Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/48318D88D58911EC909EE44AC4F9AE02.roa
File: 48318D88D58911EC909EE44AC4F9AE02.roa (raw, json)
Hash identifier: hNLMgBw3VcnYzHB1iVm8L+Q5IK0u0V/6iajTWlaPsGg=
Subject key identifier: 61:EE:75:EF:E1:AD:5F:9D:10:F4:5B:00:07:D3:90:F2:0D:96:A0:93
Certificate issuer: /CN=A9153457/serialNumber=6B0E42D8859E0B1CDE54157ACB8D7604AD3FF1B3
Certificate serial: 3240
Authority key identifier: 6B:0E:42:D8:85:9E:0B:1C:DE:54:15:7A:CB:8D:76:04:AD:3F:F1:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aw5C2IWeCxzeVBV6y412BK0_8bM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/48318D88D58911EC909EE44AC4F9AE02.roa
Signing time: Tue 17 May 2022 02:30:15 +0000
ROA not before: Tue 17 May 2022 02:30:15 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 4795
IP address blocks: 182.30.0.0/16 maxlen: 16
182.30.224.0/22 maxlen: 24
182.30.240.0/20 maxlen: 20
182.30.248.0/21 maxlen: 21
182.30.248.0/23 maxlen: 23
182.30.250.0/23 maxlen: 23
202.155.0.0/17 maxlen: 17
202.155.0.0/22 maxlen: 22
202.155.0.0/24 maxlen: 24
202.155.2.0/23 maxlen: 24
202.155.4.0/23 maxlen: 23
202.155.5.0/24 maxlen: 24
202.155.6.0/24 maxlen: 24
202.155.7.0/24 maxlen: 24
202.155.8.0/24 maxlen: 24
202.155.9.0/24 maxlen: 24
202.155.10.0/23 maxlen: 23
202.155.12.0/22 maxlen: 22
202.155.12.0/23 maxlen: 23
202.155.14.0/24 maxlen: 24
202.155.15.0/24 maxlen: 24
202.155.16.0/23 maxlen: 23
202.155.18.0/24 maxlen: 24
202.155.19.0/24 maxlen: 24
202.155.20.0/22 maxlen: 22
202.155.22.0/24 maxlen: 24
202.155.24.0/23 maxlen: 23
202.155.25.0/24 maxlen: 24
202.155.26.0/23 maxlen: 23
202.155.26.0/24 maxlen: 24
202.155.28.0/23 maxlen: 23
202.155.30.0/23 maxlen: 23
202.155.32.0/23 maxlen: 23
202.155.32.0/24 maxlen: 24
202.155.34.0/23 maxlen: 23
202.155.36.0/23 maxlen: 23
202.155.37.0/24 maxlen: 24
202.155.38.0/23 maxlen: 23
202.155.40.0/22 maxlen: 22
202.155.40.0/23 maxlen: 23
202.155.43.0/24 maxlen: 24
202.155.44.0/22 maxlen: 22
202.155.44.0/23 maxlen: 23
202.155.48.0/20 maxlen: 20
202.155.48.0/24 maxlen: 24
202.155.49.0/24 maxlen: 24
202.155.50.0/23 maxlen: 24
202.155.52.0/23 maxlen: 23
202.155.54.0/23 maxlen: 23
202.155.54.0/24 maxlen: 24
202.155.56.0/24 maxlen: 24
202.155.57.0/24 maxlen: 24
202.155.58.0/24 maxlen: 24
202.155.59.0/24 maxlen: 24
202.155.60.0/23 maxlen: 23
202.155.62.0/23 maxlen: 23
202.155.65.0/24 maxlen: 24
202.155.66.0/23 maxlen: 23
202.155.68.0/23 maxlen: 23
202.155.69.0/24 maxlen: 24
202.155.70.0/23 maxlen: 23
202.155.70.0/24 maxlen: 24
202.155.72.0/22 maxlen: 23
202.155.76.0/23 maxlen: 23
202.155.78.0/23 maxlen: 23
202.155.78.0/24 maxlen: 24
202.155.79.0/24 maxlen: 24
202.155.80.0/23 maxlen: 23
202.155.82.0/23 maxlen: 23
202.155.84.0/24 maxlen: 24
202.155.85.0/24 maxlen: 24
202.155.86.0/24 maxlen: 24
202.155.87.0/24 maxlen: 24
202.155.88.0/23 maxlen: 23
202.155.88.0/24 maxlen: 24
202.155.90.0/24 maxlen: 24
202.155.91.0/24 maxlen: 24
202.155.92.0/24 maxlen: 24
202.155.93.0/24 maxlen: 24
202.155.94.0/23 maxlen: 23
202.155.96.0/23 maxlen: 23
202.155.98.0/23 maxlen: 23
202.155.98.0/24 maxlen: 24
202.155.100.0/23 maxlen: 23
202.155.100.0/24 maxlen: 24
202.155.102.0/24 maxlen: 24
202.155.103.0/24 maxlen: 24
202.155.104.0/23 maxlen: 23
202.155.106.0/23 maxlen: 23
202.155.108.0/23 maxlen: 23
202.155.110.0/23 maxlen: 23
202.155.112.0/23 maxlen: 24
202.155.114.0/23 maxlen: 23
202.155.114.0/24 maxlen: 24
202.155.115.0/24 maxlen: 24
202.155.116.0/23 maxlen: 23
202.155.118.0/23 maxlen: 23
202.155.118.0/24 maxlen: 24
202.155.120.0/21 maxlen: 21
202.155.120.0/23 maxlen: 23
202.155.122.0/23 maxlen: 23
202.155.124.0/23 maxlen: 23
202.155.124.0/24 maxlen: 24
202.155.126.0/24 maxlen: 24
202.155.127.0/24 maxlen: 24
202.155.128.0/19 maxlen: 21
202.155.128.0/24 maxlen: 24
202.155.130.0/24 maxlen: 24
202.155.133.0/24 maxlen: 24
202.155.134.0/24 maxlen: 24
202.155.136.0/24 maxlen: 24
202.155.137.0/24 maxlen: 24
202.155.138.0/24 maxlen: 24
202.155.139.0/24 maxlen: 24
202.155.140.0/22 maxlen: 22
202.155.140.0/23 maxlen: 23
202.155.140.0/24 maxlen: 24
202.155.142.0/24 maxlen: 24
202.155.143.0/24 maxlen: 24
202.155.146.0/23 maxlen: 23
202.155.147.0/24 maxlen: 24
202.155.148.0/23 maxlen: 23
202.155.148.0/24 maxlen: 24
202.155.150.0/23 maxlen: 24
202.155.152.0/22 maxlen: 22
202.155.152.0/24 maxlen: 24
202.155.155.0/24 maxlen: 24
202.155.156.0/24 maxlen: 24
202.155.157.0/24 maxlen: 24
202.155.158.0/23 maxlen: 23
202.155.158.0/24 maxlen: 24
2001:e00::/31 maxlen: 32
2001:e00:25::/49 maxlen: 49
2001:e00:26::/49 maxlen: 49
2001:e00:100:8000::/49 maxlen: 49
2001:e00:1005::/48 maxlen: 48
2001:e00:10e4:8400::/56 maxlen: 56
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12864 (0x3240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153457/serialNumber=6B0E42D8859E0B1CDE54157ACB8D7604AD3FF1B3
Validity
Not Before: May 17 02:30:15 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=628308b6-c4f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ec:ee:cd:ba:49:90:78:ed:59:10:6b:2f:70:
0e:56:f9:ef:ae:1c:86:a0:aa:03:4b:40:8c:52:ac:
ea:7d:67:90:bf:e3:7a:53:47:c0:9b:17:64:27:db:
ef:97:0d:63:c1:fd:a6:4a:d5:81:82:88:41:02:1f:
83:93:a1:04:5d:64:f6:18:b6:c0:08:a1:30:ea:97:
33:4d:75:f2:2c:53:fb:fd:e8:61:72:c5:f6:5d:da:
4f:8d:8d:95:9f:ce:8b:e8:c2:e8:62:f1:4b:f6:8d:
f6:9f:d0:ba:65:a8:d1:6f:d0:41:a5:83:23:ff:ee:
b1:94:6e:d4:38:10:05:e7:44:ce:52:a4:c5:0f:a7:
5e:34:67:12:25:90:86:d6:dd:1b:fe:ea:c7:af:59:
61:2d:9a:79:ab:0c:08:3f:57:89:a6:0f:26:d7:07:
5e:2f:21:8f:5c:2c:45:65:c0:43:2d:30:d1:dc:99:
05:30:a7:ce:02:7f:3b:d8:50:d6:3b:d4:a1:cc:42:
cc:1d:b5:a2:8d:da:d9:18:98:5b:0d:20:64:bd:f0:
60:0a:28:01:05:d4:41:17:ec:4a:64:72:b9:b9:5d:
55:d9:cd:07:9e:e4:3d:1c:d8:9f:d2:cd:92:bd:86:
e3:5c:71:d0:77:03:85:21:ef:08:ef:24:4a:41:4e:
b2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EE:75:EF:E1:AD:5F:9D:10:F4:5B:00:07:D3:90:F2:0D:96:A0:93
X509v3 Authority Key Identifier:
keyid:6B:0E:42:D8:85:9E:0B:1C:DE:54:15:7A:CB:8D:76:04:AD:3F:F1:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/aw5C2IWeCxzeVBV6y412BK0_8bM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aw5C2IWeCxzeVBV6y412BK0_8bM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153457/4C1A034C1D7B11E2BE3DA6C808B02CD2/48318D88D58911EC909EE44AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
182.30.0.0/16
202.155.0.0-202.155.159.255
IPv6:
2001:e00::/31
Signature Algorithm: sha256WithRSAEncryption
35:b2:38:02:13:98:22:46:96:62:fb:ce:7a:db:04:1b:b8:6c:
76:4d:b2:6c:1a:56:18:c8:d3:c7:c7:5f:bf:f6:c6:9a:bf:90:
ae:ac:bb:c6:63:8b:fc:9d:3a:79:30:a3:3f:f1:38:d4:21:35:
a5:9d:19:9d:d1:ee:65:45:ed:70:65:9e:44:df:dc:4b:f5:7e:
d3:48:2a:74:29:1c:f9:c9:47:d0:86:d1:33:fd:17:72:ca:f8:
57:6e:2d:cf:4d:98:60:88:f9:4b:e2:eb:0c:94:48:8f:d8:7c:
c9:98:19:8d:5e:76:2e:6d:46:a1:c1:d2:b7:4a:cf:49:4c:df:
4a:ad:d9:69:72:8b:01:b8:21:fb:13:22:e9:10:bf:9d:4e:51:
a1:e8:34:9b:23:89:a8:a5:59:c2:6c:16:b6:bd:4b:8c:85:b6:
e6:90:1c:5b:40:5b:24:c4:de:78:e2:6d:ed:1e:ed:54:d6:c8:
a5:8e:39:6b:2d:17:66:32:51:fc:af:aa:3c:f9:80:df:1e:60:
9c:52:dc:72:37:a8:c4:0f:77:99:57:bd:70:d6:3b:ab:5c:0a:
a8:4a:77:80:0a:e1:ad:c4:5a:c1:af:c8:eb:82:d7:2f:2f:d6:
08:4b:d1:64:8a:b2:f2:54:75:61:89:dd:96:da:cc:fc:0f:0b:
4d:46:d9:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:41 2023 by rpki-client on console-fra.rpki-client.org