Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/A78B0B22C8B811EF940EBA34C4F9AE02.roa
File: A78B0B22C8B811EF940EBA34C4F9AE02.roa (raw, json)
Hash identifier: 2U15wl3rVj9QPQ4k8QlyxoVJ5zXEVFrUNBhmmg5kiKQ=
Subject key identifier: B3:F7:06:48:48:36:A0:01:67:39:F8:83:19:D9:22:4E:3B:7F:32:EE
Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Certificate serial: 07B7
Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/A78B0B22C8B811EF940EBA34C4F9AE02.roa
Signing time: Thu 02 Jan 2025 03:21:28 +0000
ROA not before: Thu 02 Jan 2025 03:21:28 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 9723
IP address blocks: 1.178.0.0/20 maxlen: 24
1.178.64.0/20 maxlen: 24
1.178.80.0/20 maxlen: 24
1.178.96.0/20 maxlen: 24
1.178.144.0/20 maxlen: 20
1.178.144.0/21 maxlen: 24
1.178.160.0/20 maxlen: 24
1.178.176.0/20 maxlen: 24
1.178.192.0/20 maxlen: 20
1.178.192.0/21 maxlen: 24
1.179.0.0/20 maxlen: 24
1.179.16.0/20 maxlen: 24
1.179.32.0/21 maxlen: 21
1.179.48.0/20 maxlen: 24
1.179.64.0/21 maxlen: 21
1.179.80.0/21 maxlen: 21
1.179.96.0/20 maxlen: 24
58.87.0.0/20 maxlen: 20
58.87.0.0/23 maxlen: 23
58.87.2.0/23 maxlen: 23
58.87.6.0/23 maxlen: 23
58.87.8.0/23 maxlen: 23
58.87.10.0/23 maxlen: 23
58.87.12.0/23 maxlen: 23
58.87.14.0/24 maxlen: 24
58.87.15.0/24 maxlen: 24
110.238.2.0/23 maxlen: 23
110.238.4.0/22 maxlen: 22
110.238.4.0/23 maxlen: 23
110.238.6.0/23 maxlen: 23
110.238.8.0/23 maxlen: 23
110.238.10.0/23 maxlen: 23
110.238.12.0/23 maxlen: 23
110.238.14.0/23 maxlen: 23
110.238.16.0/20 maxlen: 20
110.238.16.0/24 maxlen: 24
110.238.18.0/24 maxlen: 24
110.238.21.0/24 maxlen: 24
110.238.24.0/24 maxlen: 24
110.238.25.0/24 maxlen: 24
110.238.128.0/20 maxlen: 20
110.238.128.0/21 maxlen: 24
110.238.144.0/20 maxlen: 20
110.238.144.0/22 maxlen: 24
110.238.152.0/21 maxlen: 21
110.238.224.0/20 maxlen: 20
110.238.224.0/21 maxlen: 24
110.238.240.0/20 maxlen: 20
110.238.240.0/23 maxlen: 24
110.239.0.0/20 maxlen: 20
110.239.16.0/20 maxlen: 20
110.239.32.0/20 maxlen: 20
110.239.32.0/22 maxlen: 24
110.239.128.0/20 maxlen: 20
110.239.128.0/21 maxlen: 21
110.239.144.0/20 maxlen: 20
110.239.176.0/21 maxlen: 21
110.239.176.0/24 maxlen: 24
110.239.178.0/24 maxlen: 24
110.239.224.0/20 maxlen: 20
110.239.240.0/20 maxlen: 20
119.12.0.0/20 maxlen: 20
119.12.80.0/20 maxlen: 20
119.12.80.0/21 maxlen: 24
119.12.96.0/21 maxlen: 21
119.12.112.0/20 maxlen: 20
119.12.112.0/21 maxlen: 24
119.12.144.0/21 maxlen: 24
119.13.0.0/23 maxlen: 23
119.13.2.0/24 maxlen: 24
119.13.3.0/24 maxlen: 24
119.13.4.0/23 maxlen: 23
119.13.6.0/23 maxlen: 23
119.13.8.0/23 maxlen: 23
119.13.10.0/24 maxlen: 24
119.13.16.0/21 maxlen: 24
119.13.48.0/21 maxlen: 21
119.13.48.0/24 maxlen: 24
119.13.49.0/24 maxlen: 24
119.13.128.0/20 maxlen: 20
119.13.144.0/21 maxlen: 24
119.13.176.0/21 maxlen: 23
119.13.176.0/23 maxlen: 24
119.13.178.0/24 maxlen: 24
119.13.180.0/22 maxlen: 24
119.13.240.0/21 maxlen: 24
121.91.16.0/20 maxlen: 20
121.91.96.0/21 maxlen: 24
121.91.112.0/20 maxlen: 20
121.91.128.0/21 maxlen: 24
121.91.144.0/21 maxlen: 21
121.91.160.0/21 maxlen: 21
121.91.192.0/21 maxlen: 24
123.200.128.0/20 maxlen: 20
123.200.133.0/24 maxlen: 24
123.200.136.0/22 maxlen: 22
123.200.140.0/22 maxlen: 22
123.200.144.0/22 maxlen: 22
123.200.148.0/22 maxlen: 22
123.200.152.0/21 maxlen: 21
123.200.160.0/23 maxlen: 23
123.200.162.0/23 maxlen: 23
123.200.164.0/23 maxlen: 23
123.200.165.0/24 maxlen: 24
123.200.166.0/23 maxlen: 23
123.200.168.0/23 maxlen: 23
123.200.170.0/23 maxlen: 23
123.200.172.0/24 maxlen: 24
123.200.174.0/24 maxlen: 24
123.200.175.0/24 maxlen: 24
123.200.176.0/23 maxlen: 23
123.200.179.0/24 maxlen: 24
123.200.180.0/23 maxlen: 23
123.200.182.0/23 maxlen: 23
123.200.184.0/22 maxlen: 22
123.200.187.0/24 maxlen: 24
123.200.188.0/23 maxlen: 23
123.200.192.0/21 maxlen: 21
123.200.200.0/21 maxlen: 24
123.200.208.0/21 maxlen: 21
123.200.216.0/21 maxlen: 21
123.200.224.0/21 maxlen: 21
123.200.240.0/21 maxlen: 24
202.83.64.0/19 maxlen: 19
202.83.64.0/22 maxlen: 22
202.83.68.0/23 maxlen: 23
202.83.70.0/23 maxlen: 23
202.83.72.0/24 maxlen: 24
202.83.73.0/24 maxlen: 24
202.83.74.0/23 maxlen: 23
202.83.76.0/22 maxlen: 22
202.83.80.0/23 maxlen: 23
202.83.82.0/24 maxlen: 24
202.83.83.0/24 maxlen: 24
202.83.84.0/22 maxlen: 22
202.83.88.0/23 maxlen: 23
202.83.90.0/23 maxlen: 23
202.83.92.0/23 maxlen: 23
202.83.94.0/24 maxlen: 24
202.83.95.0/24 maxlen: 24
202.183.96.0/20 maxlen: 20
202.183.96.0/24 maxlen: 24
202.183.97.0/24 maxlen: 24
202.183.98.0/24 maxlen: 24
202.183.100.0/23 maxlen: 23
202.183.102.0/23 maxlen: 23
202.183.102.0/24 maxlen: 24
202.183.104.0/22 maxlen: 22
202.183.108.0/24 maxlen: 24
202.183.110.0/24 maxlen: 24
202.183.111.0/24 maxlen: 24
202.183.112.0/20 maxlen: 20
202.183.112.0/23 maxlen: 23
202.183.114.0/23 maxlen: 23
202.183.116.0/23 maxlen: 23
202.183.118.0/24 maxlen: 24
202.183.119.0/24 maxlen: 24
202.183.120.0/22 maxlen: 22
202.183.124.0/23 maxlen: 23
202.183.126.0/24 maxlen: 24
202.183.127.0/24 maxlen: 24
210.56.64.0/20 maxlen: 20
210.56.64.0/22 maxlen: 22
210.56.64.0/24 maxlen: 24
210.56.65.0/24 maxlen: 24
210.56.66.0/24 maxlen: 24
210.56.67.0/24 maxlen: 24
210.56.68.0/23 maxlen: 24
210.56.70.0/23 maxlen: 24
210.56.72.0/23 maxlen: 23
210.56.74.0/23 maxlen: 23
210.56.76.0/23 maxlen: 23
210.56.78.0/23 maxlen: 23
220.157.64.0/24 maxlen: 24
220.157.69.0/24 maxlen: 24
220.157.70.0/24 maxlen: 24
220.157.71.0/24 maxlen: 24
220.157.74.0/23 maxlen: 24
220.157.79.0/24 maxlen: 24
220.157.80.0/23 maxlen: 24
220.157.82.0/23 maxlen: 24
220.157.84.0/23 maxlen: 24
220.157.86.0/23 maxlen: 24
220.157.88.0/23 maxlen: 23
220.157.90.0/24 maxlen: 24
220.157.91.0/24 maxlen: 24
220.157.92.0/24 maxlen: 24
220.157.93.0/24 maxlen: 24
220.157.94.0/24 maxlen: 24
220.157.95.0/24 maxlen: 24
2407:6800::/32 maxlen: 32
2407:6800:0:200::/56 maxlen: 56
2407:6800:0:300::/56 maxlen: 56
2407:6800:0:400::/56 maxlen: 56
2407:6800:0:500::/56 maxlen: 56
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1975 (0x7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB4FE
Validity
Not Before: Jan 2 03:21:28 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67760638-515c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4a:ba:01:63:ac:8c:d2:c9:fa:d1:a3:eb:79:
44:23:26:a5:b0:02:2e:1b:08:4a:cc:cc:63:59:31:
bf:3c:3a:99:e7:0b:f2:0b:19:ea:fc:2e:76:a8:7b:
f1:58:4a:46:1f:e7:f0:7b:03:3a:c2:38:a1:54:a5:
5f:ec:ea:f6:ba:a3:fb:34:5b:ef:af:ce:db:fe:79:
64:02:56:d6:1e:d3:fe:1b:03:20:17:0c:13:e6:3e:
56:51:9c:84:86:9b:bc:38:3a:16:e8:60:fc:42:8a:
d9:b0:94:b0:12:f3:1a:cc:3f:4e:dc:d8:bb:10:0d:
30:da:5f:ec:c2:26:1c:c8:d3:11:db:fd:fe:8e:c2:
e5:49:26:69:68:00:77:7e:11:e9:81:0c:5a:d9:e6:
d2:a6:bd:ad:8b:22:f5:25:b9:cc:06:cc:68:18:4d:
7c:cc:76:b1:13:8d:7a:a9:95:87:91:d6:7a:31:f3:
7b:1b:b8:c5:8f:ad:11:1f:27:31:e1:7d:4f:f7:f5:
54:3d:00:89:a8:e8:0e:fc:0d:2b:a4:c2:68:b9:cb:
7f:12:96:75:10:b6:95:5f:b7:20:a3:5f:6e:13:ef:
8a:a3:45:95:bd:bc:d7:07:db:21:3b:b6:8e:26:26:
55:7b:2a:0e:ad:2b:27:38:7c:49:9d:cc:55:a4:8b:
4e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F7:06:48:48:36:A0:01:67:39:F8:83:19:D9:22:4E:3B:7F:32:EE
X509v3 Authority Key Identifier:
keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/A78B0B22C8B811EF940EBA34C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/20
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/20
110.238.2.0-110.238.31.255
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/21
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0/20
119.12.144.0/21
119.13.0.0-119.13.10.255
119.13.16.0/21
119.13.48.0/21
119.13.128.0-119.13.151.255
119.13.176.0/21
119.13.240.0/21
121.91.16.0/20
121.91.96.0/21
121.91.112.0-121.91.135.255
121.91.144.0/21
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.172.255
123.200.174.0-123.200.177.255
123.200.179.0-123.200.189.255
123.200.192.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/24
220.157.69.0-220.157.71.255
220.157.74.0/23
220.157.79.0-220.157.95.255
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
58:5e:bb:06:22:2f:c9:2c:6e:ac:ee:92:cb:0e:03:87:f4:d6:
cd:0e:b4:9a:3c:ef:37:65:5d:68:ab:a2:ad:e1:d8:3b:ff:c1:
82:4d:03:a9:11:6c:96:b5:51:17:9b:29:13:a5:75:73:bf:80:
c9:af:bf:9d:cd:a1:52:b3:8b:77:61:b8:3e:82:52:4b:f5:72:
bd:0c:d9:10:62:9d:58:2c:ad:78:a2:41:d1:bb:4a:7c:7e:de:
d4:c1:38:f3:70:a7:aa:41:2b:e5:d2:19:39:f8:4e:4b:4e:2b:
ea:44:6b:c7:10:ac:d5:1e:26:b4:d6:1b:91:1b:20:37:5b:dc:
00:d0:4e:09:4e:a4:d4:44:64:6d:1c:24:76:47:cd:c3:79:69:
f6:ce:c5:00:40:e9:c0:a1:66:49:72:fc:7a:3a:12:34:1e:86:
06:57:18:3c:ba:32:15:3f:a0:0c:7b:dc:a4:d0:fe:82:ed:2b:
91:c2:cf:96:50:5c:6d:d4:05:74:87:04:8f:b0:9d:2a:33:28:
8f:27:55:a3:6c:38:c8:42:6e:85:b3:2a:e4:a6:3b:89:6e:fd:
f5:ee:3b:20:3e:1b:1a:af:7f:cb:79:e1:33:f9:b6:fe:38:64:
e5:fd:57:0e:39:eb:78:65:5f:d6:5b:9c:e0:80:72:2c:16:82:
7d:de:8d:c3
-----BEGIN CERTIFICATE-----
MIIG/jCCBeagAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy
NDE3ODMxNzkwHhcNMjUwMTAyMDMyMTI4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzc2MDYzOC01MTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3Eq6AWOsjNLJ+tGj63lEIyalsAIuGwhKzMxjWTG/PDqZ5wvyCxnq/C52qHvx
WEpGH+fwewM6wjihVKVf7Or2uqP7NFvvr87b/nlkAlbWHtP+GwMgFwwT5j5WUZyE
hpu8ODoW6GD8QorZsJSwEvMazD9O3Ni7EA0w2l/swiYcyNMR2/3+jsLlSSZpaAB3
fhHpgQxa2ebSpr2tiyL1JbnMBsxoGE18zHaxE416qZWHkdZ6MfN7G7jFj60RHycx
4X1P9/VUPQCJqOgO/A0rpMJouct/EpZ1ELaVX7cgo19uE++Ko0WVvbzXB9shO7aO
JiZVeyoOrSsnOHxJncxVpItOhwIDAQABo4IEIjCCBB4wHQYDVR0OBBYEFLP3BkhI
NqABZzn4gxnZIk47fzLuMB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1
RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN
WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvQTc4QjBCMjJD
OEI4MTFFRjk0MEVCQTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggGqBggrBgEFBQcBBwEB
/wSCAZkwggGVMIIBggQCAAEwggF6AwQEAbIAMAwDBAYBskADBAQBsmAwDAMEBAGy
kAMEBAGywDALAwMAAbMDBAMBsyAwDAMEBAGzMAMEAwGzQAMEAwGzUAMEBAGzYAME
BDpXADAMAwQBbu4CAwQFbu4AAwQFbu6AMAwDBAVu7uADBARu7yADBAVu74ADBANu
77ADBAVu7+ADBAR3DAAwDAMEBHcMUAMEA3cMYAMEBHcMcAMEA3cMkDALAwMAdw0D
BAB3DQoDBAN3DRADBAN3DTAwDAMEB3cNgAMEA3cNkAMEA3cNsAMEA3cN8AMEBHlb
EAMEA3lbYDAMAwQEeVtwAwQDeVuAAwQDeVuQAwQDeVugAwQDeVvAMAwDBAd7yIAD
BAB7yKwwDAMEAXvIrgMEAXvIsDAMAwQAe8izAwQBe8i8MAwDBAZ7yMADBAN7yOAD
BAN7yPADBAXKU0ADBAXKt2ADBATSOEADBADcnUAwDAMEANydRQMEA9ydQAMEAdyd
SjAMAwQA3J1PAwQF3J1AMA0EAgACMAcDBQAkB2gAMA0GCSqGSIb3DQEBCwUAA4IB
AQBYXrsGIi/JLG6s7pLLDgOH9NbNDrSaPO83ZV1oq6Kt4dg7/8GCTQOpEWyWtVEX
mykTpXVzv4DJr7+dzaFSs4t3Ybg+glJL9XK9DNkQYp1YLK14okHRu0p8ft7UwTjz
cKeqQSvl0hk5+E5LTivqRGvHEKzVHia01huRGyA3W9wA0E4JTqTURGRtHCR2R83D
eWn2zsUAQOnAoWZJcvx6OhI0HoYGVxg8ujIVP6AMe9yk0P6C7SuRws+WUFxt1AV0
hwSPsJ0qMyiPJ1WjbDjIQm6FsyrkpjuJbv317jsgPhsar3/LeeEz+bb+OGTl/VcO
Oet4ZV/WW5zggHIsFoJ93o3D
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:11:23 2025 by rpki-client