Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/GJbc_rr4WPXrjYuIqABwl6g01Wg.roa
File: GJbc_rr4WPXrjYuIqABwl6g01Wg.roa (raw, json)
Hash identifier: 0FeJXTHVaqgvcG3z1Ab+t+SxI5bKF5MNc64QVDjsWHk=
Subject key identifier: 18:96:DC:FE:BA:F8:58:F5:EB:8D:8B:88:A8:00:70:97:A8:34:D5:68
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 050A
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/GJbc_rr4WPXrjYuIqABwl6g01Wg.roa
Signing time: Tue 13 May 2025 19:08:08 +0000
ROA not before: Tue 13 May 2025 19:08:08 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 119.16.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1290 (0x50a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 13 19:08:08 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=1896DCFEBAF858F5EB8D8B88A8007097A834D568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:43:d2:d8:75:dc:0e:b9:84:21:a6:b0:04:f4:
4b:2f:2e:48:83:68:08:1f:e3:b9:2b:1c:91:61:5a:
85:2a:a4:21:9a:85:be:a9:2a:4a:ca:82:b9:39:c2:
e1:5d:65:13:13:77:60:43:c1:12:89:87:76:c1:64:
3f:70:f1:97:20:95:1b:9a:7d:b3:f4:dd:3f:a4:19:
6b:ba:f1:5e:6f:03:15:74:bb:5d:8c:32:9a:2b:04:
84:f4:fe:28:98:ef:a3:6f:d3:08:93:89:87:f1:54:
f8:72:ee:f6:8c:33:4f:7e:53:43:dc:d4:6b:c1:8a:
f2:53:2e:13:4a:f0:7a:0e:fd:d3:d6:47:51:8e:e4:
b1:04:05:cd:b1:74:de:26:a3:bb:6b:97:1b:b5:af:
41:45:6e:c3:18:be:e8:8e:c9:15:7d:db:98:b9:a5:
df:77:5c:ce:84:91:94:ac:a2:c7:a2:53:2c:93:7c:
2f:86:f2:6a:1e:b2:32:71:4c:83:bb:c9:e9:19:05:
76:e0:6e:dc:72:5b:16:31:f3:58:cb:b5:c4:4a:74:
15:da:39:bf:1b:2f:0c:37:7f:2b:7f:f3:e9:0e:ea:
80:24:4e:49:30:45:f5:96:af:0b:58:81:42:8c:63:
5c:8a:24:8b:40:dd:44:c6:83:c4:15:98:c3:37:d0:
04:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:96:DC:FE:BA:F8:58:F5:EB:8D:8B:88:A8:00:70:97:A8:34:D5:68
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/GJbc_rr4WPXrjYuIqABwl6g01Wg.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.16.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:94:49:80:38:05:75:63:35:bd:a4:f8:e3:7e:e3:df:97:c4:
1d:ad:0f:dd:32:65:1a:5a:6b:e6:a0:dd:d2:57:21:97:a8:9f:
d1:2f:9b:28:a8:ee:db:da:c8:d1:cb:3b:c5:c4:85:56:1a:56:
f4:cc:29:5e:bb:9c:00:b7:2b:06:15:85:f3:d4:32:81:90:c9:
04:68:fc:84:cc:d6:c5:28:07:a0:6c:eb:e7:c1:32:74:5c:73:
8a:78:8f:34:e5:bb:ff:17:e8:e7:1c:fd:46:aa:3f:fe:8c:da:
51:e7:09:71:a8:92:3b:ba:7a:6f:ee:82:bf:5a:a7:55:59:7e:
81:84:c4:d7:51:bc:3c:d2:3a:f5:8a:83:c5:a6:1e:67:c8:b3:
ea:03:b3:75:93:55:0a:d0:2e:b6:f1:4f:62:e4:99:10:18:f6:
3c:26:87:ef:78:01:b8:35:9c:5e:c1:0b:26:f8:45:ce:46:f8:
d6:80:fe:d8:87:e1:1f:a8:8c:2e:69:13:8d:79:dd:84:ca:d0:
5b:5b:c3:af:e5:6c:94:be:c9:b0:dd:01:c3:17:40:a8:35:ff:
18:21:6f:60:f0:62:b9:87:dd:06:c5:d8:67:2a:2c:0d:e3:b4:
1f:f4:ef:e9:60:fe:3e:84:be:15:0c:ea:bb:f6:f4:00:70:e0:
f7:ea:d8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 19:07:26 2025 by rpki-client