Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/t-_ceUfQlj3y7_wyMGbhAbZ736Y.roa
File: t-_ceUfQlj3y7_wyMGbhAbZ736Y.roa (raw, json)
Hash identifier: wS35/DcBzlZxlExSq3OmOo2sYno4XTry8ygEG9Iigrc=
Subject key identifier: B7:EF:DC:79:47:D0:96:3D:F2:EF:FC:32:30:66:E1:01:B6:7B:DF:A6
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 0D55
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/t-_ceUfQlj3y7_wyMGbhAbZ736Y.roa
Signing time: Sat 24 May 2025 20:38:49 +0000
ROA not before: Sat 24 May 2025 20:38:49 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3413 (0xd55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 24 20:38:49 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=B7EFDC7947D0963DF2EFFC323066E101B67BDFA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d2:39:43:2a:6a:d2:93:3c:fc:39:ae:aa:c8:
db:ef:6e:eb:42:6c:34:f5:0c:50:67:80:76:ca:27:
ee:04:8a:72:21:77:05:8c:d1:34:10:e0:3b:8e:fa:
1d:86:ec:a1:47:87:f5:cf:ea:86:93:02:ed:0e:0a:
04:d0:9f:cb:3d:ea:72:f1:e7:58:00:87:36:34:55:
2c:7c:e2:5a:8a:e0:bb:60:d4:c4:24:05:3b:e3:63:
c2:44:b4:d1:dd:52:38:f4:58:df:62:84:dd:1f:f4:
96:32:0b:fd:a4:3f:d0:5d:54:e2:c6:9e:d1:5e:25:
95:d0:e1:eb:39:a7:77:87:0f:09:ce:08:48:c7:3b:
bc:ed:22:f9:f2:50:80:40:92:cb:5d:7f:9a:ff:8b:
66:5e:cd:84:39:de:6f:19:b8:f1:60:3e:96:dc:ba:
78:0e:74:50:34:3b:03:3d:8e:ba:32:88:8b:39:e3:
2e:c9:62:fd:2c:51:30:7f:94:41:bb:94:93:12:78:
4c:fe:3b:6b:93:79:e0:d1:5d:ca:af:bd:4e:bb:63:
e2:cc:89:31:51:78:c5:e9:7a:b8:eb:8f:ab:3d:87:
23:80:a0:4d:74:49:bf:eb:ab:eb:cb:f6:bf:96:1b:
b4:ae:d3:28:5c:cc:1c:15:5a:dd:4a:07:5e:c2:7d:
9b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:EF:DC:79:47:D0:96:3D:F2:EF:FC:32:30:66:E1:01:B6:7B:DF:A6
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/t-_ceUfQlj3y7_wyMGbhAbZ736Y.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
38:f4:f4:2f:e7:2b:c4:77:c9:63:b4:b9:c3:ae:f6:b0:20:43:
2a:36:ba:7f:d7:cf:0b:79:5a:fe:3d:4c:34:4b:57:94:86:1c:
7f:e5:8c:cd:82:bf:33:19:af:07:4b:3f:df:75:82:77:96:6f:
14:f4:8a:7f:56:4a:2d:0d:08:20:fa:c2:48:b3:2a:81:43:5e:
9a:eb:13:b5:ca:dc:99:45:9e:30:fb:10:81:9e:1f:a3:94:3b:
4d:02:3f:34:19:94:66:09:06:a1:d9:98:58:17:66:90:a8:0c:
9e:d3:06:47:7f:6f:a1:21:a6:72:08:f0:a7:13:70:cf:c8:e4:
4e:08:cb:cd:fa:7b:e0:e7:11:de:74:07:6d:e1:81:e9:4c:72:
f9:b7:f5:cc:59:4e:6c:6d:12:b9:05:a6:2c:95:73:68:03:c0:
c0:fa:f3:e0:fa:3d:74:57:5d:cd:75:ac:fb:3b:f8:42:4e:c0:
7f:07:4a:df:1b:65:f3:3a:df:b7:54:2c:4b:e2:88:fc:a7:97:
37:83:0d:03:22:ca:4e:4e:14:00:13:4f:5e:60:bb:11:40:6c:
bd:37:63:4f:af:aa:75:7a:ae:30:7c:34:3d:06:af:88:80:f9:
39:af:79:c9:82:23:b2:d3:46:0f:85:79:7a:30:34:9d:8d:d4:
52:9a:38:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 02:23:15 2025 by rpki-client