Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/6nVYeLW-2iWEp4diGxAQ3VnKIuw.roa
File: 6nVYeLW-2iWEp4diGxAQ3VnKIuw.roa (raw, json)
Hash identifier: g1sWc/dZ6CQy0C9BKG3k04Ou+lX3no3zWPhOmUv4P2s=
Subject key identifier: EA:75:58:78:B5:BE:DA:25:84:A7:87:62:1B:10:10:DD:59:CA:22:EC
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 03FD
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/6nVYeLW-2iWEp4diGxAQ3VnKIuw.roa
Signing time: Mon 12 May 2025 09:37:55 +0000
ROA not before: Mon 12 May 2025 09:37:55 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1021 (0x3fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 12 09:37:55 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=EA755878B5BEDA2584A787621B1010DD59CA22EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c6:46:2d:b8:92:7d:df:ef:8f:4e:a9:88:04:
26:de:98:19:c6:81:57:02:80:43:0f:00:4d:38:b0:
d0:b0:10:00:9f:a0:c0:cd:7b:ce:57:4a:25:03:cb:
1c:11:fd:64:5f:35:0b:30:4c:83:22:85:63:f3:40:
67:48:0b:18:b0:cd:cb:2b:de:5c:ac:06:e8:64:39:
a9:b2:91:ff:28:cb:43:98:65:9a:0f:86:ee:de:2e:
85:0f:85:7b:37:bb:0f:05:35:6c:aa:de:5f:9f:17:
d5:50:38:2a:ce:0f:74:a1:e0:3d:f9:51:2c:9d:0d:
a9:f3:80:1a:73:09:7f:5f:60:73:32:6c:9d:27:9a:
01:c2:2b:36:47:8b:41:b4:79:c5:d1:1f:3a:1a:06:
4d:f5:e5:13:19:a3:63:33:7e:48:99:d4:76:61:f7:
11:6a:43:b9:04:b4:fb:c1:0e:3f:7a:b8:01:56:c0:
6b:65:72:5a:3a:eb:e3:b7:da:fe:0c:7a:18:f6:6e:
4e:18:3f:36:2a:13:95:da:b3:a6:81:d6:62:4f:13:
21:56:3e:f1:ed:8a:2d:f6:ec:f9:e1:e3:3b:8a:b1:
1c:18:15:f8:4c:31:78:4d:14:e5:ba:ba:f9:2c:e9:
cc:b8:ce:22:3e:98:ef:f0:98:70:08:4c:76:de:68:
db:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:75:58:78:B5:BE:DA:25:84:A7:87:62:1B:10:10:DD:59:CA:22:EC
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/6nVYeLW-2iWEp4diGxAQ3VnKIuw.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:00:b9:dd:3d:5d:85:8e:7a:f2:37:8a:0f:27:dc:f0:cd:9d:
33:92:53:85:3a:df:b2:11:46:9b:86:20:5b:65:65:47:e6:16:
d8:70:23:2c:fe:ec:82:8a:1d:73:a0:a1:92:15:d1:9a:27:75:
88:df:20:2c:e3:d9:10:ae:7e:a9:cd:05:b5:e9:41:f2:5c:24:
22:38:0b:35:8b:7a:a4:43:cb:fe:0f:dd:ce:cd:ab:b4:26:d8:
40:a2:c8:6c:b4:42:6d:56:bb:92:24:52:88:d9:8d:3e:b6:6f:
64:80:cb:a5:98:3c:02:12:14:98:77:e2:1a:3f:5f:11:62:92:
a5:e4:6a:44:62:f8:f8:c9:ab:64:33:e7:1b:d8:2b:4a:1c:d5:
a2:b9:b6:f4:ee:0b:15:eb:dd:c7:a9:a5:4c:b7:4c:de:2d:0f:
94:59:c1:61:02:79:b7:3a:27:24:be:d7:ff:54:ee:4a:df:06:
40:1f:36:71:02:e3:5a:e3:d6:f3:c2:dd:c2:09:12:51:36:f7:
98:a9:ca:fb:6a:42:ad:fd:53:ed:71:0f:af:d9:bc:76:06:36:
c4:ad:18:38:fc:86:59:da:f6:d4:9a:30:4c:47:d4:fb:be:a1:
61:f0:2b:38:b0:0a:cc:c4:7e:17:3c:b8:1a:35:27:43:29:fb:
99:f3:c0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 23:27:42 2025 by rpki-client