Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/E5d1OZY9AQUgXA0dG4_dhyfmACg.roa
File: E5d1OZY9AQUgXA0dG4_dhyfmACg.roa (raw, json)
Hash identifier: ZKuriwyXpNki2vzHotQuHBKhu4jL4Sl6cEdn5nLgiRY=
Subject key identifier: 13:97:75:39:96:3D:01:05:20:5C:0D:1D:1B:8F:DD:87:27:E6:00:28
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 139D
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/E5d1OZY9AQUgXA0dG4_dhyfmACg.roa
Signing time: Mon 02 Jun 2025 05:39:13 +0000
ROA not before: Mon 02 Jun 2025 05:39:13 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5021 (0x139d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Jun 2 05:39:13 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=13977539963D0105205C0D1D1B8FDD8727E60028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2b:43:0d:9c:4e:56:42:99:36:01:d2:61:6b:
df:f7:5b:e6:41:70:87:83:04:54:c2:9c:ba:1c:a6:
01:82:d0:b9:20:db:98:95:6a:58:21:9a:91:66:af:
a2:58:0b:28:e1:00:34:63:7a:23:00:d0:b4:42:2d:
63:4f:a2:2a:09:0f:53:a7:e8:b1:b8:c1:26:b2:ec:
d6:3a:5b:f1:66:04:cc:72:cb:af:34:ef:2d:0b:02:
09:19:eb:03:50:67:28:d5:ae:3d:0c:b0:5a:df:b8:
d0:00:47:ec:1d:68:82:8c:1b:66:1f:66:b9:d1:b4:
49:50:c3:30:a0:c0:6a:7b:bf:7b:89:8e:15:4c:21:
ae:08:33:33:ea:f8:eb:28:ab:1b:d0:de:48:f0:ab:
ac:87:1f:d9:fd:c1:e1:ea:7a:f2:d4:4b:5b:f3:d3:
4d:7d:4d:24:de:cf:7c:8a:71:a6:54:ca:3c:0f:17:
20:15:19:a3:4d:9c:7c:30:51:7c:71:56:f7:10:82:
a8:e2:93:7c:4b:72:6a:20:43:4e:69:89:4a:95:31:
21:f8:b9:f8:44:59:5b:1e:c3:b7:0b:11:0b:a5:7a:
9e:49:d4:85:d9:85:38:f0:f9:41:14:a3:93:8a:a3:
5e:cd:2a:66:af:0d:de:e5:5d:fa:a0:22:89:f7:4c:
5a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:97:75:39:96:3D:01:05:20:5C:0D:1D:1B:8F:DD:87:27:E6:00:28
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/E5d1OZY9AQUgXA0dG4_dhyfmACg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
63:26:40:00:84:d1:2a:7b:c3:35:21:20:25:06:62:bf:d8:c0:
99:d8:88:0c:d3:02:c6:92:b9:6d:be:27:89:3f:a7:d9:9d:58:
b3:9c:c5:f7:49:67:52:09:38:68:b0:70:61:0c:d6:2e:75:f3:
e3:73:69:76:2a:ca:1e:91:56:ea:29:a3:8e:53:97:7e:f6:a6:
43:73:7f:62:d2:9d:b3:fc:14:1b:4a:88:27:eb:a2:ea:86:e8:
ac:ee:30:a4:4c:69:ea:8d:ab:c6:99:4a:92:5d:4c:ab:d2:59:
55:de:5c:06:fb:1b:3e:6b:44:9c:92:73:e6:c5:4d:2a:dd:42:
f0:9f:6f:80:38:91:fb:00:04:f2:e5:cb:9a:3c:12:60:ca:d1:
7c:f9:6f:1b:c6:1b:47:f0:57:41:11:16:c5:54:6d:7d:5e:9e:
16:b8:25:cd:0a:26:5e:87:7b:61:05:f7:10:ba:6e:e3:48:ec:
b4:30:01:79:dd:7c:6a:e4:ff:41:38:e3:89:6c:4f:fb:25:70:
c3:f3:b7:f9:af:78:72:17:bf:51:ab:14:71:00:20:07:4e:e9:
af:ce:0d:e1:6d:e2:44:06:b4:f7:11:dd:66:ca:1f:2e:2e:46:
fa:cd:04:7b:1f:3e:ed:1c:33:af:c9:3e:ec:a9:c4:25:5b:b4:
b3:2e:0e:52
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICE50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy
NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNTA2MDIw
NTM5MTNaFw0yNjA0MDkwNjMzMjFaMDMxMTAvBgNVBAMTKDEzOTc3NTM5OTYzRDAx
MDUyMDVDMEQxRDFCOEZERDg3MjdFNjAwMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5K0MNnE5WQpk2AdJha9/3W+ZBcIeDBFTCnLocpgGC0Lkg25iV
alghmpFmr6JYCyjhADRjeiMA0LRCLWNPoioJD1On6LG4wSay7NY6W/FmBMxyy680
7y0LAgkZ6wNQZyjVrj0MsFrfuNAAR+wdaIKMG2YfZrnRtElQwzCgwGp7v3uJjhVM
Ia4IMzPq+OsoqxvQ3kjwq6yHH9n9weHqevLUS1vz0019TSTez3yKcaZUyjwPFyAV
GaNNnHwwUXxxVvcQgqjik3xLcmogQ05piUqVMSH4ufhEWVsew7cLEQulep5J1IXZ
hTjw+UEUo5OKo17NKmavDd7lXfqgIon3TFqbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUE5d1OZY9AQUgXA0dG4/dhyfmACgwHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK
ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv
TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9FNWQxT1pZOUFRVWdYQTBk
RzRfZGh5Zm1BQ2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu
Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA
G2cwDQYJKoZIhvcNAQELBQADggEBAGMmQACE0Sp7wzUhICUGYr/YwJnYiAzTAsaS
uW2+J4k/p9mdWLOcxfdJZ1IJOGiwcGEM1i518+NzaXYqyh6RVuopo45Tl372pkNz
f2LSnbP8FBtKiCfrouqG6KzuMKRMaeqNq8aZSpJdTKvSWVXeXAb7Gz5rRJySc+bF
TSrdQvCfb4A4kfsABPLly5o8EmDK0Xz5bxvGG0fwV0ERFsVUbX1enha4Jc0KJl6H
e2EF9xC6buNI7LQwAXndfGrk/0E444lsT/slcMPzt/mveHIXv1GrFHEAIAdO6a/O
DeFt4kQGtPcR3WbKHy4uRvrNBHsfPu0cM6/JPuypxCVbtLMuDlI=
-----END CERTIFICATE-----
Generated at Wed Jun 4 00:52:50 2025 by rpki-client