Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/7C9F006E869B11EDBD10C90DC4F9AE02.roa
File: 7C9F006E869B11EDBD10C90DC4F9AE02.roa (raw, json)
Hash identifier: xf2pMMkSwibVuIFXAj1r3rQueJk1CG6ru+xq/Fg7hjo=
Subject key identifier: CC:75:F7:84:80:0A:CC:57:C6:6A:F9:5F:F0:98:CD:54:30:48:AB:A7
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 1610
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/7C9F006E869B11EDBD10C90DC4F9AE02.roa
Signing time: Wed 28 Dec 2022 10:36:29 +0000
ROA not before: Wed 28 Dec 2022 10:36:29 +0000
ROA not after: Mon 01 May 2023 00:00:00 +0000
asID: 4826
IP address blocks: 14.137.106.0/24 maxlen: 24
27.106.192.0/21 maxlen: 21
27.106.200.0/22 maxlen: 22
43.241.188.0/22 maxlen: 22
43.252.252.0/22 maxlen: 22
49.255.0.0/16 maxlen: 16
49.255.233.0/24 maxlen: 24
49.255.249.0/24 maxlen: 24
49.255.255.0/24 maxlen: 24
103.37.120.0/24 maxlen: 24
103.233.148.0/22 maxlen: 22
103.255.16.0/22 maxlen: 22
110.5.116.0/22 maxlen: 22
112.213.224.0/19 maxlen: 19
113.29.240.0/22 maxlen: 22
113.29.243.0/24 maxlen: 24
114.31.192.0/20 maxlen: 20
116.212.192.0/18 maxlen: 18
116.212.204.0/24 maxlen: 24
116.212.230.0/23 maxlen: 24
116.212.253.0/24 maxlen: 24
119.161.83.0/24 maxlen: 24
119.161.84.0/24 maxlen: 24
119.161.86.0/23 maxlen: 23
119.161.90.0/24 maxlen: 24
119.161.91.0/24 maxlen: 24
119.161.92.0/24 maxlen: 24
119.161.93.0/24 maxlen: 24
119.161.94.0/24 maxlen: 24
119.161.95.0/24 maxlen: 24
121.54.128.0/19 maxlen: 19
121.54.128.0/20 maxlen: 20
121.54.136.0/24 maxlen: 24
121.54.145.0/24 maxlen: 24
121.79.0.0/17 maxlen: 17
123.103.192.0/19 maxlen: 19
124.243.130.0/24 maxlen: 24
124.243.131.0/24 maxlen: 24
124.243.132.0/22 maxlen: 22
124.243.136.0/22 maxlen: 22
124.243.140.0/24 maxlen: 24
124.243.141.0/24 maxlen: 24
124.243.142.0/24 maxlen: 24
124.243.143.0/24 maxlen: 24
124.243.144.0/21 maxlen: 21
124.243.152.0/21 maxlen: 21
124.243.164.0/22 maxlen: 22
124.243.168.0/21 maxlen: 21
124.243.176.0/21 maxlen: 21
124.243.184.0/21 maxlen: 21
124.254.64.0/18 maxlen: 18
124.254.64.0/24 maxlen: 24
124.254.95.0/24 maxlen: 24
124.254.96.0/24 maxlen: 24
175.45.64.0/18 maxlen: 18
175.45.78.0/24 maxlen: 24
175.45.82.0/24 maxlen: 24
175.45.83.0/24 maxlen: 24
175.45.85.0/24 maxlen: 24
175.45.92.0/24 maxlen: 24
175.45.94.0/23 maxlen: 23
175.45.99.0/24 maxlen: 24
175.45.100.0/24 maxlen: 24
175.45.101.0/24 maxlen: 24
175.45.105.0/24 maxlen: 24
175.45.111.0/24 maxlen: 24
175.45.125.0/24 maxlen: 24
180.148.64.0/19 maxlen: 19
180.148.76.0/24 maxlen: 24
180.148.77.0/24 maxlen: 24
180.148.83.0/24 maxlen: 24
180.148.84.0/24 maxlen: 24
180.148.95.0/24 maxlen: 24
202.62.138.0/24 maxlen: 24
202.62.139.0/24 maxlen: 24
202.62.141.0/24 maxlen: 24
202.62.142.0/24 maxlen: 24
202.62.147.0/24 maxlen: 24
202.62.152.0/24 maxlen: 24
202.62.153.0/24 maxlen: 24
202.62.154.0/24 maxlen: 24
202.62.155.0/24 maxlen: 24
202.62.240.0/22 maxlen: 22
202.80.176.0/20 maxlen: 20
202.89.160.0/19 maxlen: 19
202.137.96.0/20 maxlen: 20
202.189.64.0/20 maxlen: 20
202.189.72.0/24 maxlen: 24
202.189.73.0/24 maxlen: 24
203.12.251.0/24 maxlen: 24
203.18.212.0/23 maxlen: 23
203.89.64.0/19 maxlen: 19
203.89.80.0/24 maxlen: 24
203.89.92.0/24 maxlen: 24
203.92.28.0/22 maxlen: 22
203.129.128.0/19 maxlen: 19
203.153.224.0/19 maxlen: 19
203.153.226.0/24 maxlen: 24
203.161.64.0/18 maxlen: 18
203.188.128.0/19 maxlen: 19
210.50.198.0/24 maxlen: 24
211.26.193.0/24 maxlen: 24
223.27.96.0/21 maxlen: 21
2402:7800::/32 maxlen: 32
2402:7800:ff00::/40 maxlen: 40
2402:7800:ff00::/48 maxlen: 48
2402:7800:ff01::/48 maxlen: 48
2402:7800:ff20::/48 maxlen: 48
2402:7800:ff40::/44 maxlen: 44
2402:7800:ffe0::/48 maxlen: 48
2403:d600::/32 maxlen: 32
2403:fc00:300::/40 maxlen: 40
2404:b000::/32 maxlen: 32
2404:bc00::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5648 (0x1610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Validity
Not Before: Dec 28 10:36:29 2022 GMT
Not After : May 1 00:00:00 2023 GMT
Subject: CN=63ac1c2d-050d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:e7:49:57:0e:4b:99:f0:ba:1c:45:bb:83:
b4:e5:d3:b3:91:05:26:61:5d:b4:c4:c1:bc:98:04:
79:fb:f2:5c:9f:07:67:74:75:62:c3:c0:e5:f5:e1:
c1:94:f6:c4:e7:e7:92:ff:c2:e8:ee:8c:45:02:f1:
1f:18:4e:57:4a:5b:27:a0:fc:ac:ac:18:a8:8b:97:
be:f3:d7:e7:e1:cc:ba:2b:ae:ce:1f:d4:be:1d:86:
01:03:b4:74:e5:e6:c0:de:ce:fa:ca:d9:74:06:24:
89:e6:7a:b8:03:e3:01:8f:6d:24:bb:ae:33:f9:cb:
71:f2:0d:20:cc:6e:86:2b:4d:9a:a3:d8:b7:1b:76:
1b:a0:45:43:91:b9:2e:4a:34:e1:0e:2c:16:16:c1:
ba:98:fe:21:b5:02:66:5b:67:f7:ea:fe:ac:51:af:
bd:09:b6:ed:15:3f:57:d3:7f:97:77:d5:e5:ef:e5:
5e:82:83:95:f0:0f:9b:08:84:9b:81:59:6d:37:b8:
bb:86:57:ea:1d:36:67:da:8b:e8:a9:96:cb:cf:41:
7a:a9:7b:6c:9c:52:32:cd:dd:49:3f:09:9f:a6:40:
ab:4b:32:da:4c:6f:72:f0:0e:d2:1f:62:c8:bd:8d:
bf:d8:d5:51:af:7b:5b:6c:25:3e:33:b5:c0:1a:15:
79:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:75:F7:84:80:0A:CC:57:C6:6A:F9:5F:F0:98:CD:54:30:48:AB:A7
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/7C9F006E869B11EDBD10C90DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.137.106.0/24
27.106.192.0-27.106.203.255
43.241.188.0/22
43.252.252.0/22
49.255.0.0/16
103.37.120.0/24
103.233.148.0/22
103.255.16.0/22
110.5.116.0/22
112.213.224.0/19
113.29.240.0/22
114.31.192.0/20
116.212.192.0/18
119.161.83.0-119.161.84.255
119.161.86.0/23
119.161.90.0-119.161.95.255
121.54.128.0/19
121.79.0.0/17
123.103.192.0/19
124.243.130.0-124.243.159.255
124.243.164.0-124.243.191.255
124.254.64.0/18
175.45.64.0/18
180.148.64.0/19
202.62.138.0/23
202.62.141.0-202.62.142.255
202.62.147.0/24
202.62.152.0/22
202.62.240.0/22
202.80.176.0/20
202.89.160.0/19
202.137.96.0/20
202.189.64.0/20
203.12.251.0/24
203.18.212.0/23
203.89.64.0/19
203.92.28.0/22
203.129.128.0/19
203.153.224.0/19
203.161.64.0/18
203.188.128.0/19
210.50.198.0/24
211.26.193.0/24
223.27.96.0/21
IPv6:
2402:7800::/32
2403:d600::/32
2403:fc00:300::/40
2404:b000::/32
2404:bc00::/32
Signature Algorithm: sha256WithRSAEncryption
12:a2:fc:b5:13:f1:65:bf:72:34:91:51:5e:77:dd:6f:cf:1b:
0c:11:b3:50:17:97:c4:9e:30:a6:72:17:69:55:10:97:9c:52:
5c:16:11:b7:ec:0b:b3:9c:3c:32:87:ec:29:61:05:d6:18:5f:
f2:60:b5:fb:fe:43:09:2c:61:fb:ec:11:4d:f7:82:7e:8b:38:
57:29:a6:cd:5e:a4:33:16:d4:b7:ba:b3:11:46:54:75:2d:be:
1e:74:79:d9:40:48:97:9f:37:27:cd:27:f9:14:cd:e5:83:f0:
14:45:6c:af:b1:b8:c2:82:b5:82:f7:ce:fc:3d:bb:2c:fc:53:
d2:47:7b:10:ba:bd:8d:8e:8d:f6:b5:ce:2f:b8:12:42:03:21:
b9:a0:5d:69:3f:3e:22:47:60:ba:f8:0f:c1:27:b4:00:dd:5b:
04:0e:cd:89:cb:bc:ce:2e:ce:20:65:48:55:d5:31:0d:f2:9d:
94:4e:e1:fd:24:85:a4:3b:18:4b:96:53:f4:33:80:68:50:9d:
ee:8a:0b:f7:cd:2a:b2:89:32:7a:d3:54:33:57:23:46:06:b3:
31:c4:82:14:68:0c:5b:8a:a8:98:98:15:5a:a1:e5:a0:87:e6:
79:fd:8d:93:15:fe:a4:90:22:dc:29:d0:77:b9:b1:cf:2a:ff:
75:8c:2a:04
-----BEGIN CERTIFICATE-----
MIIG2DCCBcCgAwIBAgICFhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE
NDc2Q0JEMDAwHhcNMjIxMjI4MTAzNjI5WhcNMjMwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02M2FjMWMyZC0wNTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyC7nSVcOS5nwuhxFu4O05dOzkQUmYV20xMG8mAR5+/JcnwdndHViw8Dl9eHB
lPbE5+eS/8Lo7oxFAvEfGE5XSlsnoPysrBioi5e+89fn4cy6K67OH9S+HYYBA7R0
5ebA3s76ytl0BiSJ5nq4A+MBj20ku64z+ctx8g0gzG6GK02ao9i3G3YboEVDkbku
SjThDiwWFsG6mP4htQJmW2f36v6sUa+9CbbtFT9X03+Xd9Xl7+VegoOV8A+bCISb
gVltN7i7hlfqHTZn2ovoqZbLz0F6qXtsnFIyzd1JPwmfpkCrSzLaTG9y8A7SH2LI
vY2/2NVRr3tbbCU+M7XAGhV5wQIDAQABo4ID/DCCA/gwHQYDVR0OBBYEFMx194SA
CsxXxmr5X/CYzVQwSKunMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1
REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2
UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvN0M5RjAwNkU4
NjlCMTFFREJEMTBDOTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggGEBggrBgEFBQcBBwEB
/wSCAXMwggFvMIIBPwQCAAEwggE3AwQADolqMAwDBAYbasADBAIbasgDBAIr8bwD
BAIr/PwDAwAx/wMEAGcleAMEAmfplAMEAmf/EAMEAm4FdAMEBXDV4AMEAnEd8AME
BHIfwAMEBnTUwDAMAwQAd6FTAwQAd6FUAwQBd6FWMAwDBAF3oVoDBAV3oUADBAV5
NoADBAd5TwADBAV7Z8AwDAMEAXzzggMEBXzzgDAMAwQCfPOkAwQGfPOAAwQGfP5A
AwQGry1AAwQFtJRAAwQByj6KMAwDBADKPo0DBADKPo4DBADKPpMDBALKPpgDBALK
PvADBATKULADBAXKWaADBATKiWADBATKvUADBADLDPsDBAHLEtQDBAXLWUADBALL
XBwDBAXLgYADBAXLmeADBAbLoUADBAXLvIADBADSMsYDBADTGsEDBAPfG2AwKgQC
AAIwJAMFACQCeAADBQAkA9YAAwYAJAP8AAMDBQAkBLAAAwUAJAS8ADANBgkqhkiG
9w0BAQsFAAOCAQEAEqL8tRPxZb9yNJFRXnfdb88bDBGzUBeXxJ4wpnIXaVUQl5xS
XBYRt+wLs5w8MofsKWEF1hhf8mC1+/5DCSxh++wRTfeCfos4VymmzV6kMxbUt7qz
EUZUdS2+HnR52UBIl583J80n+RTN5YPwFEVsr7G4woK1gvfO/D27LPxT0kd7ELq9
jY6N9rXOL7gSQgMhuaBdaT8+IkdguvgPwSe0AN1bBA7Nicu8zi7OIGVIVdUxDfKd
lE7h/SSFpDsYS5ZT9DOAaFCd7ooL980qsokyetNUM1cjRgazMcSCFGgMW4qomJgV
WqHloIfmef2NkxX+pJAi3CnQd7mxzyr/dYwqBA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:13 2023 by rpki-client on console-fra.rpki-client.org