Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/427559B450B511ECBE600F30C4F9AE02.roa
File: 427559B450B511ECBE600F30C4F9AE02.roa (raw, json)
Hash identifier: Uy9AZkeZJoPztvQVZss/dMqPlanWN8v1toX6Ru3FkuY=
Subject key identifier: C5:C8:EE:E9:A6:B8:AE:AC:92:19:CC:BC:08:F4:5C:95:68:80:C8:A6
Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Certificate serial: 02AD
Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/427559B450B511ECBE600F30C4F9AE02.roa
Signing time: Mon 29 Nov 2021 10:20:13 +0000
ROA not before: Mon 29 Nov 2021 10:20:13 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 9723
IP address blocks: 1.178.0.0/20 maxlen: 20
1.178.0.0/21 maxlen: 24
1.178.16.0/20 maxlen: 20
1.178.16.0/21 maxlen: 24
1.178.64.0/20 maxlen: 20
1.178.64.0/21 maxlen: 24
1.178.80.0/20 maxlen: 20
1.178.96.0/20 maxlen: 20
1.178.144.0/20 maxlen: 20
1.178.144.0/21 maxlen: 24
1.178.160.0/20 maxlen: 20
1.178.176.0/20 maxlen: 20
1.178.176.0/21 maxlen: 24
1.178.192.0/20 maxlen: 20
1.178.192.0/21 maxlen: 24
1.179.0.0/20 maxlen: 20
1.179.16.0/20 maxlen: 20
1.179.32.0/21 maxlen: 21
1.179.48.0/20 maxlen: 20
1.179.48.0/21 maxlen: 24
1.179.64.0/21 maxlen: 21
1.179.80.0/21 maxlen: 21
1.179.96.0/20 maxlen: 20
58.87.0.0/23 maxlen: 23
58.87.2.0/23 maxlen: 23
58.87.6.0/23 maxlen: 23
58.87.8.0/23 maxlen: 23
58.87.10.0/23 maxlen: 23
58.87.12.0/23 maxlen: 23
58.87.14.0/24 maxlen: 24
58.87.15.0/24 maxlen: 24
110.238.0.0/19 maxlen: 19
110.238.0.0/20 maxlen: 20
110.238.16.0/20 maxlen: 20
110.238.16.0/24 maxlen: 24
110.238.18.0/24 maxlen: 24
110.238.21.0/24 maxlen: 24
110.238.24.0/24 maxlen: 24
110.238.25.0/24 maxlen: 24
110.238.128.0/20 maxlen: 20
110.238.128.0/21 maxlen: 24
110.238.144.0/20 maxlen: 20
110.238.144.0/21 maxlen: 24
110.238.224.0/20 maxlen: 20
110.238.224.0/21 maxlen: 24
110.238.240.0/20 maxlen: 20
110.238.240.0/21 maxlen: 24
110.239.0.0/20 maxlen: 20
110.239.16.0/20 maxlen: 20
110.239.32.0/20 maxlen: 20
110.239.32.0/21 maxlen: 24
110.239.128.0/20 maxlen: 20
110.239.144.0/20 maxlen: 20
110.239.176.0/20 maxlen: 20
110.239.176.0/21 maxlen: 24
110.239.224.0/20 maxlen: 20
110.239.240.0/20 maxlen: 20
119.12.0.0/20 maxlen: 20
119.12.80.0/20 maxlen: 20
119.12.80.0/21 maxlen: 24
119.12.96.0/21 maxlen: 21
119.12.112.0/20 maxlen: 20
119.12.112.0/21 maxlen: 24
119.12.128.0/20 maxlen: 20
119.12.144.0/20 maxlen: 20
119.12.144.0/21 maxlen: 24
119.13.0.0/20 maxlen: 20
119.13.0.0/23 maxlen: 23
119.13.2.0/24 maxlen: 24
119.13.3.0/24 maxlen: 24
119.13.4.0/23 maxlen: 23
119.13.6.0/23 maxlen: 23
119.13.8.0/23 maxlen: 23
119.13.16.0/20 maxlen: 20
119.13.16.0/21 maxlen: 24
119.13.32.0/20 maxlen: 20
119.13.48.0/20 maxlen: 20
119.13.48.0/21 maxlen: 24
119.13.128.0/20 maxlen: 20
119.13.144.0/20 maxlen: 20
119.13.144.0/21 maxlen: 24
119.13.176.0/20 maxlen: 20
119.13.176.0/21 maxlen: 24
119.13.240.0/20 maxlen: 20
119.13.240.0/21 maxlen: 24
121.91.16.0/20 maxlen: 20
121.91.88.0/21 maxlen: 21
121.91.96.0/21 maxlen: 21
121.91.112.0/20 maxlen: 20
121.91.128.0/20 maxlen: 20
121.91.128.0/21 maxlen: 24
121.91.144.0/21 maxlen: 21
121.91.160.0/21 maxlen: 21
121.91.192.0/21 maxlen: 21
123.200.128.0/20 maxlen: 20
123.200.133.0/24 maxlen: 24
123.200.136.0/22 maxlen: 22
123.200.140.0/22 maxlen: 22
123.200.144.0/22 maxlen: 22
123.200.148.0/22 maxlen: 22
123.200.152.0/21 maxlen: 21
123.200.160.0/23 maxlen: 23
123.200.162.0/23 maxlen: 23
123.200.164.0/23 maxlen: 23
123.200.165.0/24 maxlen: 24
123.200.166.0/23 maxlen: 23
123.200.168.0/23 maxlen: 23
123.200.170.0/23 maxlen: 23
123.200.172.0/24 maxlen: 24
123.200.173.0/24 maxlen: 24
123.200.174.0/24 maxlen: 24
123.200.175.0/24 maxlen: 24
123.200.176.0/23 maxlen: 23
123.200.176.0/24 maxlen: 24
123.200.177.0/24 maxlen: 24
123.200.178.0/24 maxlen: 24
123.200.179.0/24 maxlen: 24
123.200.180.0/23 maxlen: 23
123.200.182.0/23 maxlen: 23
123.200.184.0/22 maxlen: 22
123.200.187.0/24 maxlen: 24
123.200.188.0/23 maxlen: 23
123.200.192.0/21 maxlen: 21
123.200.200.0/21 maxlen: 21
123.200.208.0/21 maxlen: 21
123.200.216.0/21 maxlen: 21
123.200.224.0/21 maxlen: 21
123.200.240.0/21 maxlen: 21
202.83.64.0/19 maxlen: 19
202.83.64.0/22 maxlen: 22
202.83.68.0/23 maxlen: 23
202.83.70.0/23 maxlen: 23
202.83.72.0/24 maxlen: 24
202.83.73.0/24 maxlen: 24
202.83.74.0/23 maxlen: 23
202.83.76.0/22 maxlen: 22
202.83.80.0/23 maxlen: 23
202.83.82.0/24 maxlen: 24
202.83.83.0/24 maxlen: 24
202.83.84.0/22 maxlen: 22
202.83.88.0/23 maxlen: 23
202.83.90.0/23 maxlen: 23
202.83.92.0/23 maxlen: 23
202.83.94.0/24 maxlen: 24
202.83.95.0/24 maxlen: 24
202.183.96.0/20 maxlen: 20
202.183.96.0/24 maxlen: 24
202.183.97.0/24 maxlen: 24
202.183.98.0/24 maxlen: 24
202.183.100.0/23 maxlen: 23
202.183.102.0/23 maxlen: 23
202.183.102.0/24 maxlen: 24
202.183.103.0/24 maxlen: 24
202.183.104.0/22 maxlen: 22
202.183.108.0/23 maxlen: 23
202.183.110.0/24 maxlen: 24
202.183.111.0/24 maxlen: 24
202.183.112.0/20 maxlen: 20
202.183.112.0/23 maxlen: 23
202.183.114.0/23 maxlen: 23
202.183.116.0/23 maxlen: 23
202.183.118.0/24 maxlen: 24
202.183.119.0/24 maxlen: 24
202.183.120.0/22 maxlen: 22
202.183.124.0/23 maxlen: 23
202.183.126.0/24 maxlen: 24
202.183.127.0/24 maxlen: 24
210.56.64.0/20 maxlen: 20
210.56.64.0/22 maxlen: 22
210.56.64.0/24 maxlen: 24
210.56.65.0/24 maxlen: 24
210.56.66.0/24 maxlen: 24
210.56.67.0/24 maxlen: 24
210.56.68.0/23 maxlen: 23
210.56.70.0/23 maxlen: 23
210.56.72.0/23 maxlen: 23
210.56.74.0/23 maxlen: 23
210.56.76.0/23 maxlen: 23
210.56.78.0/23 maxlen: 23
220.157.64.0/23 maxlen: 23
220.157.66.0/23 maxlen: 23
220.157.66.0/24 maxlen: 24
220.157.69.0/24 maxlen: 24
220.157.70.0/24 maxlen: 24
220.157.71.0/24 maxlen: 24
220.157.72.0/23 maxlen: 23
220.157.76.0/23 maxlen: 23
220.157.78.0/23 maxlen: 23
220.157.78.0/24 maxlen: 24
220.157.80.0/23 maxlen: 23
220.157.82.0/23 maxlen: 23
220.157.84.0/23 maxlen: 23
220.157.86.0/23 maxlen: 23
220.157.88.0/23 maxlen: 23
220.157.90.0/24 maxlen: 24
220.157.91.0/24 maxlen: 24
220.157.92.0/24 maxlen: 24
220.157.93.0/24 maxlen: 24
220.157.94.0/24 maxlen: 24
220.157.95.0/24 maxlen: 24
2407:6800::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 685 (0x2ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Validity
Not Before: Nov 29 10:20:13 2021 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=61a4a95d-1c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:4b:44:44:f3:b2:21:86:79:40:50:d8:1d:
67:45:8e:3e:96:e6:45:52:d0:6a:f2:32:3c:02:73:
fb:d9:f6:08:5e:b3:e4:6b:05:66:91:a5:5f:9b:77:
90:54:39:3b:69:57:92:5c:3a:1f:93:77:72:4f:f3:
17:ac:17:38:61:1b:96:b8:c4:d1:d1:7f:46:64:24:
d5:9c:87:66:ec:01:9d:22:c7:9a:99:f5:3b:2e:93:
59:d3:c1:a0:53:df:3a:72:94:56:f0:8d:e8:b2:ae:
e4:1a:ad:b7:eb:10:f4:5d:cf:5f:d9:25:38:94:9d:
0d:21:3a:5f:33:9c:97:09:5c:59:fe:9f:60:2b:53:
43:db:8c:7a:02:f7:e9:ee:14:38:f2:08:46:03:b6:
70:f6:7d:cd:92:4e:c1:3a:45:a0:27:75:3a:84:9c:
d3:07:b1:4c:c3:2b:9e:77:d6:0a:42:4f:3b:db:5b:
c9:3a:2d:1b:70:96:c5:1f:55:98:4d:04:87:f3:14:
00:38:9c:9f:76:0c:d2:d8:50:d9:4c:1e:38:c9:1a:
6e:7e:4c:e8:ba:5b:ad:e9:0c:a2:c6:c1:08:ad:f8:
96:ed:b8:28:9a:04:8b:93:27:fe:79:61:fb:de:44:
32:13:d1:a1:b3:4b:4d:d7:f0:5d:4b:4d:e8:92:e9:
62:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C8:EE:E9:A6:B8:AE:AC:92:19:CC:BC:08:F4:5C:95:68:80:C8:A6
X509v3 Authority Key Identifier:
keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/427559B450B511ECBE600F30C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/19
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/22
58.87.6.0-58.87.15.255
110.238.0.0/19
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/20
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0-119.12.159.255
119.13.0.0/18
119.13.128.0/19
119.13.176.0/20
119.13.240.0/20
121.91.16.0/20
121.91.88.0-121.91.103.255
121.91.112.0-121.91.151.255
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.189.255
123.200.192.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/22
220.157.69.0-220.157.73.255
220.157.76.0-220.157.95.255
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
0b:90:e6:f0:4c:33:61:50:c1:e1:e8:9d:68:c2:15:4f:1f:70:
99:29:31:fd:43:e8:56:ff:5f:4d:3a:75:43:92:d0:5f:87:45:
d2:3c:1e:2e:20:10:45:ed:74:d6:e3:42:a5:e3:65:d7:f2:ee:
9c:33:a1:2f:a9:dc:4c:c8:a0:e3:5b:fc:90:a9:26:e3:da:0a:
b9:b0:46:72:36:de:89:84:57:fa:c7:4b:31:c7:49:65:66:84:
5f:3d:72:9b:4e:73:5b:c9:a4:ed:07:46:96:0c:ed:6c:52:ab:
4c:00:a2:08:7c:a8:88:4a:b3:7f:95:5e:51:ff:54:1e:1c:a5:
1e:04:54:b5:4a:ae:a8:ea:7a:5c:9c:33:34:8e:06:50:18:81:
c5:ac:c7:61:20:71:1a:03:e4:98:b7:2c:d1:5e:5c:56:6b:0d:
60:70:9c:cc:a0:46:f5:0a:7e:f2:32:a7:e6:22:d4:5d:af:1d:
c5:33:99:bf:e8:32:77:df:53:c9:6e:48:66:98:4d:aa:a4:e1:
55:cf:2b:5c:ac:23:66:53:74:38:74:94:13:64:cb:5d:9c:5c:
c1:ee:b6:e4:f9:78:bf:78:cf:9a:d7:f3:3a:40:90:0e:37:9d:
24:b3:cb:fc:ec:82:72:49:1c:a5:6d:a9:87:9c:96:c9:14:5d:
37:94:07:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:10 2023 by rpki-client on console-fra.rpki-client.org