Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/59C28DDCCC3711EC95E2064BC4F9AE02.roa
File: 59C28DDCCC3711EC95E2064BC4F9AE02.roa (raw, json)
Hash identifier: K4z9CsOS5PMtaFvp/nZxofuggf+u7COW0uOnVUxro2M=
Subject key identifier: 7A:9B:A8:B0:FA:8B:C2:4D:BB:D6:81:6A:50:71:32:D5:0D:E5:08:21
Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Certificate serial: 03F4
Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/59C28DDCCC3711EC95E2064BC4F9AE02.roa
Signing time: Thu 05 May 2022 05:51:04 +0000
ROA not before: Thu 05 May 2022 05:51:04 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 9723
IP address blocks: 1.178.0.0/20 maxlen: 20
1.178.0.0/21 maxlen: 24
1.178.16.0/20 maxlen: 20
1.178.16.0/21 maxlen: 24
1.178.64.0/20 maxlen: 20
1.178.64.0/21 maxlen: 24
1.178.80.0/20 maxlen: 20
1.178.96.0/20 maxlen: 20
1.178.144.0/20 maxlen: 20
1.178.144.0/21 maxlen: 24
1.178.160.0/20 maxlen: 20
1.178.176.0/20 maxlen: 20
1.178.176.0/21 maxlen: 24
1.178.192.0/20 maxlen: 20
1.178.192.0/21 maxlen: 24
1.179.0.0/20 maxlen: 20
1.179.16.0/20 maxlen: 20
1.179.32.0/21 maxlen: 21
1.179.48.0/20 maxlen: 20
1.179.48.0/21 maxlen: 24
1.179.64.0/21 maxlen: 21
1.179.80.0/21 maxlen: 21
1.179.96.0/20 maxlen: 20
58.87.0.0/23 maxlen: 23
58.87.2.0/23 maxlen: 23
58.87.6.0/23 maxlen: 23
58.87.8.0/23 maxlen: 23
58.87.10.0/23 maxlen: 23
58.87.12.0/23 maxlen: 23
58.87.14.0/24 maxlen: 24
58.87.15.0/24 maxlen: 24
110.238.0.0/19 maxlen: 19
110.238.0.0/20 maxlen: 20
110.238.16.0/20 maxlen: 20
110.238.16.0/24 maxlen: 24
110.238.18.0/24 maxlen: 24
110.238.21.0/24 maxlen: 24
110.238.24.0/24 maxlen: 24
110.238.25.0/24 maxlen: 24
110.238.128.0/20 maxlen: 20
110.238.128.0/21 maxlen: 24
110.238.144.0/20 maxlen: 20
110.238.144.0/21 maxlen: 24
110.238.224.0/20 maxlen: 20
110.238.224.0/21 maxlen: 24
110.238.240.0/20 maxlen: 20
110.238.240.0/21 maxlen: 24
110.239.0.0/20 maxlen: 20
110.239.16.0/20 maxlen: 20
110.239.32.0/20 maxlen: 20
110.239.32.0/21 maxlen: 24
110.239.128.0/20 maxlen: 20
110.239.144.0/20 maxlen: 20
110.239.176.0/20 maxlen: 20
110.239.176.0/21 maxlen: 24
110.239.224.0/20 maxlen: 20
110.239.240.0/20 maxlen: 20
119.12.0.0/20 maxlen: 20
119.12.80.0/20 maxlen: 20
119.12.80.0/21 maxlen: 24
119.12.96.0/21 maxlen: 21
119.12.112.0/20 maxlen: 20
119.12.112.0/21 maxlen: 24
119.12.144.0/20 maxlen: 20
119.12.144.0/21 maxlen: 24
119.13.0.0/20 maxlen: 20
119.13.0.0/23 maxlen: 23
119.13.2.0/24 maxlen: 24
119.13.3.0/24 maxlen: 24
119.13.4.0/23 maxlen: 23
119.13.6.0/23 maxlen: 23
119.13.8.0/23 maxlen: 23
119.13.16.0/20 maxlen: 20
119.13.16.0/21 maxlen: 24
119.13.32.0/20 maxlen: 20
119.13.48.0/20 maxlen: 20
119.13.48.0/21 maxlen: 24
119.13.128.0/20 maxlen: 20
119.13.144.0/20 maxlen: 20
119.13.144.0/21 maxlen: 24
119.13.176.0/20 maxlen: 20
119.13.176.0/21 maxlen: 24
119.13.240.0/20 maxlen: 20
119.13.240.0/21 maxlen: 24
121.91.16.0/20 maxlen: 20
121.91.88.0/21 maxlen: 21
121.91.96.0/21 maxlen: 21
121.91.112.0/20 maxlen: 20
121.91.128.0/20 maxlen: 20
121.91.128.0/21 maxlen: 24
121.91.144.0/21 maxlen: 21
121.91.160.0/21 maxlen: 21
121.91.192.0/21 maxlen: 21
123.200.128.0/20 maxlen: 20
123.200.133.0/24 maxlen: 24
123.200.136.0/22 maxlen: 22
123.200.140.0/22 maxlen: 22
123.200.144.0/22 maxlen: 22
123.200.148.0/22 maxlen: 22
123.200.152.0/21 maxlen: 21
123.200.160.0/23 maxlen: 23
123.200.162.0/23 maxlen: 23
123.200.164.0/23 maxlen: 23
123.200.165.0/24 maxlen: 24
123.200.166.0/23 maxlen: 23
123.200.168.0/23 maxlen: 23
123.200.170.0/23 maxlen: 23
123.200.172.0/24 maxlen: 24
123.200.173.0/24 maxlen: 24
123.200.174.0/24 maxlen: 24
123.200.175.0/24 maxlen: 24
123.200.176.0/23 maxlen: 23
123.200.176.0/24 maxlen: 24
123.200.177.0/24 maxlen: 24
123.200.178.0/24 maxlen: 24
123.200.179.0/24 maxlen: 24
123.200.180.0/23 maxlen: 23
123.200.182.0/23 maxlen: 23
123.200.184.0/22 maxlen: 22
123.200.187.0/24 maxlen: 24
123.200.188.0/23 maxlen: 23
123.200.192.0/21 maxlen: 21
123.200.200.0/21 maxlen: 21
123.200.208.0/21 maxlen: 21
123.200.216.0/21 maxlen: 21
123.200.224.0/21 maxlen: 21
123.200.240.0/21 maxlen: 21
202.83.64.0/19 maxlen: 19
202.83.64.0/22 maxlen: 22
202.83.68.0/23 maxlen: 23
202.83.70.0/23 maxlen: 23
202.83.72.0/24 maxlen: 24
202.83.73.0/24 maxlen: 24
202.83.74.0/23 maxlen: 23
202.83.76.0/22 maxlen: 22
202.83.80.0/23 maxlen: 23
202.83.82.0/24 maxlen: 24
202.83.83.0/24 maxlen: 24
202.83.84.0/22 maxlen: 22
202.83.88.0/23 maxlen: 23
202.83.90.0/23 maxlen: 23
202.83.92.0/23 maxlen: 23
202.83.94.0/24 maxlen: 24
202.83.95.0/24 maxlen: 24
202.183.96.0/20 maxlen: 20
202.183.96.0/24 maxlen: 24
202.183.97.0/24 maxlen: 24
202.183.98.0/24 maxlen: 24
202.183.100.0/23 maxlen: 23
202.183.102.0/23 maxlen: 23
202.183.102.0/24 maxlen: 24
202.183.103.0/24 maxlen: 24
202.183.104.0/22 maxlen: 22
202.183.108.0/23 maxlen: 23
202.183.110.0/24 maxlen: 24
202.183.111.0/24 maxlen: 24
202.183.112.0/20 maxlen: 20
202.183.112.0/23 maxlen: 23
202.183.114.0/23 maxlen: 23
202.183.116.0/23 maxlen: 23
202.183.118.0/24 maxlen: 24
202.183.119.0/24 maxlen: 24
202.183.120.0/22 maxlen: 22
202.183.124.0/23 maxlen: 23
202.183.126.0/24 maxlen: 24
202.183.127.0/24 maxlen: 24
210.56.64.0/20 maxlen: 20
210.56.64.0/22 maxlen: 22
210.56.64.0/24 maxlen: 24
210.56.65.0/24 maxlen: 24
210.56.66.0/24 maxlen: 24
210.56.67.0/24 maxlen: 24
210.56.68.0/23 maxlen: 23
210.56.70.0/23 maxlen: 23
210.56.72.0/23 maxlen: 23
210.56.74.0/23 maxlen: 23
210.56.76.0/23 maxlen: 23
210.56.78.0/23 maxlen: 23
220.157.64.0/23 maxlen: 23
220.157.66.0/23 maxlen: 23
220.157.66.0/24 maxlen: 24
220.157.69.0/24 maxlen: 24
220.157.70.0/24 maxlen: 24
220.157.71.0/24 maxlen: 24
220.157.72.0/23 maxlen: 23
220.157.76.0/23 maxlen: 23
220.157.78.0/23 maxlen: 23
220.157.78.0/24 maxlen: 24
220.157.80.0/23 maxlen: 23
220.157.82.0/23 maxlen: 23
220.157.84.0/23 maxlen: 23
220.157.86.0/23 maxlen: 23
220.157.88.0/23 maxlen: 23
220.157.90.0/24 maxlen: 24
220.157.91.0/24 maxlen: 24
220.157.92.0/24 maxlen: 24
220.157.93.0/24 maxlen: 24
220.157.94.0/24 maxlen: 24
220.157.95.0/24 maxlen: 24
2407:6800::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1012 (0x3f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Validity
Not Before: May 5 05:51:04 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=627365c8-15c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ba:76:8e:c1:2f:04:a6:ef:6e:8e:b9:59:5e:
cb:e1:33:ed:1e:e9:dc:be:47:2a:cb:b0:8a:1b:86:
46:07:4c:5b:1c:bb:e1:bb:18:1b:29:ae:6d:49:bc:
d8:97:e9:e7:b1:67:9b:f3:44:d9:e2:5e:4d:06:43:
0a:62:a5:d0:e0:7c:18:9d:c0:03:c3:91:97:3c:74:
9c:da:b7:3e:b0:5b:23:5f:52:37:fc:c4:f2:77:be:
21:a7:7a:7a:37:99:46:b0:14:5c:10:ba:dd:fc:1a:
74:69:ba:1b:97:ba:58:30:78:22:d8:8b:f0:73:33:
f4:17:b1:66:a2:90:5f:08:d4:6b:e5:d6:2b:78:9c:
9b:36:a7:57:5a:d2:46:43:90:60:38:a2:7b:e4:ea:
a3:6b:59:d4:71:dc:30:55:cc:a2:4d:2c:7b:81:3b:
79:2b:e3:f2:f0:ec:d0:50:05:49:bf:3a:b2:9e:c6:
db:83:05:a3:04:72:de:3d:d2:9a:a3:c4:48:25:b0:
94:24:e6:11:35:9e:a4:fa:a8:55:83:7b:91:cd:e1:
e6:fa:0c:59:5c:50:ab:55:c8:e2:ad:65:ea:6e:9f:
73:28:e6:b0:0d:7c:bb:ec:34:95:9a:b1:3a:f7:b6:
a9:25:30:da:37:81:52:fb:dd:6a:b7:23:b3:06:24:
ea:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:9B:A8:B0:FA:8B:C2:4D:BB:D6:81:6A:50:71:32:D5:0D:E5:08:21
X509v3 Authority Key Identifier:
keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/59C28DDCCC3711EC95E2064BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/19
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/22
58.87.6.0-58.87.15.255
110.238.0.0/19
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/20
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0/20
119.12.144.0/20
119.13.0.0/18
119.13.128.0/19
119.13.176.0/20
119.13.240.0/20
121.91.16.0/20
121.91.88.0-121.91.103.255
121.91.112.0-121.91.151.255
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.189.255
123.200.192.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/22
220.157.69.0-220.157.73.255
220.157.76.0-220.157.95.255
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
63:75:f8:c0:88:01:cb:33:08:ca:15:e7:8e:7d:75:e2:f6:16:
45:0c:35:7f:17:c1:91:e7:93:de:77:12:ed:c9:9b:0e:4d:c8:
9f:cc:8b:8d:0b:4a:5e:fe:b6:33:89:18:7a:df:15:d2:d0:c9:
38:03:dc:c6:f2:cf:73:86:c0:a8:33:c9:37:59:c8:8f:a2:bf:
31:c4:32:6c:ab:85:25:b6:5c:0b:98:29:f0:8a:5d:6a:87:aa:
ad:d9:d9:ff:16:25:e0:3e:c9:e6:27:17:72:2c:91:fe:21:66:
50:a5:cf:b8:71:5e:cf:84:8f:52:ed:27:18:d1:6c:2a:66:56:
5e:2b:e9:0c:92:b5:49:df:ef:55:1a:77:04:79:df:e9:ae:8d:
df:74:2a:2a:63:3e:76:fd:80:54:61:3b:a5:e3:39:00:07:59:
e2:ce:3a:35:8d:95:05:e3:a6:cb:3d:dd:ea:47:78:3f:b1:de:
f8:cb:18:74:7a:38:4f:ab:9f:24:30:a3:76:cf:5b:a2:18:38:
ca:af:07:85:cf:57:92:79:fa:f8:51:63:81:f9:54:f2:1e:45:
3f:08:73:7c:c7:a7:5c:01:ea:d4:0c:1b:df:93:34:7b:cd:99:
3c:70:9a:b0:e9:10:92:f1:33:76:7d:87:da:11:2f:e4:f6:2f:
2c:eb:96:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:10 2023 by rpki-client on console-fra.rpki-client.org