Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/gN63tIxXGFq2oRS1SGG2L2x_Cis.roa
File: gN63tIxXGFq2oRS1SGG2L2x_Cis.roa (raw, json)
Hash identifier: IdKk8vNiS8eaH+8XBfIQ+KJsp0xHaVpZyzAohfIJwtg=
Subject key identifier: 80:DE:B7:B4:8C:57:18:5A:B6:A1:14:B5:48:61:B6:2F:6C:7F:0A:2B
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 0615
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/gN63tIxXGFq2oRS1SGG2L2x_Cis.roa
Signing time: Thu 15 May 2025 04:38:05 +0000
ROA not before: Thu 15 May 2025 04:38:05 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1557 (0x615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 15 04:38:05 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=80DEB7B48C57185AB6A114B54861B62F6C7F0A2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:69:dc:81:ad:2d:d9:13:af:91:31:19:0b:10:
70:ee:a7:cb:71:13:c3:1a:67:1e:36:43:00:85:d6:
1f:1c:3e:f8:9c:42:d0:bc:6b:e5:cd:9f:b4:f1:17:
c9:f6:f0:1e:22:a9:e6:72:82:3e:2e:bb:6c:92:b1:
b9:39:b0:9e:9e:13:f7:37:d3:4c:2e:7e:5c:ca:ab:
4c:59:06:0f:39:cf:ff:ca:d4:16:97:8b:17:3e:87:
e9:45:3f:e4:72:83:66:9f:97:0e:73:a3:78:84:b5:
3e:b5:86:56:e9:5a:3d:6b:86:dc:d6:c1:b2:85:1f:
c0:0e:bb:ab:20:a6:f5:a6:9e:9b:1e:e9:3d:01:5e:
e9:4b:de:71:a1:a0:47:93:c2:4e:49:cb:0f:bb:10:
f3:b4:eb:d0:2f:44:05:01:40:43:25:e4:df:5c:1e:
f3:90:ab:b2:e7:60:c9:06:8b:4b:50:c7:e1:1c:45:
28:a4:27:b2:a3:55:22:e2:7e:b9:f6:04:5c:e4:67:
50:92:d8:ec:83:e1:a7:4d:af:0f:cf:19:c6:c1:1f:
c8:05:33:65:7c:42:b3:40:7d:51:ea:16:ef:e2:1d:
8c:5c:38:30:a1:c4:ae:79:7d:dd:ea:65:57:c7:4d:
45:7c:d5:58:f3:aa:f6:0d:5e:44:80:31:c7:73:60:
f2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DE:B7:B4:8C:57:18:5A:B6:A1:14:B5:48:61:B6:2F:6C:7F:0A:2B
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/gN63tIxXGFq2oRS1SGG2L2x_Cis.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
70:f5:c0:8d:c8:43:87:df:0c:43:89:45:cf:bb:5e:64:b6:49:
64:82:b5:ee:43:7a:34:e5:6d:bd:1d:0e:a5:87:80:12:6a:28:
ac:9b:45:d4:0e:a4:d1:7d:4d:b9:56:dc:a2:81:11:20:5c:63:
d5:26:f1:8c:db:46:95:a7:b0:46:3d:12:5e:15:e6:5c:43:ac:
a2:b9:62:0b:b6:2e:25:e0:1b:d4:b6:76:e4:57:82:90:41:3a:
0d:74:91:52:65:03:60:1d:6f:3d:26:d0:86:cd:be:0e:c6:96:
bf:6a:8a:cd:38:bf:b5:4a:6b:5f:32:68:57:51:bc:a9:2d:1f:
2b:d2:1e:c1:ab:c3:d4:0f:44:30:b0:2f:4c:7b:d9:c1:70:25:
e4:f2:29:7d:a5:14:b6:dd:91:b3:c0:c4:af:a0:6a:aa:f5:a1:
59:34:a5:40:be:26:7a:ec:08:37:28:17:97:83:f9:0a:84:c1:
86:50:9f:00:b3:c8:08:63:12:8f:61:c3:6a:9e:9e:fe:8a:1c:
07:1b:23:94:7c:b2:c6:84:df:23:00:c3:51:08:32:76:17:c2:
9e:93:e1:48:0c:2c:ef:ed:62:c9:ea:15:f5:2a:1e:08:1c:54:
ac:19:b4:a3:c9:2e:9b:19:54:07:40:c4:c9:88:77:c1:b4:33:
97:82:dd:1e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy
NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNTA1MTUw
NDM4MDVaFw0yNjA0MDkwNjMzMjFaMDMxMTAvBgNVBAMTKDgwREVCN0I0OEM1NzE4
NUFCNkExMTRCNTQ4NjFCNjJGNkM3RjBBMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDvadyBrS3ZE6+RMRkLEHDup8txE8MaZx42QwCF1h8cPvicQtC8
a+XNn7TxF8n28B4iqeZygj4uu2ySsbk5sJ6eE/c300wuflzKq0xZBg85z//K1BaX
ixc+h+lFP+Ryg2aflw5zo3iEtT61hlbpWj1rhtzWwbKFH8AOu6sgpvWmnpse6T0B
XulL3nGhoEeTwk5Jyw+7EPO069AvRAUBQEMl5N9cHvOQq7LnYMkGi0tQx+EcRSik
J7KjVSLifrn2BFzkZ1CS2OyD4adNrw/PGcbBH8gFM2V8QrNAfVHqFu/iHYxcODCh
xK55fd3qZVfHTUV81VjzqvYNXkSAMcdzYPIbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUgN63tIxXGFq2oRS1SGG2L2x/CiswHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK
ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv
TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9nTjYzdEl4WEdGcTJvUlMx
U0dHMkwyeF9DaXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu
Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA
G2cwDQYJKoZIhvcNAQELBQADggEBAHD1wI3IQ4ffDEOJRc+7XmS2SWSCte5DejTl
bb0dDqWHgBJqKKybRdQOpNF9TblW3KKBESBcY9Um8YzbRpWnsEY9El4V5lxDrKK5
Ygu2LiXgG9S2duRXgpBBOg10kVJlA2Adbz0m0IbNvg7Glr9qis04v7VKa18yaFdR
vKktHyvSHsGrw9QPRDCwL0x72cFwJeTyKX2lFLbdkbPAxK+gaqr1oVk0pUC+Jnrs
CDcoF5eD+QqEwYZQnwCzyAhjEo9hw2qenv6KHAcbI5R8ssaE3yMAw1EIMnYXwp6T
4UgMLO/tYsnqFfUqHggcVKwZtKPJLpsZVAdAxMmId8G0M5eC3R4=
-----END CERTIFICATE-----
Generated at Wed Jun 4 01:01:37 2025 by rpki-client