Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/-EukoA2XX-CNNkP8YXSwG1NVZxs.roa
File: -EukoA2XX-CNNkP8YXSwG1NVZxs.roa (raw, json)
Hash identifier: +KCNm6QAFE+9mgHNA1ejPIQrqlS2wrediN0WZ81fnDM=
Subject key identifier: F8:4B:A4:A0:0D:97:5F:E0:8D:36:43:FC:61:74:B0:1B:53:55:67:1B
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 16A5
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/-EukoA2XX-CNNkP8YXSwG1NVZxs.roa
Signing time: Fri 06 Jun 2025 06:39:26 +0000
ROA not before: Fri 06 Jun 2025 06:39:26 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5797 (0x16a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Jun 6 06:39:26 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=F84BA4A00D975FE08D3643FC6174B01B5355671B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:45:d9:f0:52:ac:c5:88:4b:51:d1:81:f6:b2:
ab:2b:59:bb:08:95:62:bc:00:58:7d:5a:ad:25:1b:
30:23:d7:71:65:7d:31:e8:9d:ee:55:0d:65:14:35:
74:57:01:cf:b7:9c:59:1a:d7:d4:34:54:15:b4:29:
da:86:bf:20:71:5e:33:c2:fe:14:e7:6c:de:87:35:
91:93:4d:58:2c:83:ac:92:10:26:3f:f6:18:8c:e9:
95:d2:72:25:55:45:d5:fa:c8:52:6d:a7:b4:2e:5c:
18:c1:2b:ed:9c:ae:c8:19:32:38:8c:ca:7c:b2:77:
b9:ca:75:02:e0:e2:f1:01:24:70:36:9a:42:d1:64:
6c:e5:67:e1:f4:5d:99:10:b1:c4:36:fa:6c:84:f1:
60:1f:b9:0a:63:c3:2d:a2:97:03:c7:ad:be:e2:4e:
17:00:5e:af:d2:d0:04:82:fa:9e:85:8f:e6:ed:de:
a9:db:b7:b1:21:b1:4f:bb:c2:af:6f:02:95:b1:fa:
9f:d8:30:a6:5a:60:fc:5d:78:55:f9:cd:c4:bf:fa:
9b:bf:4b:c4:e9:d8:00:ed:8a:13:0a:1e:6f:00:6c:
4c:a4:25:e6:d5:3e:56:3f:62:c6:63:fe:26:3c:50:
8c:95:92:24:13:bf:5c:4c:0d:0d:f0:10:c2:94:1e:
e2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:4B:A4:A0:0D:97:5F:E0:8D:36:43:FC:61:74:B0:1B:53:55:67:1B
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/-EukoA2XX-CNNkP8YXSwG1NVZxs.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
59:c3:06:40:b8:6d:0f:61:e9:db:56:b0:56:92:84:23:24:62:
2e:2c:1d:f9:5c:b6:c6:ab:93:11:90:ff:c9:f8:58:8b:0a:c2:
eb:38:b0:b3:b5:cd:4f:12:8e:73:28:46:94:1f:06:1e:91:14:
9f:6f:ce:16:f4:62:d4:ec:bb:a1:07:2b:fd:52:6c:ba:5a:5b:
0a:2d:68:12:e3:43:33:f8:0c:84:1c:46:e2:ee:97:af:9d:09:
36:3c:c9:f7:fd:ac:f3:55:0e:c4:b3:f7:2d:2d:31:a0:27:94:
e6:94:a4:30:50:65:d9:c8:5d:04:dc:53:f8:5c:d9:05:09:19:
c7:f3:09:23:b4:3c:2c:c4:7e:8e:81:83:d0:a1:fd:bb:87:20:
2a:c4:68:51:0a:bd:f2:c1:e9:df:4b:79:81:1f:3a:6e:47:81:
6a:cd:7a:38:46:0b:29:15:ed:83:83:25:26:db:4b:6c:21:cf:
6d:34:f6:55:c7:93:33:2e:96:6b:22:9f:61:ec:4e:68:c8:9f:
3b:59:d9:21:2f:64:5d:92:dd:9f:55:79:dd:cb:9b:8b:4a:f8:
44:ba:11:b8:34:61:2d:bd:af:a5:c1:55:be:44:fd:fb:d5:9f:
df:6b:98:ee:f2:5a:67:b6:87:2e:93:b8:be:f1:ba:70:2d:84:
b0:2b:64:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 16:46:08 2025 by rpki-client