Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/031BA2F48B8811EE9301BB44C4F9AE02.roa
File: 031BA2F48B8811EE9301BB44C4F9AE02.roa (raw, json)
Hash identifier: p+tg05oGmjZWynPt1qCQW3uZMAb2mAWmK1PfImQjgKY=
Subject key identifier: 65:C3:D2:7A:27:72:67:78:47:5C:D3:EA:3B:C8:7D:85:C0:07:15:37
Certificate issuer: /CN=A91AB6EB/serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A
Certificate serial: 0982
Authority key identifier: FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/031BA2F48B8811EE9301BB44C4F9AE02.roa
Signing time: Sat 25 Nov 2023 11:44:38 +0000
ROA not before: Sat 25 Nov 2023 11:44:38 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 55714
IP address blocks: 27.255.0.0/18 maxlen: 18
27.255.0.0/24 maxlen: 24
27.255.1.0/24 maxlen: 24
27.255.2.0/24 maxlen: 24
27.255.3.0/24 maxlen: 24
27.255.4.0/24 maxlen: 24
27.255.5.0/24 maxlen: 24
27.255.6.0/24 maxlen: 24
27.255.7.0/24 maxlen: 24
27.255.8.0/24 maxlen: 24
27.255.9.0/24 maxlen: 24
27.255.10.0/24 maxlen: 24
27.255.11.0/24 maxlen: 24
27.255.12.0/24 maxlen: 24
27.255.13.0/24 maxlen: 24
27.255.14.0/24 maxlen: 24
27.255.15.0/24 maxlen: 24
27.255.16.0/24 maxlen: 24
27.255.17.0/24 maxlen: 24
27.255.18.0/24 maxlen: 24
27.255.19.0/24 maxlen: 24
27.255.20.0/24 maxlen: 24
27.255.21.0/24 maxlen: 24
27.255.22.0/24 maxlen: 24
27.255.23.0/24 maxlen: 24
27.255.24.0/24 maxlen: 24
27.255.25.0/24 maxlen: 24
27.255.26.0/24 maxlen: 24
27.255.27.0/24 maxlen: 24
27.255.28.0/24 maxlen: 24
27.255.29.0/24 maxlen: 24
27.255.30.0/24 maxlen: 24
27.255.31.0/24 maxlen: 24
27.255.32.0/24 maxlen: 24
27.255.33.0/24 maxlen: 24
27.255.34.0/24 maxlen: 24
27.255.35.0/24 maxlen: 24
27.255.36.0/24 maxlen: 24
27.255.37.0/24 maxlen: 24
27.255.38.0/24 maxlen: 24
27.255.39.0/24 maxlen: 24
27.255.40.0/24 maxlen: 24
27.255.41.0/24 maxlen: 24
27.255.42.0/24 maxlen: 24
27.255.43.0/24 maxlen: 24
27.255.44.0/24 maxlen: 24
27.255.45.0/24 maxlen: 24
27.255.46.0/24 maxlen: 24
27.255.47.0/24 maxlen: 24
27.255.48.0/24 maxlen: 24
27.255.49.0/24 maxlen: 24
27.255.50.0/24 maxlen: 24
27.255.51.0/24 maxlen: 24
27.255.52.0/24 maxlen: 24
27.255.53.0/24 maxlen: 24
27.255.54.0/24 maxlen: 24
27.255.55.0/24 maxlen: 24
27.255.56.0/24 maxlen: 24
27.255.57.0/24 maxlen: 24
27.255.58.0/24 maxlen: 24
27.255.59.0/24 maxlen: 24
27.255.60.0/24 maxlen: 24
27.255.61.0/24 maxlen: 24
27.255.62.0/24 maxlen: 24
27.255.63.0/24 maxlen: 24
42.201.192.0/24 maxlen: 24
42.201.193.0/24 maxlen: 24
42.201.194.0/24 maxlen: 24
42.201.195.0/24 maxlen: 24
42.201.196.0/24 maxlen: 24
42.201.197.0/24 maxlen: 24
42.201.198.0/24 maxlen: 24
42.201.199.0/24 maxlen: 24
42.201.200.0/24 maxlen: 24
42.201.201.0/24 maxlen: 24
42.201.202.0/24 maxlen: 24
42.201.203.0/24 maxlen: 24
42.201.204.0/24 maxlen: 24
42.201.205.0/24 maxlen: 24
42.201.206.0/24 maxlen: 24
42.201.207.0/24 maxlen: 24
42.201.208.0/24 maxlen: 24
42.201.209.0/24 maxlen: 24
42.201.210.0/24 maxlen: 24
42.201.211.0/24 maxlen: 24
42.201.212.0/24 maxlen: 24
42.201.213.0/24 maxlen: 24
42.201.214.0/24 maxlen: 24
42.201.215.0/24 maxlen: 24
42.201.216.0/24 maxlen: 24
42.201.217.0/24 maxlen: 24
42.201.218.0/24 maxlen: 24
42.201.219.0/24 maxlen: 24
42.201.220.0/24 maxlen: 24
42.201.221.0/24 maxlen: 24
42.201.224.0/24 maxlen: 24
42.201.225.0/24 maxlen: 24
42.201.228.0/24 maxlen: 24
42.201.229.0/24 maxlen: 24
42.201.230.0/24 maxlen: 24
42.201.231.0/24 maxlen: 24
42.201.232.0/24 maxlen: 24
42.201.233.0/24 maxlen: 24
42.201.234.0/24 maxlen: 24
42.201.235.0/24 maxlen: 24
42.201.236.0/24 maxlen: 24
42.201.237.0/24 maxlen: 24
42.201.238.0/24 maxlen: 24
42.201.239.0/24 maxlen: 24
42.201.240.0/24 maxlen: 24
42.201.241.0/24 maxlen: 24
42.201.242.0/24 maxlen: 24
42.201.243.0/24 maxlen: 24
42.201.248.0/24 maxlen: 24
42.201.249.0/24 maxlen: 24
42.201.250.0/24 maxlen: 24
42.201.251.0/24 maxlen: 24
42.201.252.0/24 maxlen: 24
42.201.253.0/24 maxlen: 24
42.201.254.0/24 maxlen: 24
42.201.255.0/24 maxlen: 24
103.17.200.0/22 maxlen: 22
103.17.200.0/24 maxlen: 24
103.17.201.0/24 maxlen: 24
103.17.202.0/24 maxlen: 24
103.17.203.0/24 maxlen: 24
110.34.32.0/24 maxlen: 24
110.34.33.0/24 maxlen: 24
110.34.34.0/24 maxlen: 24
110.34.35.0/24 maxlen: 24
110.34.36.0/24 maxlen: 24
110.34.37.0/24 maxlen: 24
110.34.38.0/24 maxlen: 24
110.34.39.0/24 maxlen: 24
180.92.128.0/24 maxlen: 24
180.92.129.0/24 maxlen: 24
180.92.130.0/24 maxlen: 24
180.92.131.0/24 maxlen: 24
180.92.132.0/24 maxlen: 24
180.92.133.0/24 maxlen: 24
180.92.134.0/24 maxlen: 24
180.92.135.0/24 maxlen: 24
180.92.136.0/24 maxlen: 24
180.92.137.0/24 maxlen: 24
180.92.138.0/24 maxlen: 24
180.92.139.0/24 maxlen: 24
180.92.140.0/24 maxlen: 24
180.92.141.0/24 maxlen: 24
180.92.142.0/24 maxlen: 24
180.92.143.0/24 maxlen: 24
180.92.144.0/24 maxlen: 24
180.92.145.0/24 maxlen: 24
180.92.146.0/24 maxlen: 24
180.92.147.0/24 maxlen: 24
180.92.148.0/24 maxlen: 24
180.92.149.0/24 maxlen: 24
180.92.150.0/24 maxlen: 24
180.92.151.0/24 maxlen: 24
180.92.152.0/24 maxlen: 24
180.92.153.0/24 maxlen: 24
180.92.154.0/24 maxlen: 24
180.92.155.0/24 maxlen: 24
180.92.156.0/24 maxlen: 24
180.92.157.0/24 maxlen: 24
180.92.158.0/24 maxlen: 24
180.92.159.0/24 maxlen: 24
192.135.90.0/24 maxlen: 24
192.135.91.0/24 maxlen: 24
192.144.78.0/24 maxlen: 24
192.144.79.0/24 maxlen: 24
2406:f500::/32 maxlen: 32
2406:f500::/36 maxlen: 36
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2434 (0x982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB6EB/serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A
Validity
Not Before: Nov 25 11:44:38 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=6561de26-77c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8f:20:45:c5:ca:ac:eb:bb:c7:2a:d4:76:e6:
82:76:dd:93:ff:ab:ec:2d:af:54:6c:19:3a:29:31:
a9:32:01:51:9b:f0:0e:b7:f2:02:ad:28:3b:e8:6b:
38:af:f1:18:66:6b:92:f7:16:cd:92:3b:fc:6a:ef:
a0:33:37:aa:a2:03:fd:14:f4:7a:8c:0a:0c:16:5b:
6f:59:b8:c6:a2:02:80:02:a5:6b:44:60:50:5f:46:
b5:5f:32:08:bd:8a:99:e7:fd:ed:24:61:e3:e1:b2:
29:ee:bc:58:cf:58:f4:1b:2a:94:bd:c7:08:40:87:
c7:92:54:98:5e:4c:6a:14:88:1b:8c:6f:66:b8:09:
ef:f9:a7:e0:c5:dc:25:4e:30:c2:32:0a:ad:46:38:
19:ae:df:27:5a:54:d1:c8:02:08:ec:42:e7:05:7b:
02:1e:35:92:08:d3:f8:4f:30:2d:42:0f:53:29:cd:
82:2b:51:48:bc:fa:62:0f:0e:a9:88:51:cc:a1:9f:
11:ad:e6:6b:c8:b1:12:b4:01:e7:72:7a:5d:54:78:
5b:ff:3a:f9:de:00:ac:fa:19:0c:53:8c:ec:b4:19:
34:d3:a7:00:24:6e:49:34:dd:92:86:5c:24:9d:da:
3a:c8:8d:0a:35:31:17:5c:db:be:58:02:e0:7b:7d:
b8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C3:D2:7A:27:72:67:78:47:5C:D3:EA:3B:C8:7D:85:C0:07:15:37
X509v3 Authority Key Identifier:
keyid:FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/031BA2F48B8811EE9301BB44C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.255.0.0/18
42.201.192.0-42.201.221.255
42.201.224.0/23
42.201.228.0-42.201.243.255
42.201.248.0/21
103.17.200.0/22
110.34.32.0/21
180.92.128.0/19
192.135.90.0/23
192.144.78.0/23
IPv6:
2406:f500::/32
Signature Algorithm: sha256WithRSAEncryption
a4:c1:71:de:4b:86:b2:8f:c3:c0:a3:3f:1a:e0:c2:b1:44:00:
79:97:49:c9:f4:27:65:7a:65:2c:13:56:0d:cb:e7:af:72:57:
95:98:fa:c0:7e:14:1d:01:13:1f:ee:ac:cf:d4:e9:b2:c6:a5:
a2:54:48:8d:26:79:e3:e1:d1:76:05:44:e5:55:ad:b3:8c:08:
07:d2:99:b3:b1:62:f0:c9:51:cb:0f:9f:46:e9:38:f5:1c:84:
3e:50:21:a6:d3:dc:73:31:e8:8f:53:82:44:9c:40:03:98:ce:
9d:ee:38:aa:2f:d1:bf:5f:d4:60:76:4b:72:7c:e6:d6:d3:f3:
e6:97:0b:30:66:3d:48:33:83:60:ea:76:4d:a7:13:9c:fc:ce:
25:d8:e5:12:6c:e2:92:ed:c4:7f:3a:61:8a:df:3b:a5:03:80:
86:91:70:79:b0:fb:f8:f8:9b:77:e0:69:5c:fb:59:02:76:6d:
fd:e5:94:e6:a3:d6:3a:b8:12:7d:96:a6:8f:32:43:33:ee:41:
23:22:46:70:ad:e2:17:ae:ea:c9:34:0d:25:ea:37:39:97:ed:
54:54:24:6a:92:0d:f5:4c:0a:d2:c7:f2:b6:dd:1a:81:56:8a:
0b:b8:d7:fe:f4:8a:89:30:ee:ad:25:e1:9d:f4:31:63:d6:6f:
b1:ff:cc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org