Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/aURV_jzgKGfINLqp5dyMr7bPe-I.roa
File: aURV_jzgKGfINLqp5dyMr7bPe-I.roa (raw, json)
Hash identifier: DDFPBAMELtGp4U/MSieL4SM1FNdrXU6Kt9RwKkU63io=
Subject key identifier: 69:44:55:FE:3C:E0:28:67:C8:34:BA:A9:E5:DC:8C:AF:B6:CF:7B:E2
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 074E
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/aURV_jzgKGfINLqp5dyMr7bPe-I.roa
Signing time: Fri 16 May 2025 19:38:06 +0000
ROA not before: Fri 16 May 2025 19:38:06 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 119.16.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1870 (0x74e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 16 19:38:06 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=694455FE3CE02867C834BAA9E5DC8CAFB6CF7BE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f8:1c:08:9e:df:10:d1:ae:3a:c2:5c:1c:4c:
76:af:fc:03:56:55:39:3f:23:7c:ce:b8:89:1d:2a:
05:56:ed:af:41:d1:07:90:44:b3:34:57:3e:9a:ea:
55:de:30:ff:24:57:b5:be:64:55:87:2c:f1:2e:4f:
cb:60:00:c7:36:07:40:47:69:bc:82:64:77:40:7c:
2d:79:31:3c:00:a6:5c:71:1e:35:1b:cb:b1:bd:8b:
cd:68:2f:ac:ab:b9:f5:6c:b7:7f:02:5e:4d:e4:1c:
7f:4f:a5:07:dc:80:27:60:0c:54:d0:ac:10:04:35:
67:4b:f5:2c:bc:03:da:85:28:f6:dc:35:6f:95:74:
56:6d:f3:36:b0:74:c6:25:1c:85:ea:7c:39:93:f1:
47:ec:62:c6:37:0b:aa:65:88:31:df:9a:80:f2:c4:
99:90:0f:42:e9:fb:43:1d:91:e2:09:e9:a9:74:f2:
f8:a6:cb:2f:fb:41:f4:04:d7:62:a8:ce:21:cd:22:
c1:b9:df:29:9a:18:6a:7f:6e:67:71:75:b3:3f:0e:
25:e6:e2:b6:d5:b2:81:e2:4d:09:e7:17:0a:19:ae:
54:ec:33:1e:81:c8:f1:20:5f:2b:d3:dc:9c:e6:db:
0b:39:14:56:a6:66:14:44:fd:05:35:85:a8:03:79:
20:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:44:55:FE:3C:E0:28:67:C8:34:BA:A9:E5:DC:8C:AF:B6:CF:7B:E2
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/aURV_jzgKGfINLqp5dyMr7bPe-I.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.16.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b0:1b:7a:cc:0f:06:b9:f0:6c:f8:1e:69:a2:d7:fd:59:2e:d3:
da:2a:d2:f5:7b:90:f0:4d:e6:55:b2:a2:2b:9f:e6:0d:aa:09:
48:d1:c7:31:40:c6:35:af:73:11:fe:12:a5:f7:8e:54:48:0c:
7b:30:98:88:fc:ed:01:f1:59:6c:31:be:33:68:47:f2:06:a0:
20:ed:34:9d:e4:4b:45:fd:87:f6:49:b0:da:60:f6:04:23:39:
eb:25:82:54:1f:18:f4:e5:2b:d0:6f:a5:cf:29:d8:6c:d0:c0:
3f:aa:c9:2c:7b:4e:ac:db:7f:bb:5f:09:7b:9a:ad:20:0f:db:
d6:5d:a9:4f:0f:74:7c:30:5b:12:63:e0:95:33:ef:29:1f:59:
9d:f2:77:c1:b3:e8:1a:79:74:e6:87:f6:63:50:66:cd:45:56:
3d:87:73:80:30:76:23:bd:00:5a:0a:76:5d:c1:5f:db:56:7a:
b0:b2:c2:49:7b:33:4e:18:17:01:48:48:b9:c0:21:fc:d5:fb:
90:cc:53:99:dc:86:d4:93:ff:91:2e:7a:d5:d6:fb:57:4a:41:
6e:42:1b:61:36:fb:a0:dc:47:db:8a:a3:e4:82:7e:0e:11:92:
e8:dc:28:18:dd:3d:06:32:1b:a8:25:3a:3f:24:41:d7:18:e9:
85:c9:22:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 22:42:35 2025 by rpki-client