Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/VmIE0vpw0EVia1gX-Lm4rNmf8JE.roa
File: VmIE0vpw0EVia1gX-Lm4rNmf8JE.roa (raw, json)
Hash identifier: IzQzLuBEXB88egDGUzrDpXMvDHEhYyb9moLpJPe96LQ=
Subject key identifier: 56:62:04:D2:FA:70:D0:45:62:6B:58:17:F8:B9:B8:AC:D9:9F:F0:91
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 0911
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/VmIE0vpw0EVia1gX-Lm4rNmf8JE.roa
Signing time: Mon 19 May 2025 04:08:08 +0000
ROA not before: Mon 19 May 2025 04:08:08 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2321 (0x911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 19 04:08:08 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=566204D2FA70D045626B5817F8B9B8ACD99FF091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f5:01:88:39:06:00:82:0b:60:77:4c:37:51:
7f:8c:18:da:3f:9a:70:6a:74:cc:66:6e:9a:93:d6:
3c:7e:09:24:a2:4b:3f:3b:23:84:3c:5b:f1:70:ea:
9f:9f:de:5c:d9:83:da:79:54:1e:2b:6e:5e:27:47:
8f:5d:3b:e3:0c:94:21:be:48:0f:d0:dd:97:f4:d4:
09:21:f7:67:bc:21:dd:e6:3b:eb:d2:0c:0e:a7:28:
13:f5:a6:3a:2a:fc:86:90:75:68:0d:a9:27:67:ca:
76:2e:d9:13:84:77:cc:f5:f9:3c:77:96:50:65:8b:
e2:2d:ae:e6:8b:02:64:8f:9d:ea:1a:8d:08:88:a3:
40:bb:55:b0:75:8e:d2:62:bc:90:92:ec:17:a9:1e:
cf:5d:7a:c6:74:fb:92:51:17:d7:dd:29:1f:82:1a:
18:5e:4c:ec:c3:74:c7:89:1a:af:06:ff:05:4a:c7:
e8:8d:6f:42:46:dc:6a:62:18:79:46:31:02:16:d9:
03:a1:a7:ad:30:0d:c2:f1:d9:fe:75:ce:9f:1f:32:
24:89:b3:58:7f:73:f7:ea:31:b7:33:f7:76:fa:89:
af:19:43:04:0a:10:0c:6c:92:01:5c:f7:ad:15:cc:
57:1e:9c:19:c6:d0:59:c1:93:b3:f0:3c:75:5b:b2:
14:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:62:04:D2:FA:70:D0:45:62:6B:58:17:F8:B9:B8:AC:D9:9F:F0:91
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/VmIE0vpw0EVia1gX-Lm4rNmf8JE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6b:71:bf:c0:1f:f8:b0:de:ac:1c:53:c8:eb:d6:36:bd:dc:6d:
af:f0:8f:ff:b3:4f:24:ab:ff:a5:98:84:ba:65:17:c4:e1:ea:
ec:e8:68:e3:f3:b2:b0:44:f1:67:55:be:a7:ad:1f:3e:2f:6f:
05:1b:91:37:93:db:33:a5:1f:ca:71:85:f1:17:ff:be:d5:ba:
42:e8:fc:04:4e:2d:80:68:86:5a:ef:03:5c:a3:b6:e6:60:07:
d1:25:96:81:44:7d:f5:34:54:b8:06:7e:f5:3b:51:68:de:eb:
70:fa:9e:09:ef:81:ea:30:d9:96:b2:04:71:09:86:3f:20:9b:
c2:e9:df:d9:00:5c:90:a3:61:4c:82:9c:14:b6:c5:9f:ea:6c:
da:bd:35:21:38:13:b4:f9:be:fe:97:92:dc:e8:cf:14:09:31:
a6:cd:93:fa:63:87:c3:17:35:4b:11:24:e4:f8:61:6c:5d:74:
c7:8c:66:11:a2:fc:df:f6:2f:30:bb:92:cb:0e:27:ea:d3:92:
4d:8e:05:a6:c5:e4:35:50:ce:9b:0c:97:2a:4d:88:35:f1:ce:
cf:9f:6d:b8:80:e4:75:d1:3c:70:e1:7e:1d:78:e7:ba:d2:9e:
14:78:09:9e:62:60:5e:ac:50:c0:ab:ff:00:f3:99:67:50:18:
f7:df:ff:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 03:59:49 2025 by rpki-client