Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/Myeu7wd3Gyww3MkPf9uuOlLxz64.roa
File: Myeu7wd3Gyww3MkPf9uuOlLxz64.roa (raw, json)
Hash identifier: L4/8tlnpU4NXg7SnjesCK10b/CysiHvhDcBBV4mwYD8=
Subject key identifier: 33:27:AE:EF:07:77:1B:2C:30:DC:C9:0F:7F:DB:AE:3A:52:F1:CF:AE
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 0316
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/Myeu7wd3Gyww3MkPf9uuOlLxz64.roa
Signing time: Sun 11 May 2025 04:38:22 +0000
ROA not before: Sun 11 May 2025 04:38:22 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 119.16.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 790 (0x316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 11 04:38:22 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=3327AEEF07771B2C30DCC90F7FDBAE3A52F1CFAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:20:f8:4f:31:f6:70:62:83:8f:19:d5:da:60:
4d:dd:a3:a9:b9:c5:5d:fc:aa:cf:fb:f0:ed:eb:f5:
da:96:a8:86:84:1d:f6:ef:a5:cf:82:c7:03:ee:dd:
16:cb:3b:97:c5:5c:3b:5d:a8:e1:5d:9e:36:0b:8e:
ad:5c:89:59:9c:c8:1f:f2:98:06:b9:40:c0:1f:69:
1d:3f:aa:7a:0b:62:84:ee:7e:d0:c9:82:fa:31:bb:
17:50:1c:b4:52:a4:4c:66:10:9b:87:e1:c9:f6:21:
9a:06:2d:87:23:5b:11:99:93:9c:72:b3:c6:43:94:
07:a9:be:5a:ca:6f:d8:2f:85:f1:50:08:9d:74:56:
da:11:ea:05:28:42:79:e9:68:fc:39:ca:5c:4e:f1:
69:c8:ea:0e:74:12:18:d3:75:24:17:9a:02:e4:ad:
1e:6c:04:f2:20:9f:a5:c1:74:5d:d6:78:8a:0f:d5:
f4:7b:20:58:ed:c4:3f:53:0c:0a:78:fb:5e:21:46:
2a:f1:52:1b:f5:e3:5a:45:fe:a0:90:89:33:f5:8b:
a7:b7:f5:1e:32:2f:05:42:c8:ee:07:79:83:ab:4f:
a6:38:f2:5f:75:f4:0e:c6:f0:08:cf:c5:1b:69:2e:
01:c5:26:db:b5:3a:c5:22:06:89:09:15:92:7a:42:
57:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:27:AE:EF:07:77:1B:2C:30:DC:C9:0F:7F:DB:AE:3A:52:F1:CF:AE
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/Myeu7wd3Gyww3MkPf9uuOlLxz64.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.16.0.0/16
Signature Algorithm: sha256WithRSAEncryption
60:d0:02:96:ec:2d:8c:36:2f:46:c1:d7:53:0c:9f:22:ec:6e:
26:43:7b:22:e8:15:e3:a8:b0:39:72:84:4d:de:2b:9d:55:89:
ba:9e:0b:8e:8f:33:d4:55:91:eb:83:f4:77:d6:a4:43:08:0a:
f5:84:0c:2c:cb:bc:78:9b:b3:9b:7e:9f:25:fd:80:57:10:39:
45:ab:b8:aa:96:1c:f9:c4:36:1b:1a:d6:71:30:42:6d:93:d5:
b2:1e:5f:bd:2f:41:e4:1b:03:c0:7a:3c:7d:ad:bd:7f:7f:e2:
ac:a3:d3:b4:46:39:16:06:32:01:29:07:20:e3:0d:23:c7:c0:
e6:1e:01:7c:b3:d5:c7:87:7b:20:ab:b0:14:d0:90:45:a0:89:
cb:18:f9:95:99:92:e8:5b:8a:c0:fc:b2:29:d9:90:7e:c3:19:
1b:4c:d3:ac:db:3b:36:bc:86:82:6b:3d:8e:6a:08:83:e2:8d:
bc:f7:af:48:0f:71:21:b9:9f:20:9b:70:99:b3:6a:44:2f:15:
4b:d4:c1:4f:15:70:76:85:4e:79:29:c9:f9:4d:9c:59:5b:66:
a7:b1:3b:e2:fc:90:30:1b:c9:9c:fa:3d:a1:a7:17:f9:8e:d4:
df:3a:ad:83:07:8f:80:31:b8:5e:84:98:b1:ac:58:84:4a:64:
5d:6f:65:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 22:56:35 2025 by rpki-client