:b1:c5:bf:71:c4:90:ec:e1:18:29:a0:ec:0d:
fa:5e:30:d5:1b:a8:df:7c:17:24:1b:66:e4:da:5f:
8f:84:5e:b9:4f:d8:05:a0:d5:84:1c:66:a0:1f:a3:
f6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:55:B1:E2:9D:33:F7:28:19:8B:49:C4:12:57:E7:5D:CD:EF:B2:1A
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/81Wx4p0z9ygZi0nEElfnXc3vsho.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:81:ad:11:29:94:72:a0:2f:2b:42:8d:0e:7a:97:51:32:5b:
bd:09:ea:f4:08:89:2d:53:55:c1:9f:c0:e1:c3:2a:5a:03:11:
b6:b3:f5:83:38:af:f8:90:a8:27:d1:90:25:b4:af:fd:20:8a:
91:d2:a6:b8:7a:55:87:df:45:db:54:95:b7:1e:95:4f:6e:a6:
21:cf:9a:dc:cc:da:f5:ae:55:35:fb:f4:4c:19:65:98:f9:5f:
c5:a0:02:9e:bb:b7:bb:28:3b:63:42:b1:58:f3:31:ad:de:b0:
c6:db:43:d7:75:6d:84:51:60:a7:22:8f:94:49:60:ed:d6:23:
ba:99:8f:a2:77:f4:ab:39:ab:46:72:c1:72:64:90:67:6f:16:
69:bc:60:a5:a1:a8:37:0c:e3:b2:8f:0b:de:41:a5:d3:f5:12:
20:dc:0e:b4:a2:d1:79:60:4a:f5:b6:ac:46:1d:f6:99:33:3a:
d9:e6:e9:17:27:c4:3f:1e:b4:e4:9e:c4:bb:5b:c4:9f:5f:7d:
2a:72:1e:57:71:ab:bd:43:42:24:53:66:a6:9b:73:85:d3:5b:
25:c4:a6:71:3d:e3:12:8b:51:77:c3:ce:65:08:0d:64:54:9a:
6d:80:14:a1:f0:d2:30:5a:93:18:ac:54:9b:c4:d9:9e:e7:32:
a1:dd:a9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 19:30:42 2025 by rpki-client