Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/AuGNXygucEDWihMV9-quU3ZW3f0.roa
File: AuGNXygucEDWihMV9-quU3ZW3f0.roa (raw, json)
Hash identifier: cyXDwXt/Z30rwQzd78H4JMX6EYUI95GZahgF13SENtU=
Subject key identifier: 02:E1:8D:5F:28:2E:70:40:D6:8A:13:15:F7:EA:AE:53:76:56:DD:FD
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 12CA
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/AuGNXygucEDWihMV9-quU3ZW3f0.roa
Signing time: Sun 01 Jun 2025 03:09:18 +0000
ROA not before: Sun 01 Jun 2025 03:09:18 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 119.16.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4810 (0x12ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Jun 1 03:09:18 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=02E18D5F282E7040D68A1315F7EAAE537656DDFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:28:10:9a:65:b5:04:6b:3b:06:2a:18:ee:06:
5d:80:0e:64:01:31:9b:10:34:22:3a:df:04:70:f1:
6a:2e:d9:7b:48:70:47:25:cf:82:57:b5:c6:dc:a4:
46:0d:c6:94:ef:22:57:35:9e:f5:a8:02:f6:1a:dd:
18:a7:61:65:7e:16:c4:85:fd:ae:1b:ef:88:6c:17:
01:df:ae:0d:71:1e:75:84:67:80:61:39:11:e3:30:
df:0a:b6:97:2a:a5:b9:ff:d2:94:2a:b5:cf:e0:48:
54:b6:81:29:07:dc:63:48:1d:05:c9:88:f1:61:d2:
f0:06:ea:db:d3:1d:d5:87:62:c5:56:8b:f0:a1:36:
61:3c:cd:5d:6e:7d:85:09:34:ca:b1:3d:7c:c2:a1:
ed:f2:8a:20:16:51:39:e0:11:97:e4:d0:25:17:b6:
9b:d3:ae:86:36:6d:b6:52:c8:58:3d:49:86:45:57:
f2:ed:e8:ad:fb:12:25:be:3e:a0:b9:7d:63:d8:ae:
86:be:7b:43:d7:e1:ee:36:1e:69:bc:58:29:f9:85:
d2:e3:02:89:11:14:0d:92:e7:53:c2:52:3a:9a:60:
60:84:25:67:7d:03:0e:be:5c:a5:a2:41:45:f9:2a:
11:00:56:f5:08:b1:2f:bd:7e:fc:21:5b:86:55:52:
f8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E1:8D:5F:28:2E:70:40:D6:8A:13:15:F7:EA:AE:53:76:56:DD:FD
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/AuGNXygucEDWihMV9-quU3ZW3f0.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.16.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:8b:76:ce:41:bf:87:d2:4b:92:8d:d9:c9:a8:2b:fe:56:f3:
6e:49:12:ba:65:d5:06:e7:45:b5:99:13:14:ab:c7:a0:9f:1a:
d8:8c:86:66:9d:36:41:f1:f6:d0:30:80:2b:70:2d:54:12:82:
6b:9c:f8:a2:ef:79:52:69:e1:8d:dc:c6:45:62:38:e7:4c:27:
01:8c:23:7d:0c:f1:c2:06:fc:25:8e:a5:6e:f7:93:6a:5e:bc:
aa:57:8f:ab:6f:4a:b2:1f:fb:87:39:25:45:00:68:53:bd:7e:
89:26:80:6f:44:04:d3:79:ab:4e:a0:41:39:67:06:a5:ee:11:
d3:46:49:23:b6:ec:d6:8c:0b:22:62:66:d2:4f:8b:a7:44:99:
24:39:db:18:13:92:f2:34:27:4b:2c:20:d2:78:22:76:47:c6:
69:3a:7d:a3:ba:54:04:d9:80:d7:ec:cf:96:50:2d:6e:97:15:
f0:5f:68:08:02:7f:fa:08:97:4a:3b:e1:6a:35:64:8f:bb:d3:
f5:5b:36:23:5f:46:6a:83:79:6e:4e:6a:0a:c9:51:86:ea:84:
f3:f3:45:2e:be:ac:a2:87:b8:58:ab:ff:0b:2b:82:2e:1b:db:
cf:96:c8:a5:8f:4f:b9:13:b1:60:42:11:c0:fe:82:98:d4:bb:
07:ec:21:fc
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy
NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNTA2MDEw
MzA5MThaFw0yNjA0MDkwNjMzMjFaMDMxMTAvBgNVBAMTKDAyRTE4RDVGMjgyRTcw
NDBENjhBMTMxNUY3RUFBRTUzNzY1NkRERkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAKBCaZbUEazsGKhjuBl2ADmQBMZsQNCI63wRw8Wou2XtIcEcl
z4JXtcbcpEYNxpTvIlc1nvWoAvYa3RinYWV+FsSF/a4b74hsFwHfrg1xHnWEZ4Bh
ORHjMN8Ktpcqpbn/0pQqtc/gSFS2gSkH3GNIHQXJiPFh0vAG6tvTHdWHYsVWi/Ch
NmE8zV1ufYUJNMqxPXzCoe3yiiAWUTngEZfk0CUXtpvTroY2bbZSyFg9SYZFV/Lt
6K37EiW+PqC5fWPYroa+e0PX4e42Hmm8WCn5hdLjAokRFA2S51PCUjqaYGCEJWd9
Aw6+XKWiQUX5KhEAVvUIsS+9fvwhW4ZVUviRAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUAuGNXygucEDWihMV9+quU3ZW3f0wHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK
ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv
TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9BdUdOWHlndWNFRFdpaE1W
OS1xdVUzWlczZjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu
Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA
dxAwDQYJKoZIhvcNAQELBQADggEBAKGLds5Bv4fSS5KN2cmoK/5W825JErpl1Qbn
RbWZExSrx6CfGtiMhmadNkHx9tAwgCtwLVQSgmuc+KLveVJp4Y3cxkViOOdMJwGM
I30M8cIG/CWOpW73k2pevKpXj6tvSrIf+4c5JUUAaFO9fokmgG9EBNN5q06gQTln
BqXuEdNGSSO27NaMCyJiZtJPi6dEmSQ52xgTkvI0J0ssINJ4InZHxmk6faO6VATZ
gNfsz5ZQLW6XFfBfaAgCf/oIl0o74Wo1ZI+70/VbNiNfRmqDeW5OagrJUYbqhPPz
RS6+rKKHuFir/wsrgi4b28+WyKWPT7kTsWBCEcD+gpjUuwfsIfw=
-----END CERTIFICATE-----
Generated at Wed Jun 4 01:01:43 2025 by rpki-client