Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/49C1495A604B11EFB7BDDF26C4F9AE02.roa
File: 49C1495A604B11EFB7BDDF26C4F9AE02.roa (raw, json)
Hash identifier: 3j71/CxLc3uOMgFfzAIIXsqjcsQZpceud19O9Mc50WE=
Subject key identifier: BF:11:12:03:30:15:35:46:44:B7:C6:F2:55:95:1B:38:C8:3D:9D:C6
Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Certificate serial: 070F
Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/49C1495A604B11EFB7BDDF26C4F9AE02.roa
Signing time: Thu 22 Aug 2024 05:56:35 +0000
ROA not before: Thu 22 Aug 2024 05:56:35 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 9723
IP address blocks: 1.178.0.0/20 maxlen: 24
1.178.64.0/20 maxlen: 24
1.178.80.0/20 maxlen: 24
1.178.96.0/20 maxlen: 24
1.178.144.0/20 maxlen: 20
1.178.144.0/21 maxlen: 24
1.178.160.0/20 maxlen: 20
1.178.176.0/20 maxlen: 20
1.178.176.0/21 maxlen: 24
1.178.192.0/20 maxlen: 20
1.178.192.0/21 maxlen: 24
1.179.0.0/20 maxlen: 20
1.179.16.0/20 maxlen: 20
1.179.32.0/21 maxlen: 21
1.179.48.0/20 maxlen: 20
1.179.48.0/21 maxlen: 24
1.179.64.0/21 maxlen: 21
1.179.80.0/21 maxlen: 21
1.179.96.0/20 maxlen: 20
58.87.0.0/20 maxlen: 20
58.87.0.0/23 maxlen: 23
58.87.2.0/23 maxlen: 23
58.87.6.0/23 maxlen: 23
58.87.8.0/23 maxlen: 23
58.87.10.0/23 maxlen: 23
58.87.12.0/23 maxlen: 23
58.87.14.0/24 maxlen: 24
58.87.15.0/24 maxlen: 24
110.238.2.0/23 maxlen: 23
110.238.4.0/22 maxlen: 22
110.238.4.0/23 maxlen: 23
110.238.6.0/23 maxlen: 23
110.238.8.0/23 maxlen: 23
110.238.10.0/23 maxlen: 23
110.238.12.0/23 maxlen: 23
110.238.14.0/23 maxlen: 23
110.238.16.0/20 maxlen: 20
110.238.16.0/24 maxlen: 24
110.238.18.0/24 maxlen: 24
110.238.21.0/24 maxlen: 24
110.238.24.0/24 maxlen: 24
110.238.25.0/24 maxlen: 24
110.238.128.0/20 maxlen: 20
110.238.128.0/21 maxlen: 24
110.238.144.0/20 maxlen: 20
110.238.144.0/22 maxlen: 22
110.238.152.0/21 maxlen: 21
110.238.224.0/20 maxlen: 20
110.238.224.0/21 maxlen: 24
110.238.240.0/20 maxlen: 20
110.238.240.0/21 maxlen: 24
110.239.0.0/20 maxlen: 20
110.239.16.0/20 maxlen: 20
110.239.32.0/20 maxlen: 20
110.239.32.0/21 maxlen: 24
110.239.128.0/20 maxlen: 20
110.239.128.0/21 maxlen: 21
110.239.144.0/20 maxlen: 20
110.239.176.0/21 maxlen: 22
110.239.178.0/23 maxlen: 23
110.239.178.0/24 maxlen: 24
110.239.224.0/20 maxlen: 20
110.239.240.0/20 maxlen: 20
119.12.0.0/20 maxlen: 20
119.12.80.0/20 maxlen: 20
119.12.80.0/21 maxlen: 24
119.12.96.0/21 maxlen: 21
119.12.112.0/20 maxlen: 20
119.12.112.0/21 maxlen: 24
119.12.144.0/21 maxlen: 24
119.13.0.0/20 maxlen: 20
119.13.0.0/23 maxlen: 23
119.13.2.0/24 maxlen: 24
119.13.3.0/24 maxlen: 24
119.13.4.0/23 maxlen: 23
119.13.6.0/23 maxlen: 23
119.13.8.0/23 maxlen: 23
119.13.16.0/21 maxlen: 24
119.13.48.0/21 maxlen: 21
119.13.48.0/24 maxlen: 24
119.13.128.0/20 maxlen: 20
119.13.144.0/21 maxlen: 24
119.13.176.0/21 maxlen: 23
119.13.176.0/23 maxlen: 24
119.13.178.0/24 maxlen: 24
119.13.180.0/22 maxlen: 24
119.13.240.0/21 maxlen: 24
121.91.16.0/20 maxlen: 20
121.91.96.0/21 maxlen: 21
121.91.112.0/20 maxlen: 20
121.91.128.0/21 maxlen: 24
121.91.144.0/21 maxlen: 21
121.91.160.0/21 maxlen: 21
121.91.192.0/21 maxlen: 21
123.200.128.0/20 maxlen: 20
123.200.133.0/24 maxlen: 24
123.200.136.0/22 maxlen: 22
123.200.140.0/22 maxlen: 22
123.200.144.0/22 maxlen: 22
123.200.148.0/22 maxlen: 22
123.200.152.0/21 maxlen: 21
123.200.160.0/23 maxlen: 23
123.200.162.0/23 maxlen: 23
123.200.164.0/23 maxlen: 23
123.200.165.0/24 maxlen: 24
123.200.166.0/23 maxlen: 23
123.200.168.0/23 maxlen: 23
123.200.170.0/23 maxlen: 23
123.200.172.0/24 maxlen: 24
123.200.174.0/24 maxlen: 24
123.200.175.0/24 maxlen: 24
123.200.176.0/23 maxlen: 23
123.200.179.0/24 maxlen: 24
123.200.180.0/23 maxlen: 23
123.200.182.0/23 maxlen: 23
123.200.184.0/22 maxlen: 22
123.200.187.0/24 maxlen: 24
123.200.188.0/23 maxlen: 23
123.200.192.0/21 maxlen: 21
123.200.200.0/21 maxlen: 21
123.200.208.0/21 maxlen: 21
123.200.216.0/21 maxlen: 21
123.200.224.0/21 maxlen: 21
123.200.240.0/21 maxlen: 21
202.83.64.0/19 maxlen: 19
202.83.64.0/22 maxlen: 22
202.83.68.0/23 maxlen: 23
202.83.70.0/23 maxlen: 23
202.83.72.0/24 maxlen: 24
202.83.73.0/24 maxlen: 24
202.83.74.0/23 maxlen: 23
202.83.76.0/22 maxlen: 22
202.83.80.0/23 maxlen: 23
202.83.82.0/24 maxlen: 24
202.83.83.0/24 maxlen: 24
202.83.84.0/22 maxlen: 22
202.83.88.0/23 maxlen: 23
202.83.90.0/23 maxlen: 23
202.83.92.0/23 maxlen: 23
202.83.94.0/24 maxlen: 24
202.83.95.0/24 maxlen: 24
202.183.96.0/20 maxlen: 20
202.183.96.0/24 maxlen: 24
202.183.97.0/24 maxlen: 24
202.183.98.0/24 maxlen: 24
202.183.100.0/23 maxlen: 23
202.183.102.0/23 maxlen: 23
202.183.102.0/24 maxlen: 24
202.183.104.0/22 maxlen: 22
202.183.108.0/24 maxlen: 24
202.183.110.0/24 maxlen: 24
202.183.111.0/24 maxlen: 24
202.183.112.0/20 maxlen: 20
202.183.112.0/23 maxlen: 23
202.183.114.0/23 maxlen: 23
202.183.116.0/23 maxlen: 23
202.183.118.0/24 maxlen: 24
202.183.119.0/24 maxlen: 24
202.183.120.0/22 maxlen: 22
202.183.124.0/23 maxlen: 23
202.183.126.0/24 maxlen: 24
202.183.127.0/24 maxlen: 24
210.56.64.0/20 maxlen: 20
210.56.64.0/22 maxlen: 22
210.56.64.0/24 maxlen: 24
210.56.65.0/24 maxlen: 24
210.56.66.0/24 maxlen: 24
210.56.67.0/24 maxlen: 24
210.56.68.0/23 maxlen: 23
210.56.70.0/23 maxlen: 23
210.56.72.0/23 maxlen: 23
210.56.74.0/23 maxlen: 23
210.56.76.0/23 maxlen: 23
210.56.78.0/23 maxlen: 23
220.157.64.0/19 maxlen: 19
220.157.64.0/23 maxlen: 23
220.157.66.0/23 maxlen: 23
220.157.66.0/24 maxlen: 24
220.157.69.0/24 maxlen: 24
220.157.70.0/24 maxlen: 24
220.157.71.0/24 maxlen: 24
220.157.72.0/23 maxlen: 23
220.157.76.0/23 maxlen: 23
220.157.78.0/23 maxlen: 23
220.157.78.0/24 maxlen: 24
220.157.79.0/24 maxlen: 24
220.157.80.0/23 maxlen: 23
220.157.82.0/23 maxlen: 23
220.157.84.0/23 maxlen: 23
220.157.86.0/23 maxlen: 23
220.157.88.0/23 maxlen: 23
220.157.90.0/24 maxlen: 24
220.157.91.0/24 maxlen: 24
220.157.92.0/24 maxlen: 24
220.157.93.0/24 maxlen: 24
220.157.94.0/24 maxlen: 24
220.157.95.0/24 maxlen: 24
2407:6800::/32 maxlen: 32
2407:6800:0:200::/56 maxlen: 56
2407:6800:0:300::/56 maxlen: 56
2407:6800:0:400::/56 maxlen: 56
2407:6800:0:500::/56 maxlen: 56
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1807 (0x70f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB4FE, serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Validity
Not Before: Aug 22 05:56:35 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66c6d313-d266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1a:04:80:58:1b:9a:dd:78:bc:b1:6f:44:3f:
41:a7:a2:10:d5:75:a8:e8:07:ad:64:53:df:d3:83:
28:2f:70:a7:be:d7:44:ff:2c:70:79:ec:cb:0b:70:
14:c2:76:be:b2:32:4e:65:5d:da:26:d1:1d:71:18:
f5:5e:85:5e:40:21:ca:67:ae:3b:0a:d3:d1:27:d4:
52:b6:02:6f:79:34:09:47:91:03:e2:c5:29:8b:39:
09:e6:ac:9a:a7:38:b8:0b:7f:78:20:f9:cc:52:e0:
ad:69:3e:e3:55:e6:67:17:72:37:21:8c:04:23:43:
22:77:7e:e4:9b:a4:de:7a:81:09:55:5b:f6:5a:9f:
bc:7f:d7:94:ec:39:cc:65:e8:bf:a1:81:79:53:1c:
ba:d7:7c:b9:8d:08:8e:13:7b:a9:37:4c:c8:17:86:
ed:f5:ce:41:c1:e6:08:43:ec:8e:39:1f:4d:47:16:
30:e7:62:18:16:ca:49:a6:1e:a4:bb:19:5e:bd:2e:
b2:8e:5a:cb:bd:87:12:8a:87:70:37:c5:49:1e:8d:
d0:b7:81:db:51:c2:0a:d7:03:91:05:26:0e:75:81:
de:6f:b6:a3:83:4b:36:08:31:66:e0:e0:08:c4:2d:
27:4b:9c:ef:e1:ab:39:bf:66:e9:8a:4a:87:36:8a:
42:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:11:12:03:30:15:35:46:44:B7:C6:F2:55:95:1B:38:C8:3D:9D:C6
X509v3 Authority Key Identifier:
keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/49C1495A604B11EFB7BDDF26C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/20
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/20
110.238.2.0-110.238.31.255
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/21
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0/20
119.12.144.0/21
119.13.0.0-119.13.23.255
119.13.48.0/21
119.13.128.0-119.13.151.255
119.13.176.0/21
119.13.240.0/21
121.91.16.0/20
121.91.96.0/21
121.91.112.0-121.91.135.255
121.91.144.0/21
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.172.255
123.200.174.0-123.200.177.255
123.200.179.0-123.200.189.255
123.200.192.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/19
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
df:3d:97:50:65:14:de:26:ea:08:e3:8f:96:47:73:7d:4b:c1:
4c:d3:d5:cf:7e:ce:4d:39:3d:59:7b:fa:ed:dd:17:23:7d:4e:
a1:72:1b:3c:12:10:56:56:3d:86:aa:30:03:9c:65:7f:15:c0:
6d:0e:42:23:1c:87:d2:f8:78:a6:5b:ae:fd:d9:49:9b:c4:0d:
5a:8f:7e:52:da:db:b6:e1:c4:db:e0:58:2c:5b:bf:49:96:15:
f0:f4:e7:12:9b:7b:57:a9:61:9b:cb:e0:73:74:a2:84:bd:15:
d3:bd:30:b5:c5:1c:5e:b1:88:26:e7:39:1d:43:e7:d4:10:2c:
ec:d5:98:6f:78:ee:0f:d7:54:3e:9b:6a:5c:79:fc:fd:38:a7:
f4:b1:5a:44:c3:f3:f4:c5:fd:03:32:81:d9:4b:f9:9a:a2:66:
35:f0:e6:7e:fd:42:03:42:26:fb:40:b6:c2:2d:09:bc:bd:32:
d5:10:3a:39:c7:45:66:3e:a0:9a:b0:98:be:5b:35:0f:39:e4:
ef:8e:4f:ee:8f:3f:63:d2:cf:ef:64:d6:16:f6:76:f5:19:04:
cc:b9:4a:8d:46:ea:fe:75:c5:4a:d8:e9:55:32:12:56:18:b5:
ec:0d:ee:6f:9a:46:08:bd:6e:39:62:87:f5:ba:5a:72:58:b4:
2b:1f:27:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:48:26 2025 by rpki-client