Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/934645E6DE2F11EFACB01083C4F9AE02.roa
File: 934645E6DE2F11EFACB01083C4F9AE02.roa (raw, json)
Hash identifier: oB3O+NwH+QaJOXAKt7dSF2T/qSM89TfqIGHDHlmLsEA=
Subject key identifier: 0E:95:E1:60:63:88:1B:F4:D4:AD:D6:D3:54:C2:14:D2:F8:EB:E4:3F
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 3759
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/934645E6DE2F11EFACB01083C4F9AE02.roa
Signing time: Wed 29 Jan 2025 10:55:39 +0000
ROA not before: Wed 29 Jan 2025 10:55:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 150382
IP address blocks: 111.88.76.0/24 maxlen: 24
111.88.77.0/24 maxlen: 24
111.88.79.0/24 maxlen: 24
111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.144.0/24 maxlen: 24
111.88.145.0/24 maxlen: 24
111.88.146.0/24 maxlen: 24
111.88.147.0/24 maxlen: 24
111.88.148.0/24 maxlen: 24
111.88.149.0/24 maxlen: 24
111.88.150.0/24 maxlen: 24
111.88.151.0/24 maxlen: 24
111.88.152.0/24 maxlen: 24
111.88.153.0/24 maxlen: 24
111.88.154.0/24 maxlen: 24
111.88.155.0/24 maxlen: 24
111.88.156.0/24 maxlen: 24
111.88.157.0/24 maxlen: 24
111.88.158.0/24 maxlen: 24
111.88.159.0/24 maxlen: 24
111.88.164.0/24 maxlen: 24
111.88.165.0/24 maxlen: 24
111.88.166.0/24 maxlen: 24
111.88.167.0/24 maxlen: 24
111.88.184.0/24 maxlen: 24
111.88.185.0/24 maxlen: 24
111.88.186.0/24 maxlen: 24
111.88.187.0/24 maxlen: 24
111.88.188.0/24 maxlen: 24
111.88.189.0/24 maxlen: 24
111.88.190.0/24 maxlen: 24
111.88.191.0/24 maxlen: 24
111.88.232.0/24 maxlen: 24
111.88.235.0/24 maxlen: 24
111.88.236.0/24 maxlen: 24
111.88.237.0/24 maxlen: 24
111.88.240.0/24 maxlen: 24
111.88.241.0/24 maxlen: 24
111.88.242.0/24 maxlen: 24
111.88.243.0/24 maxlen: 24
111.88.244.0/24 maxlen: 24
111.88.245.0/24 maxlen: 24
111.88.246.0/24 maxlen: 24
111.88.247.0/24 maxlen: 24
111.88.248.0/24 maxlen: 24
111.88.251.0/24 maxlen: 24
111.88.252.0/24 maxlen: 24
111.88.253.0/24 maxlen: 24
111.88.254.0/24 maxlen: 24
115.186.1.0/24 maxlen: 24
115.186.10.0/24 maxlen: 24
115.186.11.0/24 maxlen: 24
115.186.12.0/24 maxlen: 24
115.186.13.0/24 maxlen: 24
115.186.16.0/24 maxlen: 24
115.186.18.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.22.0/24 maxlen: 24
115.186.24.0/24 maxlen: 24
115.186.26.0/24 maxlen: 24
115.186.27.0/24 maxlen: 24
115.186.28.0/24 maxlen: 24
115.186.29.0/24 maxlen: 24
115.186.41.0/24 maxlen: 24
115.186.48.0/24 maxlen: 24
115.186.49.0/24 maxlen: 24
115.186.50.0/24 maxlen: 24
115.186.51.0/24 maxlen: 24
115.186.52.0/24 maxlen: 24
115.186.53.0/24 maxlen: 24
115.186.54.0/24 maxlen: 24
115.186.55.0/24 maxlen: 24
115.186.64.0/24 maxlen: 24
115.186.65.0/24 maxlen: 24
115.186.66.0/24 maxlen: 24
115.186.67.0/24 maxlen: 24
115.186.68.0/24 maxlen: 24
115.186.69.0/24 maxlen: 24
115.186.70.0/24 maxlen: 24
115.186.71.0/24 maxlen: 24
115.186.72.0/24 maxlen: 24
115.186.73.0/24 maxlen: 24
115.186.74.0/24 maxlen: 24
115.186.75.0/24 maxlen: 24
115.186.88.0/24 maxlen: 24
115.186.89.0/24 maxlen: 24
115.186.91.0/24 maxlen: 24
115.186.92.0/24 maxlen: 24
115.186.93.0/24 maxlen: 24
115.186.94.0/24 maxlen: 24
115.186.95.0/24 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/24 maxlen: 24
115.186.122.0/24 maxlen: 24
115.186.123.0/24 maxlen: 24
115.186.124.0/24 maxlen: 24
115.186.125.0/24 maxlen: 24
115.186.127.0/24 maxlen: 24
117.102.10.0/24 maxlen: 24
117.102.11.0/24 maxlen: 24
117.102.13.0/24 maxlen: 24
117.102.14.0/24 maxlen: 24
117.102.15.0/24 maxlen: 24
117.102.20.0/24 maxlen: 24
117.102.21.0/24 maxlen: 24
117.102.22.0/24 maxlen: 24
117.102.23.0/24 maxlen: 24
117.102.27.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
203.81.200.0/24 maxlen: 24
203.81.201.0/24 maxlen: 24
203.81.202.0/24 maxlen: 24
203.81.203.0/24 maxlen: 24
203.81.204.0/24 maxlen: 24
203.81.205.0/24 maxlen: 24
203.81.206.0/24 maxlen: 24
203.81.207.0/24 maxlen: 24
203.81.212.0/24 maxlen: 24
203.81.214.0/24 maxlen: 24
203.81.216.0/24 maxlen: 24
203.81.217.0/24 maxlen: 24
203.81.218.0/24 maxlen: 24
203.81.219.0/24 maxlen: 24
203.81.220.0/24 maxlen: 24
203.81.221.0/24 maxlen: 24
203.81.222.0/24 maxlen: 24
203.81.223.0/24 maxlen: 24
203.81.224.0/24 maxlen: 24
203.81.225.0/24 maxlen: 24
203.81.226.0/24 maxlen: 24
203.81.227.0/24 maxlen: 24
203.81.228.0/24 maxlen: 24
203.81.229.0/24 maxlen: 24
203.81.231.0/24 maxlen: 24
203.81.232.0/24 maxlen: 24
203.81.233.0/24 maxlen: 24
203.81.234.0/24 maxlen: 24
203.81.235.0/24 maxlen: 24
203.81.236.0/24 maxlen: 24
203.81.237.0/24 maxlen: 24
203.81.238.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14169 (0x3759)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: Jan 29 10:55:39 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=679a092b-fc27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bd:bb:5d:68:f1:61:bb:43:d1:78:87:6e:7a:
30:e3:13:33:c9:ed:cc:c4:4e:ac:ea:b9:d2:7a:b8:
29:69:24:a8:85:4d:55:98:14:7b:56:24:25:05:c4:
2f:89:9b:33:8d:c4:72:97:3a:60:89:bf:6d:44:f6:
59:bf:29:ac:07:f6:90:59:7c:fd:17:3d:c4:cb:a5:
5d:d3:60:6d:10:cd:35:a0:44:46:54:30:8f:95:c1:
d2:5b:5c:3f:e7:4e:a6:77:d7:ff:3a:fe:e3:dd:e8:
5b:2b:51:3f:b8:78:82:37:ff:fa:25:ab:83:ee:d3:
cc:55:6e:f0:9c:a1:73:b6:03:d4:ec:b3:d9:52:ef:
1b:ec:db:af:bd:93:f3:5e:38:de:41:65:81:8a:8d:
79:55:0e:40:e8:b5:56:99:29:20:a8:7d:e1:f0:7f:
8e:11:e4:62:01:7d:4a:e6:ee:83:0f:31:e0:18:81:
fd:46:be:f2:3e:87:89:60:a3:2b:18:62:0d:8a:dd:
f6:42:24:17:3d:4e:77:b7:42:1b:ea:f3:f7:48:ac:
d7:23:5f:6a:95:c5:9b:ea:be:6f:ff:80:52:29:fb:
57:04:83:80:b0:38:3b:82:42:7d:e1:bd:49:cd:4d:
00:37:cf:c8:3e:0b:f1:ab:d8:f6:f7:db:b4:3a:f7:
a5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:95:E1:60:63:88:1B:F4:D4:AD:D6:D3:54:C2:14:D2:F8:EB:E4:3F
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/934645E6DE2F11EFACB01083C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.76.0/23
111.88.79.0/24
111.88.138.0/23
111.88.144.0/20
111.88.164.0/22
111.88.184.0/21
111.88.232.0/24
111.88.235.0-111.88.237.255
111.88.240.0-111.88.248.255
111.88.251.0-111.88.254.255
115.186.1.0/24
115.186.10.0-115.186.13.255
115.186.16.0/24
115.186.18.0/23
115.186.22.0/24
115.186.24.0/24
115.186.26.0-115.186.29.255
115.186.41.0/24
115.186.48.0/21
115.186.64.0-115.186.75.255
115.186.88.0/23
115.186.91.0-115.186.95.255
115.186.97.0/24
115.186.99.0-115.186.100.255
115.186.105.0/24
115.186.114.0/24
115.186.116.0/24
115.186.122.0-115.186.125.255
115.186.127.0/24
117.102.10.0/23
117.102.13.0-117.102.15.255
117.102.20.0/22
117.102.27.0/24
117.102.29.0-117.102.31.255
203.81.200.0/21
203.81.212.0/24
203.81.214.0/24
203.81.216.0-203.81.229.255
203.81.231.0-203.81.238.255
Signature Algorithm: sha256WithRSAEncryption
a5:83:6f:8c:3d:d7:d2:5d:8c:05:fb:f5:5e:41:fc:3e:ed:79:
c0:33:a8:70:72:57:63:0e:b9:b0:6b:6a:fc:8f:00:4e:42:b4:
ca:38:d6:fa:f4:7f:d2:0f:6d:a5:94:dc:97:98:29:97:cf:cb:
05:6c:cb:d4:56:c8:22:dd:14:25:16:59:7f:e9:ce:a7:75:17:
11:e9:75:76:05:b7:f3:22:5a:be:f0:fe:cd:ec:4f:25:50:61:
49:5b:f7:b3:dc:21:b8:40:df:5a:51:84:ad:cb:cd:ed:c6:ba:
79:e8:53:dc:fe:71:f8:07:8b:6b:d5:67:2a:13:fe:80:84:d0:
96:c1:7e:3a:7f:b2:ec:60:db:d4:68:d5:73:fc:81:6f:40:b3:
a2:c1:73:19:80:78:31:5c:5f:f3:b2:01:c6:09:a6:50:57:ec:
63:d9:1c:aa:a5:f3:34:9b:17:7a:f6:0c:30:0e:6e:49:02:8c:
a5:66:ea:e9:49:05:53:ed:ef:27:e5:8d:96:0d:7c:55:3c:38:
3d:a4:82:85:6e:75:7d:8c:b7:7f:fc:9b:4e:91:e4:b7:c8:94:
7e:34:0f:8e:0c:8d:d9:9d:dc:49:c8:04:72:11:b2:d6:e0:3f:
b0:5b:fa:80:91:69:84:3e:4e:ac:a2:1a:85:69:e5:c8:75:ea:
a2:43:a7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:29:12 2025 by rpki-client