Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/EZRl44qQAgqV_S-kb7EcbTwyUV4.roa
File: EZRl44qQAgqV_S-kb7EcbTwyUV4.roa (raw, json)
Hash identifier: 6pW3C8AZsMVJIm3x1DTbqQAq4WFHfFZ9YN9B+lQFSCE=
Subject key identifier: 11:94:65:E3:8A:90:02:0A:95:FD:2F:A4:6F:B1:1C:6D:3C:32:51:5E
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 075D
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/EZRl44qQAgqV_S-kb7EcbTwyUV4.roa
Signing time: Fri 16 May 2025 21:38:07 +0000
ROA not before: Fri 16 May 2025 21:38:07 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1885 (0x75d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 16 21:38:07 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=119465E38A90020A95FD2FA46FB11C6D3C32515E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:36:67:a8:11:ec:67:57:81:c2:1d:d9:74:
02:44:32:fa:a6:1f:f4:2c:40:7b:88:14:38:45:95:
5c:80:de:f4:69:98:ae:1d:aa:60:e0:85:d1:36:f2:
60:19:96:7a:7e:a0:1d:be:ce:bc:f1:ca:15:99:25:
34:ef:04:d8:39:7b:63:25:fe:13:11:02:e2:14:30:
c1:f0:c6:2f:da:26:7f:4a:d9:fb:1b:e0:71:50:d2:
af:59:1f:d7:75:d5:95:bd:e8:cf:4b:47:9d:b1:1c:
b6:d2:59:b7:90:94:39:3d:15:ae:8b:4b:1d:17:c2:
a6:0d:2b:ee:54:7f:9f:72:e4:f3:f1:69:0a:94:e7:
af:48:d0:8b:2c:d2:22:98:41:26:51:60:99:27:96:
4f:e0:1e:cb:f0:69:bb:4a:36:53:33:1a:99:f0:b5:
d6:f5:7a:d8:8d:eb:7b:a3:81:63:e6:f8:0d:c7:4c:
f3:dc:5e:fa:eb:2b:07:3d:26:fd:71:0a:47:a5:2e:
b8:92:29:39:23:71:dc:56:9b:bb:48:e1:17:b4:68:
2c:cd:9c:31:ef:e9:7b:25:19:97:17:82:7b:14:e8:
d5:ed:28:01:69:70:57:c2:81:17:c3:2c:c0:88:bc:
18:b7:99:17:0d:8b:fa:39:61:eb:d3:9a:4b:04:ba:
fd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:94:65:E3:8A:90:02:0A:95:FD:2F:A4:6F:B1:1C:6D:3C:32:51:5E
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/EZRl44qQAgqV_S-kb7EcbTwyUV4.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:e9:6e:50:66:c4:55:47:23:ef:a8:97:d4:20:b1:65:3d:3c:
50:ac:ef:bf:9d:15:26:68:b4:c8:28:60:ea:36:0a:6f:08:72:
2b:94:31:fb:0d:45:e6:c6:da:21:92:ba:31:23:a9:fa:29:b0:
be:4e:a2:77:1c:a7:30:e9:d6:46:e4:e8:1d:38:39:66:1d:26:
94:48:bd:72:1e:2b:66:34:b1:5a:6d:37:4c:cf:8a:35:99:ff:
f6:d7:6f:03:1e:05:26:f2:8e:f5:95:fd:5f:6b:f7:52:56:92:
9d:64:e5:45:91:80:41:45:b2:5f:b3:f0:14:10:71:e6:fc:7d:
f0:af:c7:37:a4:05:a9:8a:b2:65:1d:24:52:5d:94:68:84:7e:
90:6e:53:c7:3c:d8:bf:9b:75:21:93:6d:78:09:a0:01:4e:f7:
62:b3:ac:aa:e8:f4:8e:cf:54:37:8e:72:ee:84:ca:5b:00:f2:
b0:ad:bc:0e:1c:4a:b2:03:d7:c1:59:2e:29:61:ee:fc:f9:a7:
4e:2e:fb:a5:e2:dc:3a:fc:d0:ae:c3:34:e1:48:87:ee:49:46:
d7:bd:5a:07:a3:8d:38:5f:88:4b:84:78:d8:be:44:16:8d:48:
67:d6:1f:a8:c4:e8:26:ff:4e:72:8c:7b:ac:95:4e:42:7c:db:
5b:f2:50:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 23:55:12 2025 by rpki-client