Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/EMGfbYGQjoiAOGzYVvXnKcqdKq4.roa
File: EMGfbYGQjoiAOGzYVvXnKcqdKq4.roa (raw, json)
Hash identifier: 6BH1/gx5BIZ3k/oy8B4PMMWnJ1yOHl0iUdTeJX67gZw=
Subject key identifier: 10:C1:9F:6D:81:90:8E:88:80:38:6C:D8:56:F5:E7:29:CA:9D:2A:AE
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 07A9
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/EMGfbYGQjoiAOGzYVvXnKcqdKq4.roa
Signing time: Sat 17 May 2025 07:08:16 +0000
ROA not before: Sat 17 May 2025 07:08:16 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1961 (0x7a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 17 07:08:16 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=10C19F6D81908E8880386CD856F5E729CA9D2AAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c5:d2:9f:31:ad:cb:7c:78:83:41:60:a2:9a:
93:d8:a8:45:e9:93:87:26:75:60:5e:87:c8:f4:22:
c9:34:33:e1:3b:fc:d7:32:63:ff:35:74:12:71:90:
b6:fb:fa:22:3f:c5:22:b3:5d:69:56:95:1d:10:9f:
ff:b5:99:62:d8:1b:a5:41:56:36:8d:4c:82:05:52:
f3:84:97:8b:a1:f9:d7:d5:89:83:42:3f:dc:36:d0:
82:01:53:97:0e:95:18:b8:1d:05:f6:ff:3a:1c:33:
8b:e2:20:55:ae:2e:a0:4a:c5:73:05:37:bf:d1:a8:
c7:14:2a:79:14:4e:10:2c:ca:b4:4c:a3:0c:4d:b3:
0c:3c:9d:15:8d:41:88:9a:fd:8c:25:06:d7:03:71:
c3:cb:d7:4e:88:c8:8e:91:94:d2:59:09:ca:36:ba:
63:ec:05:77:a4:8f:63:f6:f5:7c:2d:d0:64:aa:c6:
41:72:c7:33:ae:c7:76:55:58:5f:f5:a4:d2:4d:1d:
c1:46:11:8b:c9:e0:72:a5:29:69:84:e5:ed:03:1f:
e9:74:a9:af:87:f7:93:15:76:4d:24:eb:11:ff:8e:
93:4b:df:69:86:c8:20:fa:96:ba:2e:86:1d:19:08:
39:86:7e:b2:a1:24:cc:46:7a:5d:98:7b:16:ec:15:
a6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C1:9F:6D:81:90:8E:88:80:38:6C:D8:56:F5:E7:29:CA:9D:2A:AE
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/EMGfbYGQjoiAOGzYVvXnKcqdKq4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
47:4a:cc:c1:37:bf:7a:69:ad:22:72:1b:a0:89:ae:68:8a:0e:
11:21:01:4d:4a:e0:e0:06:e4:50:ad:48:20:a2:1d:a3:90:32:
cb:d3:ad:c8:fb:bf:63:99:b5:8e:ad:6f:60:14:05:e1:c2:f3:
af:f6:9a:42:7c:87:65:81:0b:a2:20:50:4e:0f:ee:e2:dc:a8:
1c:d1:4f:06:43:8d:cf:5e:53:2d:24:d7:74:65:c6:37:f3:30:
a2:b8:f0:a8:7d:91:7b:0e:7a:7b:0e:25:2c:ab:67:fe:02:31:
53:47:9e:1f:cc:d9:78:98:9a:d4:2c:36:34:c3:a0:5c:ce:73:
1c:07:f4:b9:7b:e5:8c:71:45:f9:89:0b:1a:b8:40:ee:84:67:
aa:d4:1a:72:a1:2e:de:8b:02:ef:f7:2c:22:a6:6f:09:a9:08:
20:79:da:55:b3:7d:13:6b:9b:e1:9b:05:2c:50:d8:d7:18:ed:
ea:85:22:08:27:0e:ca:2b:0e:4b:01:80:f5:ac:2d:65:72:fb:
b8:a0:53:9c:33:6e:89:2d:cd:85:a7:d3:39:30:e4:8a:71:65:
fb:48:72:18:6f:c8:ad:fa:40:f5:64:2c:de:2c:85:3e:a4:29:
20:c0:26:f0:fa:17:68:47:e2:b6:28:fb:0f:6c:5d:33:73:01:
2e:3e:ab:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 05:57:49 2025 by rpki-client