Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/73M50Pxgizu41uUCMhFdUgjfbfQ.roa
File: 73M50Pxgizu41uUCMhFdUgjfbfQ.roa (raw, json)
Hash identifier: TpHG5UdY1Fu66ykARw3T4gMIE0yzCEyts5tgC02tNtI=
Subject key identifier: EF:73:39:D0:FC:60:8B:3B:B8:D6:E5:02:32:11:5D:52:08:DF:6D:F4
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 15C5
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/73M50Pxgizu41uUCMhFdUgjfbfQ.roa
Signing time: Thu 05 Jun 2025 02:40:03 +0000
ROA not before: Thu 05 Jun 2025 02:40:03 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5573 (0x15c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Jun 5 02:40:03 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=EF7339D0FC608B3BB8D6E50232115D5208DF6DF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:e9:4d:40:ae:19:38:6e:20:3f:23:9d:e2:
49:ec:57:41:e1:f7:72:0c:90:4c:42:1a:b8:aa:35:
3c:42:6e:a0:50:ea:e3:82:66:7c:bd:14:54:98:91:
70:51:7e:9f:91:ef:0a:50:61:d8:1c:27:90:fc:ea:
c5:8b:50:61:6d:21:f4:0c:28:3d:bd:30:58:84:18:
cd:1e:c8:b5:d6:fc:70:49:d2:2d:45:ba:bb:e7:b9:
56:78:0c:76:f7:a8:4b:61:4a:91:2f:d6:8e:db:a1:
12:19:89:4e:94:d8:ce:d0:da:5f:57:23:30:5c:1b:
fb:71:c1:4a:85:1e:df:87:c2:1d:be:23:7b:bc:99:
4e:77:eb:27:ac:2b:37:3c:cf:9e:5b:bc:f2:65:21:
c5:fb:7a:a3:77:80:a0:28:cd:41:3b:8c:40:e6:ca:
ed:2b:3a:a4:ee:71:42:f8:ec:eb:ee:d7:b3:89:2a:
cf:ad:b8:e7:b1:4f:75:8b:de:37:27:e3:3a:3e:7d:
f3:d3:16:c9:0a:4a:da:c9:ef:7b:8b:12:76:fd:a6:
b2:6f:38:a1:0f:a2:72:c2:44:46:5e:e6:88:db:b2:
49:b6:0a:af:87:23:7d:91:ff:ef:dd:b5:b0:49:a0:
89:ac:56:cb:4b:b0:34:42:85:ef:7a:aa:38:e3:e9:
cf:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:73:39:D0:FC:60:8B:3B:B8:D6:E5:02:32:11:5D:52:08:DF:6D:F4
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/73M50Pxgizu41uUCMhFdUgjfbfQ.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3a:e6:5f:7a:e6:74:9a:36:84:24:b4:d4:f2:e8:ac:dc:c6:04:
47:81:42:fc:64:67:e0:6a:7f:76:fc:22:9b:e3:22:02:3f:45:
1b:27:57:2f:a6:58:77:c9:9c:38:9e:d0:2b:60:03:62:5b:94:
6d:26:5c:be:37:f2:b2:1d:bb:11:6d:74:6f:24:3d:c5:d4:fa:
6c:37:a1:9e:ff:8e:7e:4f:dc:81:c3:15:90:9c:0f:be:ee:7a:
4c:cf:79:df:22:19:1b:5b:72:1c:74:e4:4d:76:99:4c:01:0a:
c1:20:57:4d:e8:1e:43:b4:62:2c:5d:2c:6e:b8:7a:d8:71:89:
f6:dd:09:f5:59:26:73:ed:56:7b:1c:81:99:50:42:c1:2a:d5:
53:4e:43:04:55:8f:0b:c1:e1:17:e5:60:ea:5a:27:7c:3a:8a:
d2:33:c2:95:e0:9a:b4:14:73:6c:cb:30:99:f8:a7:7b:87:76:
52:09:66:fb:50:66:1b:46:d9:29:bd:f9:0b:0d:5a:e0:3b:58:
27:37:5e:81:e4:65:2f:b8:19:93:af:3b:46:1b:67:68:14:72:
af:32:45:cb:46:84:b0:c1:09:6d:13:76:84:81:81:3e:c9:ac:
57:34:4c:c1:91:54:e1:db:ff:96:a7:14:98:b6:48:cf:d0:87:
a1:d4:2f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 03:56:52 2025 by rpki-client