Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/AmjM6NpjFYP6sKQl54PeymppyyI.roa
File: AmjM6NpjFYP6sKQl54PeymppyyI.roa (raw, json)
Hash identifier: 3Lj/yMVURauzM6IBOwjeZBBUP3mloUHjE1Oow3KrDPY=
Subject key identifier: 02:68:CC:E8:DA:63:15:83:FA:B0:A4:25:E7:83:DE:CA:6A:69:CB:22
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 09A5
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/AmjM6NpjFYP6sKQl54PeymppyyI.roa
Signing time: Mon 19 May 2025 22:38:14 +0000
ROA not before: Mon 19 May 2025 22:38:14 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2469 (0x9a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 19 22:38:14 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=0268CCE8DA631583FAB0A425E783DECA6A69CB22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a7:16:4c:31:ba:55:8b:c3:ef:d5:f9:d6:e3:
f0:59:cb:7e:6a:4c:47:59:87:5c:81:2c:24:9c:6d:
f2:c9:24:1e:f2:ce:61:9a:04:c2:57:50:9d:82:ad:
ab:56:a4:f5:01:f9:93:51:44:3b:f9:8d:8e:53:9e:
34:c5:fe:62:68:15:03:3a:f4:53:e5:3a:13:09:65:
36:a0:50:45:25:5a:a0:31:64:52:b9:59:cc:f7:36:
58:27:c7:8c:68:82:d2:20:5f:0a:fd:e0:c7:cb:f9:
03:ab:9f:d1:51:62:20:ab:6e:29:95:d2:a2:9f:82:
28:ff:37:29:e0:8b:26:8c:8a:03:76:5c:dc:ea:78:
d4:1a:42:f6:63:99:8e:7f:45:bd:9a:6a:4b:85:70:
dd:27:05:ed:d0:3c:10:c8:8a:25:5a:a6:d7:ae:e4:
dc:c5:9d:e7:4a:c5:61:11:3d:c7:dd:fa:ae:41:6c:
3b:7f:be:b1:c9:82:5b:f4:95:ae:45:e4:2e:48:34:
eb:51:ab:3a:c7:da:4c:ce:2b:48:d4:5f:72:ed:39:
77:99:67:d7:36:66:cb:03:ae:a2:18:1e:25:14:43:
0d:31:ff:2f:89:32:6b:79:ef:ba:c4:6d:ef:0b:54:
25:15:9e:4f:2d:a9:d8:6b:44:dc:96:1d:0c:e8:04:
dd:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:68:CC:E8:DA:63:15:83:FA:B0:A4:25:E7:83:DE:CA:6A:69:CB:22
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/AmjM6NpjFYP6sKQl54PeymppyyI.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:c0:ee:ea:ff:fc:c0:f8:92:7c:20:fb:77:3c:73:2d:cd:a0:
3b:e8:6c:37:9a:9b:55:33:9c:e3:dc:1d:4f:a2:71:46:a3:c4:
f3:ca:fd:7f:ca:1a:52:92:5a:61:0a:88:ee:ee:1b:94:ab:24:
2e:27:64:a7:51:ee:e1:47:d8:9d:71:ca:26:d5:6b:a9:af:4f:
a7:29:7f:ad:71:62:6f:eb:a2:c6:ec:7d:ba:78:7a:28:29:4c:
fd:b3:5b:71:90:72:b2:fa:7f:88:75:aa:07:94:11:8f:66:56:
17:32:86:56:73:87:ab:b6:7c:19:5c:9a:7f:03:7f:cc:3d:74:
62:b9:be:e0:5d:02:cf:ba:5b:7a:00:9a:97:37:bc:ef:09:7a:
65:48:30:7e:32:91:95:cf:18:07:00:8f:e4:e1:f1:e9:e4:88:
34:43:65:39:68:6a:ed:3a:0b:e1:3b:d6:68:64:dd:88:bc:30:
93:b2:68:48:b3:43:0e:e0:c5:b6:bf:7e:b4:5b:9d:0c:c5:32:
85:b9:b4:ff:d7:e9:d6:49:28:66:c8:5f:f7:4a:1d:e6:bc:0c:
20:99:f1:c1:f9:ee:96:6d:94:a3:05:e1:2e:1d:18:74:2a:f0:
92:e3:22:ce:e3:cb:e0:39:72:b0:b1:a8:53:c7:5f:f7:d4:c1:
f2:66:48:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 20:30:52 2025 by rpki-client