Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/042C9CAC60F811EF93DE9781C4F9AE02.roa
File: 042C9CAC60F811EF93DE9781C4F9AE02.roa (raw, json)
Hash identifier: 2qtPc+An4lQddOMvkPfA61xuTn6xODjDqAUQQJ55CJQ=
Subject key identifier: 3A:BD:06:18:2E:76:5C:39:4B:4B:8A:5B:1E:EF:1D:47:52:5C:93:F4
Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Certificate serial: 0720
Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/042C9CAC60F811EF93DE9781C4F9AE02.roa
Signing time: Fri 23 Aug 2024 02:33:01 +0000
ROA not before: Fri 23 Aug 2024 02:33:01 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 9723
IP address blocks: 1.178.0.0/20 maxlen: 24
1.178.64.0/20 maxlen: 24
1.178.80.0/20 maxlen: 24
1.178.96.0/20 maxlen: 24
1.178.144.0/20 maxlen: 20
1.178.144.0/21 maxlen: 24
1.178.160.0/20 maxlen: 24
1.178.176.0/20 maxlen: 24
1.178.192.0/20 maxlen: 20
1.178.192.0/21 maxlen: 24
1.179.0.0/20 maxlen: 24
1.179.16.0/20 maxlen: 24
1.179.32.0/21 maxlen: 21
1.179.48.0/20 maxlen: 24
1.179.64.0/21 maxlen: 21
1.179.80.0/21 maxlen: 21
1.179.96.0/20 maxlen: 24
58.87.0.0/20 maxlen: 20
58.87.0.0/23 maxlen: 23
58.87.2.0/23 maxlen: 23
58.87.6.0/23 maxlen: 23
58.87.8.0/23 maxlen: 23
58.87.10.0/23 maxlen: 23
58.87.12.0/23 maxlen: 23
58.87.14.0/24 maxlen: 24
58.87.15.0/24 maxlen: 24
110.238.2.0/23 maxlen: 23
110.238.4.0/22 maxlen: 22
110.238.4.0/23 maxlen: 23
110.238.6.0/23 maxlen: 23
110.238.8.0/23 maxlen: 23
110.238.10.0/23 maxlen: 23
110.238.12.0/23 maxlen: 23
110.238.14.0/23 maxlen: 23
110.238.16.0/20 maxlen: 20
110.238.16.0/24 maxlen: 24
110.238.18.0/24 maxlen: 24
110.238.21.0/24 maxlen: 24
110.238.24.0/24 maxlen: 24
110.238.25.0/24 maxlen: 24
110.238.128.0/20 maxlen: 20
110.238.128.0/21 maxlen: 24
110.238.144.0/20 maxlen: 20
110.238.144.0/22 maxlen: 22
110.238.152.0/21 maxlen: 21
110.238.224.0/20 maxlen: 20
110.238.224.0/21 maxlen: 24
110.238.240.0/20 maxlen: 20
110.238.240.0/21 maxlen: 24
110.239.0.0/20 maxlen: 20
110.239.16.0/20 maxlen: 20
110.239.32.0/20 maxlen: 20
110.239.32.0/21 maxlen: 24
110.239.128.0/20 maxlen: 20
110.239.128.0/21 maxlen: 21
110.239.144.0/20 maxlen: 20
110.239.176.0/21 maxlen: 22
110.239.178.0/23 maxlen: 23
110.239.178.0/24 maxlen: 24
110.239.224.0/20 maxlen: 20
110.239.240.0/20 maxlen: 20
119.12.0.0/20 maxlen: 20
119.12.80.0/20 maxlen: 20
119.12.80.0/21 maxlen: 24
119.12.96.0/21 maxlen: 21
119.12.112.0/20 maxlen: 20
119.12.112.0/21 maxlen: 24
119.12.144.0/21 maxlen: 24
119.13.0.0/20 maxlen: 20
119.13.0.0/23 maxlen: 23
119.13.2.0/24 maxlen: 24
119.13.3.0/24 maxlen: 24
119.13.4.0/23 maxlen: 23
119.13.6.0/23 maxlen: 23
119.13.8.0/23 maxlen: 23
119.13.16.0/21 maxlen: 24
119.13.48.0/21 maxlen: 21
119.13.48.0/24 maxlen: 24
119.13.128.0/20 maxlen: 20
119.13.144.0/21 maxlen: 24
119.13.176.0/21 maxlen: 23
119.13.176.0/23 maxlen: 24
119.13.178.0/24 maxlen: 24
119.13.180.0/22 maxlen: 24
119.13.240.0/21 maxlen: 24
121.91.16.0/20 maxlen: 20
121.91.96.0/21 maxlen: 21
121.91.112.0/20 maxlen: 20
121.91.128.0/21 maxlen: 24
121.91.144.0/21 maxlen: 21
121.91.160.0/21 maxlen: 21
121.91.192.0/21 maxlen: 21
123.200.128.0/20 maxlen: 20
123.200.133.0/24 maxlen: 24
123.200.136.0/22 maxlen: 22
123.200.140.0/22 maxlen: 22
123.200.144.0/22 maxlen: 22
123.200.148.0/22 maxlen: 22
123.200.152.0/21 maxlen: 21
123.200.160.0/23 maxlen: 23
123.200.162.0/23 maxlen: 23
123.200.164.0/23 maxlen: 23
123.200.165.0/24 maxlen: 24
123.200.166.0/23 maxlen: 23
123.200.168.0/23 maxlen: 23
123.200.170.0/23 maxlen: 23
123.200.172.0/24 maxlen: 24
123.200.174.0/24 maxlen: 24
123.200.175.0/24 maxlen: 24
123.200.176.0/23 maxlen: 23
123.200.179.0/24 maxlen: 24
123.200.180.0/23 maxlen: 23
123.200.182.0/23 maxlen: 23
123.200.184.0/22 maxlen: 22
123.200.187.0/24 maxlen: 24
123.200.188.0/23 maxlen: 23
123.200.192.0/21 maxlen: 21
123.200.200.0/21 maxlen: 21
123.200.208.0/21 maxlen: 21
123.200.216.0/21 maxlen: 21
123.200.224.0/21 maxlen: 21
123.200.240.0/21 maxlen: 21
202.83.64.0/19 maxlen: 19
202.83.64.0/22 maxlen: 22
202.83.68.0/23 maxlen: 23
202.83.70.0/23 maxlen: 23
202.83.72.0/24 maxlen: 24
202.83.73.0/24 maxlen: 24
202.83.74.0/23 maxlen: 23
202.83.76.0/22 maxlen: 22
202.83.80.0/23 maxlen: 23
202.83.82.0/24 maxlen: 24
202.83.83.0/24 maxlen: 24
202.83.84.0/22 maxlen: 22
202.83.88.0/23 maxlen: 23
202.83.90.0/23 maxlen: 23
202.83.92.0/23 maxlen: 23
202.83.94.0/24 maxlen: 24
202.83.95.0/24 maxlen: 24
202.183.96.0/20 maxlen: 20
202.183.96.0/24 maxlen: 24
202.183.97.0/24 maxlen: 24
202.183.98.0/24 maxlen: 24
202.183.100.0/23 maxlen: 23
202.183.102.0/23 maxlen: 23
202.183.102.0/24 maxlen: 24
202.183.104.0/22 maxlen: 22
202.183.108.0/24 maxlen: 24
202.183.110.0/24 maxlen: 24
202.183.111.0/24 maxlen: 24
202.183.112.0/20 maxlen: 20
202.183.112.0/23 maxlen: 23
202.183.114.0/23 maxlen: 23
202.183.116.0/23 maxlen: 23
202.183.118.0/24 maxlen: 24
202.183.119.0/24 maxlen: 24
202.183.120.0/22 maxlen: 22
202.183.124.0/23 maxlen: 23
202.183.126.0/24 maxlen: 24
202.183.127.0/24 maxlen: 24
210.56.64.0/20 maxlen: 20
210.56.64.0/22 maxlen: 22
210.56.64.0/24 maxlen: 24
210.56.65.0/24 maxlen: 24
210.56.66.0/24 maxlen: 24
210.56.67.0/24 maxlen: 24
210.56.68.0/23 maxlen: 23
210.56.70.0/23 maxlen: 23
210.56.72.0/23 maxlen: 23
210.56.74.0/23 maxlen: 23
210.56.76.0/23 maxlen: 23
210.56.78.0/23 maxlen: 23
220.157.64.0/19 maxlen: 19
220.157.64.0/23 maxlen: 23
220.157.66.0/23 maxlen: 23
220.157.66.0/24 maxlen: 24
220.157.69.0/24 maxlen: 24
220.157.70.0/24 maxlen: 24
220.157.71.0/24 maxlen: 24
220.157.72.0/23 maxlen: 23
220.157.76.0/23 maxlen: 23
220.157.78.0/23 maxlen: 23
220.157.78.0/24 maxlen: 24
220.157.79.0/24 maxlen: 24
220.157.80.0/23 maxlen: 23
220.157.82.0/23 maxlen: 23
220.157.84.0/23 maxlen: 23
220.157.86.0/23 maxlen: 23
220.157.88.0/23 maxlen: 23
220.157.90.0/24 maxlen: 24
220.157.91.0/24 maxlen: 24
220.157.92.0/24 maxlen: 24
220.157.93.0/24 maxlen: 24
220.157.94.0/24 maxlen: 24
220.157.95.0/24 maxlen: 24
2407:6800::/32 maxlen: 32
2407:6800:0:200::/56 maxlen: 56
2407:6800:0:300::/56 maxlen: 56
2407:6800:0:400::/56 maxlen: 56
2407:6800:0:500::/56 maxlen: 56
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1824 (0x720)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB4FE
Validity
Not Before: Aug 23 02:33:01 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66c7f4dd-02c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2a:a5:10:4c:38:17:92:fb:bc:82:53:f2:28:
1a:0b:e7:1e:3b:d0:b9:2f:c9:55:41:54:6b:91:5f:
e6:cd:8c:46:3e:0a:e9:b9:3d:90:9e:59:97:7f:6a:
44:01:ae:9b:24:f4:f8:8d:00:12:3d:84:ef:98:1e:
fd:eb:a2:8c:6b:93:69:5d:f4:81:fd:36:be:64:9d:
f5:ea:3b:ff:bf:57:0f:3b:70:4d:b8:34:e0:7a:d3:
55:7e:da:7b:d0:2c:43:77:f0:b3:bb:bb:7a:c3:e6:
7b:35:da:97:d8:a8:b1:d0:6e:67:ca:d9:d6:8d:02:
fe:44:a0:8c:85:20:64:d4:cb:d0:a4:e7:82:a8:8e:
d0:56:0f:b4:ca:86:e0:c3:28:d1:b1:c4:93:3c:72:
1e:56:3b:fe:fc:f2:15:19:b0:2a:3e:80:12:e0:3f:
0d:8f:bb:0f:11:ad:28:12:51:ad:fe:5a:0a:9c:e3:
b5:41:c0:41:a4:b2:67:6e:94:dd:46:df:8c:3c:f0:
38:c4:1f:c4:d0:67:16:c3:30:b1:08:df:de:55:4f:
45:b7:c4:12:6f:aa:b4:c7:6c:cd:1a:6e:f8:9e:b4:
26:18:ee:c9:50:5a:e1:ad:c0:3c:f8:4e:20:ca:43:
c4:5b:e1:d4:4c:cc:24:00:6f:27:30:55:cb:ba:b1:
c7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BD:06:18:2E:76:5C:39:4B:4B:8A:5B:1E:EF:1D:47:52:5C:93:F4
X509v3 Authority Key Identifier:
keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/042C9CAC60F811EF93DE9781C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/20
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/20
110.238.2.0-110.238.31.255
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/21
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0/20
119.12.144.0/21
119.13.0.0-119.13.23.255
119.13.48.0/21
119.13.128.0-119.13.151.255
119.13.176.0/21
119.13.240.0/21
121.91.16.0/20
121.91.96.0/21
121.91.112.0-121.91.135.255
121.91.144.0/21
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.172.255
123.200.174.0-123.200.177.255
123.200.179.0-123.200.189.255
123.200.192.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/19
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
92:7f:7f:d7:5c:d3:e0:dc:7e:08:09:08:c1:93:65:98:48:b0:
16:07:2e:ad:74:63:9c:a9:2a:02:8f:73:23:46:12:1a:c3:09:
b9:30:6f:41:32:4e:1e:d8:87:bd:31:bf:fb:65:4a:23:7b:59:
20:49:aa:2c:4d:8a:1b:31:1c:b1:80:a0:d9:59:3b:6c:6f:f0:
19:2d:aa:d4:65:61:56:33:73:0d:ad:e0:ad:3f:4e:1e:95:1c:
d3:58:af:f8:d1:07:86:5e:e6:bd:bb:42:79:72:54:df:7c:03:
1a:f0:73:9b:b5:54:4b:da:21:5d:b3:21:cd:62:08:5e:d5:17:
e1:8a:eb:31:59:5f:35:9e:f2:4f:38:4f:17:d0:26:67:26:21:
c8:67:49:99:84:f6:5c:f9:8c:5f:5d:72:83:08:21:9e:7b:39:
84:75:76:93:2c:d1:f2:9b:48:0f:68:02:1b:a4:86:a0:47:91:
33:6b:eb:f3:aa:4f:48:a5:e0:08:b7:e2:f9:e6:4a:1a:83:15:
b6:a1:de:d0:af:52:65:38:b1:56:b3:f8:b9:d1:e0:3c:51:65:
28:28:20:08:4f:bc:1c:42:f8:41:09:88:7e:11:16:3b:72:d2:
b5:a3:e2:20:be:28:c5:c9:e2:f3:f4:67:99:68:58:d6:7e:f0:
91:d3:b4:30
-----BEGIN CERTIFICATE-----
MIIG1jCCBb6gAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy
NDE3ODMxNzkwHhcNMjQwODIzMDIzMzAxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmM3ZjRkZC0wMmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvCqlEEw4F5L7vIJT8igaC+ceO9C5L8lVQVRrkV/mzYxGPgrpuT2QnlmXf2pE
Aa6bJPT4jQASPYTvmB7966KMa5NpXfSB/Ta+ZJ316jv/v1cPO3BNuDTgetNVftp7
0CxDd/Czu7t6w+Z7NdqX2Kix0G5nytnWjQL+RKCMhSBk1MvQpOeCqI7QVg+0yobg
wyjRscSTPHIeVjv+/PIVGbAqPoAS4D8Nj7sPEa0oElGt/loKnOO1QcBBpLJnbpTd
Rt+MPPA4xB/E0GcWwzCxCN/eVU9Ft8QSb6q0x2zNGm74nrQmGO7JUFrhrcA8+E4g
ykPEW+HUTMwkAG8nMFXLurHHQwIDAQABo4ID+jCCA/YwHQYDVR0OBBYEFDq9Bhgu
dlw5S0uKWx7vHUdSXJP0MB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1
RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN
WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvMDQyQzlDQUM2
MEY4MTFFRjkzREU5NzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggGCBggrBgEFBQcBBwEB
/wSCAXEwggFtMIIBWgQCAAEwggFSAwQEAbIAMAwDBAYBskADBAQBsmAwDAMEBAGy
kAMEBAGywDALAwMAAbMDBAMBsyAwDAMEBAGzMAMEAwGzQAMEAwGzUAMEBAGzYAME
BDpXADAMAwQBbu4CAwQFbu4AAwQFbu6AMAwDBAVu7uADBARu7yADBAVu74ADBANu
77ADBAVu7+ADBAR3DAAwDAMEBHcMUAMEA3cMYAMEBHcMcAMEA3cMkDALAwMAdw0D
BAN3DRADBAN3DTAwDAMEB3cNgAMEA3cNkAMEA3cNsAMEA3cN8AMEBHlbEAMEA3lb
YDAMAwQEeVtwAwQDeVuAAwQDeVuQAwQDeVugAwQDeVvAMAwDBAd7yIADBAB7yKww
DAMEAXvIrgMEAXvIsDAMAwQAe8izAwQBe8i8MAwDBAZ7yMADBAN7yOADBAN7yPAD
BAXKU0ADBAXKt2ADBATSOEADBAXcnUAwDQQCAAIwBwMFACQHaAAwDQYJKoZIhvcN
AQELBQADggEBAJJ/f9dc0+DcfggJCMGTZZhIsBYHLq10Y5ypKgKPcyNGEhrDCbkw
b0EyTh7Yh70xv/tlSiN7WSBJqixNihsxHLGAoNlZO2xv8BktqtRlYVYzcw2t4K0/
Th6VHNNYr/jRB4Ze5r27QnlyVN98Axrwc5u1VEvaIV2zIc1iCF7VF+GK6zFZXzWe
8k84TxfQJmcmIchnSZmE9lz5jF9dcoMIIZ57OYR1dpMs0fKbSA9oAhukhqBHkTNr
6/OqT0il4Ai34vnmShqDFbah3tCvUmU4sVaz+LnR4DxRZSgoIAhPvBxC+EEJiH4R
Fjty0rWj4iC+KMXJ4vP0Z5loWNZ+8JHTtDA=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:50 2025 by rpki-client