Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/zaUeCUr_d--nQnNd5XLrvEe666U.roa
File: zaUeCUr_d--nQnNd5XLrvEe666U.roa (raw, json)
Hash identifier: /3wuO3IqDsfoIl6sVVB6WdzAeAQFrxWeg4s6Gaq0+i0=
Subject key identifier: CD:A5:1E:09:4A:FF:77:EF:A7:42:73:5D:E5:72:EB:BC:47:BA:EB:A5
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 06F5
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/zaUeCUr_d--nQnNd5XLrvEe666U.roa
Signing time: Fri 16 May 2025 08:38:04 +0000
ROA not before: Fri 16 May 2025 08:38:04 +0000
ROA not after: Thu 09 Apr 2026 06:33:21 +0000
asID: 9391
IP address blocks: 27.103.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1781 (0x6f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: May 16 08:38:04 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=CDA51E094AFF77EFA742735DE572EBBC47BAEBA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d0:4e:0b:58:3e:3a:f1:28:8c:6a:44:9f:17:
13:c4:45:1b:03:b3:67:43:b6:8e:65:69:8a:b0:f6:
a6:80:a3:b9:3e:07:8a:13:ec:7a:92:34:53:6b:12:
f2:2d:e2:52:52:2b:ad:1c:a8:df:d0:b3:75:f2:4a:
e8:34:a5:22:06:ed:b3:44:de:bc:5c:bd:7e:c7:68:
b6:97:ad:7e:ba:0d:47:46:42:e1:4a:92:39:13:3f:
e2:30:52:56:f6:15:cc:ea:93:b7:08:33:db:7b:20:
24:44:44:1e:bd:50:bb:67:81:54:c4:e5:58:75:47:
77:d2:c9:37:25:9d:80:4f:d8:74:4b:ef:3e:58:57:
26:71:d3:0a:46:c2:66:69:f9:23:99:87:7f:24:b4:
db:42:42:fc:ac:50:1f:31:4e:27:2a:61:c5:fd:df:
c4:8c:8c:0b:97:71:a2:ee:b7:6b:95:66:55:75:cb:
ff:83:45:1d:b8:ce:76:e0:7b:45:76:b9:37:c6:65:
ba:b9:b5:6d:71:98:29:0d:07:c9:bc:10:06:bc:cd:
71:6a:34:1a:95:f6:14:d5:aa:b8:eb:ed:28:c5:9e:
fc:0f:8a:fd:50:bc:53:f2:2a:7b:ac:05:4e:5e:01:
68:0f:d2:3b:15:71:7a:a2:fa:b4:92:ed:e9:3c:cb:
32:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A5:1E:09:4A:FF:77:EF:A7:42:73:5D:E5:72:EB:BC:47:BA:EB:A5
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/zaUeCUr_d--nQnNd5XLrvEe666U.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
10:cd:23:61:36:1d:83:6d:f7:e5:59:72:63:d5:f3:0d:f7:f8:
9c:87:2c:b6:a9:70:1e:5a:1e:a1:c9:75:80:eb:da:df:1b:02:
bc:8f:42:28:fc:5a:a7:f1:b1:d2:6e:9b:ec:ab:15:5f:2b:b1:
58:31:d6:9d:e8:8f:58:9e:47:52:b8:e5:48:5b:44:1f:e0:f5:
d3:bf:a1:4b:59:6f:bb:d0:84:f6:65:bd:da:53:55:e2:0b:92:
4e:bb:05:c6:cc:1c:81:0a:6b:cb:c4:5f:ad:d1:82:48:8e:a7:
b5:e2:60:77:f2:2c:a0:ee:61:43:8c:69:a2:f0:cb:4d:c1:96:
b5:e5:71:90:e1:1c:cb:03:fd:0c:d2:b5:22:8f:fa:cc:55:6b:
d4:c2:4e:30:47:e1:80:25:47:ad:dc:03:25:4f:e5:58:4d:99:
2c:e6:66:c4:1a:59:ca:04:36:37:87:a7:27:78:98:ff:6e:cb:
64:b0:12:32:d0:22:15:4d:43:96:88:53:ec:44:b5:56:ff:24:
7d:f9:d9:48:48:79:54:05:cb:fc:40:13:00:28:0e:eb:16:1f:
af:52:bb:b7:ab:8f:e3:30:c9:3d:23:e4:94:a3:3a:a9:13:91:
e6:26:fe:90:3c:5b:a9:68:0e:3f:00:a6:da:c4:a8:f9:e0:2b:
21:1e:c5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 21:29:20 2025 by rpki-client