Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/C51940589AC611EEA2AF8862C4F9AE02.roa
File: C51940589AC611EEA2AF8862C4F9AE02.roa (raw, json)
Hash identifier: F8hUFe8BdGNpMCMfqCciB8WV5FLAWA06jlE9zUiGc4Q=
Subject key identifier: A9:D6:CD:12:F3:90:9F:56:22:8D:46:4D:FC:87:CD:8C:E9:14:9F:2F
Certificate issuer: /CN=A91AB6EB/serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A
Certificate serial: 09C5
Authority key identifier: FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/C51940589AC611EEA2AF8862C4F9AE02.roa
Signing time: Sat 02 Mar 2024 21:29:58 +0000
ROA not before: Sat 02 Mar 2024 21:29:58 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 55714
IP address blocks: 27.255.0.0/18 maxlen: 18
27.255.0.0/24 maxlen: 24
27.255.1.0/24 maxlen: 24
27.255.2.0/24 maxlen: 24
27.255.3.0/24 maxlen: 24
27.255.4.0/24 maxlen: 24
27.255.5.0/24 maxlen: 24
27.255.6.0/24 maxlen: 24
27.255.7.0/24 maxlen: 24
27.255.8.0/24 maxlen: 24
27.255.9.0/24 maxlen: 24
27.255.10.0/24 maxlen: 24
27.255.11.0/24 maxlen: 24
27.255.12.0/24 maxlen: 24
27.255.13.0/24 maxlen: 24
27.255.14.0/24 maxlen: 24
27.255.15.0/24 maxlen: 24
27.255.16.0/24 maxlen: 24
27.255.17.0/24 maxlen: 24
27.255.18.0/24 maxlen: 24
27.255.19.0/24 maxlen: 24
27.255.20.0/24 maxlen: 24
27.255.21.0/24 maxlen: 24
27.255.22.0/24 maxlen: 24
27.255.23.0/24 maxlen: 24
27.255.24.0/24 maxlen: 24
27.255.25.0/24 maxlen: 24
27.255.26.0/24 maxlen: 24
27.255.27.0/24 maxlen: 24
27.255.28.0/24 maxlen: 24
27.255.29.0/24 maxlen: 24
27.255.30.0/24 maxlen: 24
27.255.31.0/24 maxlen: 24
27.255.32.0/24 maxlen: 24
27.255.33.0/24 maxlen: 24
27.255.34.0/24 maxlen: 24
27.255.35.0/24 maxlen: 24
27.255.36.0/24 maxlen: 24
27.255.37.0/24 maxlen: 24
27.255.38.0/24 maxlen: 24
27.255.39.0/24 maxlen: 24
27.255.40.0/24 maxlen: 24
27.255.41.0/24 maxlen: 24
27.255.42.0/24 maxlen: 24
27.255.43.0/24 maxlen: 24
27.255.44.0/24 maxlen: 24
27.255.45.0/24 maxlen: 24
27.255.46.0/24 maxlen: 24
27.255.47.0/24 maxlen: 24
27.255.48.0/24 maxlen: 24
27.255.49.0/24 maxlen: 24
27.255.50.0/24 maxlen: 24
27.255.51.0/24 maxlen: 24
27.255.52.0/24 maxlen: 24
27.255.53.0/24 maxlen: 24
27.255.54.0/24 maxlen: 24
27.255.55.0/24 maxlen: 24
27.255.56.0/24 maxlen: 24
27.255.57.0/24 maxlen: 24
27.255.58.0/24 maxlen: 24
27.255.59.0/24 maxlen: 24
27.255.60.0/24 maxlen: 24
27.255.61.0/24 maxlen: 24
27.255.62.0/24 maxlen: 24
27.255.63.0/24 maxlen: 24
103.17.200.0/22 maxlen: 22
103.17.200.0/24 maxlen: 24
103.17.201.0/24 maxlen: 24
103.17.202.0/24 maxlen: 24
103.17.203.0/24 maxlen: 24
110.34.32.0/24 maxlen: 24
110.34.33.0/24 maxlen: 24
110.34.34.0/24 maxlen: 24
110.34.35.0/24 maxlen: 24
110.34.36.0/24 maxlen: 24
110.34.37.0/24 maxlen: 24
110.34.38.0/24 maxlen: 24
110.34.39.0/24 maxlen: 24
180.92.128.0/24 maxlen: 24
180.92.129.0/24 maxlen: 24
180.92.130.0/24 maxlen: 24
180.92.131.0/24 maxlen: 24
180.92.132.0/24 maxlen: 24
180.92.133.0/24 maxlen: 24
180.92.134.0/24 maxlen: 24
180.92.135.0/24 maxlen: 24
180.92.136.0/24 maxlen: 24
180.92.137.0/24 maxlen: 24
180.92.138.0/24 maxlen: 24
180.92.139.0/24 maxlen: 24
180.92.140.0/24 maxlen: 24
180.92.141.0/24 maxlen: 24
180.92.142.0/24 maxlen: 24
180.92.143.0/24 maxlen: 24
180.92.144.0/24 maxlen: 24
180.92.145.0/24 maxlen: 24
180.92.146.0/24 maxlen: 24
180.92.147.0/24 maxlen: 24
180.92.148.0/24 maxlen: 24
180.92.149.0/24 maxlen: 24
180.92.150.0/24 maxlen: 24
180.92.151.0/24 maxlen: 24
180.92.152.0/24 maxlen: 24
180.92.153.0/24 maxlen: 24
180.92.154.0/24 maxlen: 24
180.92.155.0/24 maxlen: 24
180.92.156.0/24 maxlen: 24
180.92.157.0/24 maxlen: 24
180.92.158.0/24 maxlen: 24
180.92.159.0/24 maxlen: 24
192.135.90.0/24 maxlen: 24
192.135.91.0/24 maxlen: 24
192.144.78.0/24 maxlen: 24
192.144.79.0/24 maxlen: 24
2406:f500::/32 maxlen: 32
2406:f500::/36 maxlen: 36
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2501 (0x9c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB6EB/serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A
Validity
Not Before: Mar 2 21:29:58 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=65e39a56-6fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:88:c8:06:f3:d4:26:1e:a6:ff:0b:52:8d:e0:
f6:7e:c0:13:cb:a1:b8:0d:6c:67:82:5a:80:f4:72:
ae:0f:a8:b8:ad:98:fc:2d:72:3b:f9:bc:96:fa:6d:
d0:69:d9:ce:6a:ee:a6:33:98:51:6c:e3:c5:b3:53:
55:06:0f:87:7c:00:d3:67:ea:54:34:d2:47:7c:f7:
df:d2:1b:c0:2d:c7:12:b1:7a:6f:b0:10:e8:8d:6a:
c7:87:56:04:9d:8b:74:14:9b:0b:e9:34:12:20:f0:
3e:44:54:fe:c1:a7:9d:ab:97:d2:e2:da:6a:03:c6:
8c:c8:39:6b:34:08:63:77:b9:96:d0:94:81:1c:34:
cd:89:a3:b4:b8:5f:64:9d:5d:98:db:f5:96:0b:d0:
2d:7d:3b:06:b7:08:51:e9:a3:39:ad:1b:81:27:dd:
82:6a:89:c0:b1:3a:29:ba:a6:43:00:90:18:c4:6c:
6b:da:66:95:fe:1e:86:92:06:84:30:d7:5d:d1:b2:
42:9a:ed:50:30:50:9e:de:34:2e:11:5e:e2:81:33:
e8:9d:e4:cc:bb:7a:d8:0c:10:a7:4a:1c:59:7f:47:
f3:a7:cf:43:58:1b:b8:7e:6c:c2:f8:ea:e2:a7:0b:
7f:12:7f:6a:71:c6:fd:ea:9a:c8:27:70:02:6b:62:
57:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D6:CD:12:F3:90:9F:56:22:8D:46:4D:FC:87:CD:8C:E9:14:9F:2F
X509v3 Authority Key Identifier:
keyid:FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/C51940589AC611EEA2AF8862C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.255.0.0/18
103.17.200.0/22
110.34.32.0/21
180.92.128.0/19
192.135.90.0/23
192.144.78.0/23
IPv6:
2406:f500::/32
Signature Algorithm: sha256WithRSAEncryption
1a:59:39:d0:a6:1e:7f:4c:a4:a7:e4:c1:f8:af:5f:d7:21:7f:
8b:32:7a:6f:54:2c:ef:f5:b7:fe:41:ae:a2:d2:c3:a6:7a:05:
ae:d4:de:8b:d0:78:87:90:5b:6a:88:f1:38:ba:4a:bc:de:6f:
c7:c0:d1:a5:f6:f2:eb:4d:8e:09:6f:5b:01:44:9d:c8:0d:e3:
4a:7e:95:a3:03:af:d8:62:2d:86:44:27:42:98:1a:b5:a5:52:
56:21:c2:48:a4:28:65:88:94:d6:14:c0:f4:66:a8:17:85:26:
9c:5b:cc:d9:3a:ad:fb:b0:e5:c8:5c:2d:a6:bd:db:8f:82:b6:
97:48:05:05:db:79:58:7b:09:21:c1:40:3f:3d:28:c9:64:31:
53:56:39:0f:1c:a5:e4:76:6e:bd:3f:1a:ec:5e:8d:3c:0f:a3:
b6:c7:cd:e8:9e:bd:c7:22:d3:51:90:8d:0c:73:21:0b:41:52:
89:af:0b:53:91:b1:fe:8e:d7:4e:0f:46:26:97:5c:37:46:1c:
70:41:70:7a:df:df:88:4b:33:ce:da:35:26:8f:a8:7e:9c:aa:
37:03:11:f8:38:2e:a2:4a:7b:37:99:32:55:e3:89:ed:c2:d2:
7b:55:8d:37:4f:53:d9:9d:ce:84:50:b5:ee:f6:4f:d3:95:d5:
b8:b2:2d:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org