Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/UK-eejwVT5Ft91QxlW8cGuCSA0E.roa
File: UK-eejwVT5Ft91QxlW8cGuCSA0E.roa (raw, json)
Hash identifier: 8wgNZPqpDkzbQoSfsitavmqBIt2oi80bhKY6ZZ0k+eM=
Subject key identifier: 50:AF:9E:7A:3C:15:4F:91:6D:F7:54:31:95:6F:1C:1A:E0:92:03:41
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 0CE5
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/UK-eejwVT5Ft91QxlW8cGuCSA0E.roa
Signing time: Sat 24 May 2025 06:38:31 +0000
ROA not before: Sat 24 May 2025 06:38:31 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3301 (0xce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 24 06:38:31 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=50AF9E7A3C154F916DF75431956F1C1AE0920341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:36:0c:58:6e:8a:13:a5:31:8d:85:05:d7:15:
ed:26:a8:dd:c0:c2:f3:32:34:5b:fd:d4:d2:d6:6f:
41:f6:0c:5d:39:68:91:25:3d:da:2a:09:4a:29:95:
f1:9e:57:b0:4a:6d:a9:fc:01:ce:56:e8:10:31:90:
07:fd:59:3e:6c:4d:fa:bd:b3:34:f7:47:ea:d2:ce:
24:b8:ac:a1:75:3f:4f:b0:ba:f4:33:36:38:f6:ca:
53:7a:58:c9:25:68:dc:8a:ab:f4:16:dd:ef:ad:f5:
98:46:7e:fd:a7:92:df:b5:53:80:e2:67:01:d4:ac:
63:1f:7c:8a:17:2c:06:5a:bc:48:a1:fb:9b:22:0b:
f3:4d:fc:58:b4:f0:b4:73:5f:00:5c:9e:f1:54:27:
60:21:d7:96:a6:03:94:e5:7d:8d:7b:6b:81:f4:59:
aa:72:bf:60:80:8e:97:e6:f7:b2:b0:c7:c2:d6:da:
ea:ef:e7:61:45:57:7b:4c:f9:99:a8:93:7f:60:84:
9f:f6:05:f3:93:d0:e1:c4:0b:e4:72:91:cc:02:f9:
b2:14:98:19:73:53:22:b4:15:d6:8f:64:1a:d4:89:
d2:1d:00:0e:fd:7e:6b:67:6a:70:71:3e:f5:59:98:
2b:60:e0:6a:cf:b4:b1:84:19:96:3e:38:07:11:50:
96:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:AF:9E:7A:3C:15:4F:91:6D:F7:54:31:95:6F:1C:1A:E0:92:03:41
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/UK-eejwVT5Ft91QxlW8cGuCSA0E.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8d:84:d3:d0:05:5e:50:d6:d1:2d:8d:48:38:63:5e:be:31:4c:
94:25:3c:e6:ad:a6:c8:47:28:31:94:b4:9e:51:de:8d:f8:67:
da:66:5a:48:cb:77:dd:2e:18:22:88:23:24:04:31:19:36:be:
8d:8d:b8:c7:c2:21:af:ed:20:cb:c6:25:70:a0:54:63:04:04:
52:50:c4:5c:97:bd:9c:54:2c:9c:92:14:7a:8d:5e:9d:84:92:
f8:2a:89:4c:72:45:32:33:8c:ea:ef:c1:df:89:80:d3:5d:91:
d6:a4:60:c2:df:51:29:df:77:57:5e:b3:45:13:b1:42:a9:b8:
f4:2c:ac:b5:8b:b3:22:96:68:58:c4:3a:1c:25:0c:27:f1:63:
4c:a6:6a:5a:94:e6:90:22:9e:7a:ce:a8:b0:f9:9a:23:a2:ce:
e5:5f:f5:15:6e:a4:59:b2:7b:15:2a:3d:6f:bd:b4:67:91:82:
68:ff:e1:f4:9e:f9:4d:44:27:e5:70:5e:d4:29:80:ed:db:c6:
6c:5c:ea:6b:0c:e9:fc:84:21:e4:7b:d0:88:49:13:d7:ea:02:
b6:78:78:39:45:e1:4d:3f:6d:c0:7a:f3:c3:ac:01:00:36:dd:
8f:59:17:fa:07:56:61:44:c7:4a:18:87:82:5f:ef:22:9b:5a:
c8:2d:98:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 01:16:11 2025 by rpki-client