Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/-BUICmO8mbtPTtat6nZQfSRF0Os.roa
File: -BUICmO8mbtPTtat6nZQfSRF0Os.roa (raw, json)
Hash identifier: F+V3blTsBp7v1qE9obxMVrv/9iT2a193VNPaUWU4zvY=
Subject key identifier: F8:15:08:0A:63:BC:99:BB:4F:4E:D6:AD:EA:76:50:7D:24:45:D0:EB
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 068D
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/-BUICmO8mbtPTtat6nZQfSRF0Os.roa
Signing time: Thu 15 May 2025 19:38:02 +0000
ROA not before: Thu 15 May 2025 19:38:02 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1677 (0x68d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 15 19:38:02 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=F815080A63BC99BB4F4ED6ADEA76507D2445D0EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:21:e2:36:c8:41:95:21:44:7d:89:29:09:58:
2f:c2:cc:c3:3e:71:a3:4d:05:b5:7f:59:5d:29:9c:
86:58:60:f9:5d:86:98:df:ec:8b:65:dc:70:e5:52:
07:c8:e4:ca:05:f8:24:e1:85:92:2f:74:ee:18:51:
f4:68:79:ef:64:74:10:d1:51:da:a1:b2:64:2a:bf:
09:e5:7e:b1:c3:7a:ef:eb:9c:d1:02:07:05:a2:5d:
00:0e:9d:28:a8:d9:c6:e6:09:46:57:1f:b0:23:c1:
83:87:06:ce:bb:c0:82:6f:59:ec:49:d7:f3:f9:f9:
1b:38:02:b0:5a:51:7a:3a:b8:8f:9e:ab:81:03:7e:
68:98:f7:53:66:28:a6:41:29:57:43:98:95:9d:68:
41:af:04:e3:52:15:84:c7:f5:c7:3a:a7:a3:69:45:
b5:45:d4:a1:0c:3b:9a:35:cd:07:79:7d:92:fb:a1:
6f:66:75:45:7b:03:d2:b3:ea:80:14:6b:61:57:13:
84:9b:85:05:63:cb:e5:a0:8c:42:af:a3:32:05:3a:
bc:63:8f:ad:fd:70:d9:7b:c5:70:63:0d:5e:8f:a2:
a6:26:8d:fb:24:67:55:15:48:3f:1d:99:ab:8b:65:
d0:a8:13:e3:a0:cc:c5:13:74:e7:d4:f6:e4:a5:b6:
11:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:15:08:0A:63:BC:99:BB:4F:4E:D6:AD:EA:76:50:7D:24:45:D0:EB
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/-BUICmO8mbtPTtat6nZQfSRF0Os.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
49:52:7f:99:a6:1e:c2:5d:e6:71:da:84:a5:eb:c5:0c:04:e2:
77:75:6e:0a:cf:b5:96:15:6d:58:39:36:5d:fa:11:89:5b:89:
4c:97:e0:80:6a:4a:de:83:7b:ad:31:91:bc:f4:f6:76:e3:10:
6a:58:13:f7:7a:49:bd:16:2a:8f:e9:af:4b:73:a2:32:38:1b:
cc:4c:73:ab:26:62:f6:33:8b:70:67:8d:66:c9:49:59:c3:fa:
51:d7:c2:5e:f7:9d:ab:62:5c:66:15:ad:ee:50:15:2d:1d:83:
46:e9:a6:f3:69:29:0e:0c:d5:b8:5c:dd:37:ae:46:8b:62:fe:
c4:74:4e:0d:a3:ee:01:9a:92:0a:f5:a6:20:21:61:4c:10:7b:
ba:ff:ed:0d:ed:9c:c5:ca:65:a2:67:eb:20:84:54:94:fc:e1:
8d:85:06:01:36:b4:a7:b8:9e:e9:95:04:33:60:0a:9e:53:44:
a6:08:7e:67:3b:5d:c0:40:af:61:83:f6:b6:ad:e1:49:94:c7:
08:5a:2b:3d:7f:65:cf:31:4d:e9:db:df:25:1b:93:b3:77:02:
bf:27:25:0a:47:6f:ce:e1:25:73:5a:6c:d7:53:c0:75:60:5b:
b8:00:47:91:2e:6e:b4:a7:7a:16:b6:ed:ba:8c:f6:ff:ea:99:
d9:70:63:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 23:31:59 2025 by rpki-client