Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/TFTbSevPmk-bXM5dPwL888K4hi4.roa
File: TFTbSevPmk-bXM5dPwL888K4hi4.roa (raw, json)
Hash identifier: MwNOA9hP7PcW98ZAjzGa0fYFa5v+E3eC50cHEm6Che8=
Subject key identifier: 4C:54:DB:49:EB:CF:9A:4F:9B:5C:CE:5D:3F:02:FC:F3:C2:B8:86:2E
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 19A1
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/TFTbSevPmk-bXM5dPwL888K4hi4.roa
Signing time: Tue 10 Jun 2025 06:09:46 +0000
ROA not before: Tue 10 Jun 2025 06:09:46 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6561 (0x19a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Jun 10 06:09:46 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=4C54DB49EBCF9A4F9B5CCE5D3F02FCF3C2B8862E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e4:48:52:8e:2e:cd:38:10:52:cb:9a:f1:9f:
1c:60:cd:46:5f:e9:f1:f6:66:3e:2c:f3:f1:01:ee:
f3:cf:e1:4d:07:e1:c1:24:e8:ee:17:cd:0e:b9:4a:
96:0e:cb:fc:e9:24:66:f3:71:16:75:4f:19:df:52:
d7:22:6c:0f:f8:f4:a1:27:62:72:58:b0:59:4d:5e:
0d:a3:57:c6:87:52:1d:35:4d:91:6e:56:d8:46:dd:
f2:44:91:3d:51:c3:28:ad:3e:02:9c:b0:c2:b5:24:
2c:f6:f0:34:f8:0d:65:d6:77:b1:a1:0a:50:ed:99:
73:43:4d:51:3b:30:1b:a7:91:b2:85:dc:8b:08:b4:
4b:f8:05:94:01:d8:a5:c6:32:07:5f:34:9e:b1:a5:
47:71:3e:e0:74:91:92:92:3f:9a:36:a6:a0:f9:2c:
8d:53:36:b9:c1:54:d4:b6:bb:ba:c5:45:94:6c:e8:
32:3e:77:b9:80:a0:74:fb:44:65:ba:5e:ba:33:4f:
ce:e2:0a:80:08:1f:e5:e1:eb:5e:e6:b5:36:a7:68:
3a:66:e1:53:fa:c5:32:e7:82:21:4d:f0:f8:32:49:
14:52:8e:9d:7d:00:c0:55:0e:c7:4b:28:a3:46:31:
45:1e:c7:00:73:ac:0e:fc:2a:78:cd:61:da:e8:32:
55:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:54:DB:49:EB:CF:9A:4F:9B:5C:CE:5D:3F:02:FC:F3:C2:B8:86:2E
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/TFTbSevPmk-bXM5dPwL888K4hi4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9c:b0:96:f4:fd:44:16:20:29:fa:2f:5b:12:91:a8:cc:48:6f:
e4:59:a6:28:60:2d:44:9d:c5:cc:76:a3:1a:a3:e0:eb:0c:ec:
6b:da:5a:0f:79:35:8c:5f:d1:ce:2c:00:1a:93:0c:59:c6:46:
19:2e:4e:20:27:fe:5a:08:1f:69:82:1b:9b:2b:5b:32:0e:1a:
95:3d:f1:22:f8:b3:6f:0a:6e:ef:ac:75:36:d5:f2:9e:72:22:
8a:d6:4d:1a:7c:34:c9:2f:2f:b1:06:47:ce:3f:a6:6c:fe:14:
2a:e2:86:c1:fa:34:0d:8d:dc:ec:ef:c1:0b:7e:c5:9a:f5:a6:
01:f5:0a:cd:4e:8f:f1:af:dd:e6:af:f0:dc:72:d2:08:16:95:
0d:95:ff:56:9a:2e:8d:71:58:02:bf:17:c1:c5:89:17:fc:cc:
6a:21:8d:d7:ec:c4:bf:6c:11:67:9e:bb:f7:b9:70:c1:84:e7:
e7:cd:1b:36:83:19:0d:91:5d:05:7d:f6:e0:fe:d2:77:e5:ef:
f6:13:26:4e:23:fe:1e:1c:a5:45:a2:79:5b:fc:1c:17:b6:5d:
49:22:a2:dc:2e:dc:70:a6:74:9c:35:81:de:b9:a3:c5:32:01:
2d:82:95:aa:f9:05:4d:b0:1b:f5:d2:d9:ad:d6:e4:02:98:6b:
c5:d5:5a:9d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy
NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNTA2MTAw
NjA5NDZaFw0yNjA0MDkwNjMzMjFaMDMxMTAvBgNVBAMTKDRDNTREQjQ5RUJDRjlB
NEY5QjVDQ0U1RDNGMDJGQ0YzQzJCODg2MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCg5EhSji7NOBBSy5rxnxxgzUZf6fH2Zj4s8/EB7vPP4U0H4cEk
6O4XzQ65SpYOy/zpJGbzcRZ1TxnfUtcibA/49KEnYnJYsFlNXg2jV8aHUh01TZFu
VthG3fJEkT1RwyitPgKcsMK1JCz28DT4DWXWd7GhClDtmXNDTVE7MBunkbKF3IsI
tEv4BZQB2KXGMgdfNJ6xpUdxPuB0kZKSP5o2pqD5LI1TNrnBVNS2u7rFRZRs6DI+
d7mAoHT7RGW6XrozT87iCoAIH+Xh617mtTanaDpm4VP6xTLngiFN8PgySRRSjp19
AMBVDsdLKKNGMUUexwBzrA78KnjNYdroMlVTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUTFTbSevPmk+bXM5dPwL888K4hi4wHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK
ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv
TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9URlRiU2V2UG1rLWJYTTVk
UHdMODg4SzRoaTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu
Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA
G2cwDQYJKoZIhvcNAQELBQADggEBAJywlvT9RBYgKfovWxKRqMxIb+RZpihgLUSd
xcx2oxqj4OsM7GvaWg95NYxf0c4sABqTDFnGRhkuTiAn/loIH2mCG5srWzIOGpU9
8SL4s28Kbu+sdTbV8p5yIorWTRp8NMkvL7EGR84/pmz+FCrihsH6NA2N3OzvwQt+
xZr1pgH1Cs1Oj/Gv3eav8Nxy0ggWlQ2V/1aaLo1xWAK/F8HFiRf8zGohjdfsxL9s
EWeeu/e5cMGE5+fNGzaDGQ2RXQV99uD+0nfl7/YTJk4j/h4cpUWieVv8HBe2XUki
otwu3HCmdJw1gd65o8UyAS2Clar5BU2wG/XS2a3W5AKYa8XVWp0=
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:50:14 2025 by rpki-client