Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/BC8776ECD76511ECBDAEC873C4F9AE02.roa
File: BC8776ECD76511ECBDAEC873C4F9AE02.roa (raw, json)
Hash identifier: tRaEEtmFK/ljke87fojbR0fNUwuScYP41oz4XtzoLoE=
Subject key identifier: 86:20:73:F9:9B:E5:BD:10:4A:F1:FA:67:71:EE:38:FD:83:8C:D9:A9
Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Certificate serial: 0414
Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/BC8776ECD76511ECBDAEC873C4F9AE02.roa
Signing time: Thu 19 May 2022 11:20:50 +0000
ROA not before: Thu 19 May 2022 11:20:50 +0000
ROA not after: Tue 31 Jan 2023 00:00:00 +0000
asID: 9723
IP address blocks: 1.178.0.0/20 maxlen: 20
1.178.0.0/21 maxlen: 24
1.178.16.0/20 maxlen: 20
1.178.16.0/21 maxlen: 24
1.178.64.0/20 maxlen: 20
1.178.64.0/21 maxlen: 24
1.178.80.0/20 maxlen: 20
1.178.96.0/20 maxlen: 20
1.178.144.0/20 maxlen: 20
1.178.144.0/21 maxlen: 24
1.178.160.0/20 maxlen: 20
1.178.176.0/20 maxlen: 20
1.178.176.0/21 maxlen: 24
1.178.192.0/20 maxlen: 20
1.178.192.0/21 maxlen: 24
1.179.0.0/20 maxlen: 20
1.179.16.0/20 maxlen: 20
1.179.32.0/21 maxlen: 21
1.179.48.0/20 maxlen: 20
1.179.48.0/21 maxlen: 24
1.179.64.0/21 maxlen: 21
1.179.80.0/21 maxlen: 21
1.179.96.0/20 maxlen: 20
58.87.0.0/23 maxlen: 23
58.87.2.0/23 maxlen: 23
58.87.6.0/23 maxlen: 23
58.87.8.0/23 maxlen: 23
58.87.10.0/23 maxlen: 23
58.87.12.0/23 maxlen: 23
58.87.14.0/24 maxlen: 24
58.87.15.0/24 maxlen: 24
110.238.0.0/19 maxlen: 19
110.238.0.0/20 maxlen: 20
110.238.16.0/20 maxlen: 20
110.238.16.0/24 maxlen: 24
110.238.18.0/24 maxlen: 24
110.238.21.0/24 maxlen: 24
110.238.24.0/24 maxlen: 24
110.238.25.0/24 maxlen: 24
110.238.128.0/20 maxlen: 20
110.238.128.0/21 maxlen: 24
110.238.144.0/20 maxlen: 20
110.238.144.0/21 maxlen: 24
110.238.224.0/20 maxlen: 20
110.238.224.0/21 maxlen: 24
110.238.240.0/20 maxlen: 20
110.238.240.0/21 maxlen: 24
110.239.0.0/20 maxlen: 20
110.239.16.0/20 maxlen: 20
110.239.32.0/20 maxlen: 20
110.239.32.0/21 maxlen: 24
110.239.128.0/20 maxlen: 20
110.239.144.0/20 maxlen: 20
110.239.176.0/20 maxlen: 20
110.239.176.0/21 maxlen: 24
110.239.224.0/20 maxlen: 20
110.239.240.0/20 maxlen: 20
119.12.0.0/20 maxlen: 20
119.12.80.0/20 maxlen: 20
119.12.80.0/21 maxlen: 24
119.12.96.0/21 maxlen: 21
119.12.112.0/20 maxlen: 20
119.12.112.0/21 maxlen: 24
119.12.144.0/20 maxlen: 20
119.12.144.0/21 maxlen: 24
119.13.0.0/20 maxlen: 20
119.13.0.0/23 maxlen: 23
119.13.2.0/24 maxlen: 24
119.13.3.0/24 maxlen: 24
119.13.4.0/23 maxlen: 23
119.13.6.0/23 maxlen: 23
119.13.8.0/23 maxlen: 23
119.13.16.0/21 maxlen: 24
119.13.32.0/20 maxlen: 20
119.13.48.0/20 maxlen: 20
119.13.48.0/21 maxlen: 24
119.13.128.0/20 maxlen: 20
119.13.144.0/20 maxlen: 20
119.13.144.0/21 maxlen: 24
119.13.176.0/20 maxlen: 20
119.13.176.0/21 maxlen: 24
119.13.240.0/20 maxlen: 20
119.13.240.0/21 maxlen: 24
121.91.16.0/20 maxlen: 20
121.91.88.0/21 maxlen: 21
121.91.96.0/21 maxlen: 21
121.91.112.0/20 maxlen: 20
121.91.128.0/20 maxlen: 20
121.91.128.0/21 maxlen: 24
121.91.144.0/21 maxlen: 21
121.91.160.0/21 maxlen: 21
121.91.192.0/21 maxlen: 21
123.200.128.0/20 maxlen: 20
123.200.133.0/24 maxlen: 24
123.200.136.0/22 maxlen: 22
123.200.140.0/22 maxlen: 22
123.200.144.0/22 maxlen: 22
123.200.148.0/22 maxlen: 22
123.200.152.0/21 maxlen: 21
123.200.160.0/23 maxlen: 23
123.200.162.0/23 maxlen: 23
123.200.164.0/23 maxlen: 23
123.200.165.0/24 maxlen: 24
123.200.166.0/23 maxlen: 23
123.200.168.0/23 maxlen: 23
123.200.170.0/23 maxlen: 23
123.200.172.0/24 maxlen: 24
123.200.173.0/24 maxlen: 24
123.200.174.0/24 maxlen: 24
123.200.175.0/24 maxlen: 24
123.200.176.0/23 maxlen: 23
123.200.176.0/24 maxlen: 24
123.200.177.0/24 maxlen: 24
123.200.178.0/24 maxlen: 24
123.200.179.0/24 maxlen: 24
123.200.180.0/23 maxlen: 23
123.200.182.0/23 maxlen: 23
123.200.184.0/22 maxlen: 22
123.200.187.0/24 maxlen: 24
123.200.188.0/23 maxlen: 23
123.200.192.0/21 maxlen: 21
123.200.200.0/21 maxlen: 21
123.200.208.0/21 maxlen: 21
123.200.216.0/21 maxlen: 21
123.200.224.0/21 maxlen: 21
123.200.240.0/21 maxlen: 21
202.83.64.0/19 maxlen: 19
202.83.64.0/22 maxlen: 22
202.83.68.0/23 maxlen: 23
202.83.70.0/23 maxlen: 23
202.83.72.0/24 maxlen: 24
202.83.73.0/24 maxlen: 24
202.83.74.0/23 maxlen: 23
202.83.76.0/22 maxlen: 22
202.83.80.0/23 maxlen: 23
202.83.82.0/24 maxlen: 24
202.83.83.0/24 maxlen: 24
202.83.84.0/22 maxlen: 22
202.83.88.0/23 maxlen: 23
202.83.90.0/23 maxlen: 23
202.83.92.0/23 maxlen: 23
202.83.94.0/24 maxlen: 24
202.83.95.0/24 maxlen: 24
202.183.96.0/20 maxlen: 20
202.183.96.0/24 maxlen: 24
202.183.97.0/24 maxlen: 24
202.183.98.0/24 maxlen: 24
202.183.100.0/23 maxlen: 23
202.183.102.0/23 maxlen: 23
202.183.102.0/24 maxlen: 24
202.183.103.0/24 maxlen: 24
202.183.104.0/22 maxlen: 22
202.183.108.0/23 maxlen: 23
202.183.110.0/24 maxlen: 24
202.183.111.0/24 maxlen: 24
202.183.112.0/20 maxlen: 20
202.183.112.0/23 maxlen: 23
202.183.114.0/23 maxlen: 23
202.183.116.0/23 maxlen: 23
202.183.118.0/24 maxlen: 24
202.183.119.0/24 maxlen: 24
202.183.120.0/22 maxlen: 22
202.183.124.0/23 maxlen: 23
202.183.126.0/24 maxlen: 24
202.183.127.0/24 maxlen: 24
210.56.64.0/20 maxlen: 20
210.56.64.0/22 maxlen: 22
210.56.64.0/24 maxlen: 24
210.56.65.0/24 maxlen: 24
210.56.66.0/24 maxlen: 24
210.56.67.0/24 maxlen: 24
210.56.68.0/23 maxlen: 23
210.56.70.0/23 maxlen: 23
210.56.72.0/23 maxlen: 23
210.56.74.0/23 maxlen: 23
210.56.76.0/23 maxlen: 23
210.56.78.0/23 maxlen: 23
220.157.64.0/23 maxlen: 23
220.157.66.0/23 maxlen: 23
220.157.66.0/24 maxlen: 24
220.157.69.0/24 maxlen: 24
220.157.70.0/24 maxlen: 24
220.157.71.0/24 maxlen: 24
220.157.72.0/23 maxlen: 23
220.157.76.0/23 maxlen: 23
220.157.78.0/23 maxlen: 23
220.157.78.0/24 maxlen: 24
220.157.80.0/23 maxlen: 23
220.157.82.0/23 maxlen: 23
220.157.84.0/23 maxlen: 23
220.157.86.0/23 maxlen: 23
220.157.88.0/23 maxlen: 23
220.157.90.0/24 maxlen: 24
220.157.91.0/24 maxlen: 24
220.157.92.0/24 maxlen: 24
220.157.93.0/24 maxlen: 24
220.157.94.0/24 maxlen: 24
220.157.95.0/24 maxlen: 24
2407:6800::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1044 (0x414)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Validity
Not Before: May 19 11:20:50 2022 GMT
Not After : Jan 31 00:00:00 2023 GMT
Subject: CN=62862811-834b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3f:a3:fc:27:79:c3:70:22:33:16:90:07:b9:
4d:ad:f7:38:06:56:88:49:10:19:a3:d1:2f:f1:fb:
cf:f4:3f:cc:f7:95:d3:44:c2:a1:94:fe:22:16:cd:
3a:f7:a5:c6:b8:c8:e9:34:e1:b2:1d:5f:bb:7d:91:
7d:3e:2a:b5:a8:32:7a:ca:70:a6:22:98:97:12:7f:
2a:b5:c4:28:3c:43:63:ec:14:eb:75:74:8f:ff:9b:
54:a5:ce:5c:24:4b:04:d9:cc:20:fe:c0:01:24:fe:
d7:86:8c:a4:0d:d2:04:11:26:21:61:98:7a:8f:e9:
64:f1:09:4f:a3:be:ff:d1:31:12:ad:94:c1:86:c8:
da:87:52:83:1c:6a:19:0b:9b:6e:16:b0:1e:25:9d:
b1:7b:f5:55:a0:27:59:87:83:de:46:3c:25:fb:c7:
e7:b0:fe:a4:1e:35:f1:d1:42:68:61:58:ca:b0:e3:
15:7b:4b:4a:8a:a7:66:bd:fd:dd:ee:a8:6d:60:78:
67:78:8d:b1:7e:b7:30:77:87:fb:83:71:49:f0:44:
6c:72:ed:68:03:77:d5:52:87:63:03:b0:5f:c6:0f:
9a:48:51:76:54:b0:e3:f7:c7:86:e2:3f:ad:e7:9b:
43:09:b6:8d:05:a9:bc:a7:30:04:f1:b4:a9:b9:74:
f6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:20:73:F9:9B:E5:BD:10:4A:F1:FA:67:71:EE:38:FD:83:8C:D9:A9
X509v3 Authority Key Identifier:
keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/BC8776ECD76511ECBDAEC873C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/19
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/22
58.87.6.0-58.87.15.255
110.238.0.0/19
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/20
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0/20
119.12.144.0/20
119.13.0.0-119.13.23.255
119.13.32.0/19
119.13.128.0/19
119.13.176.0/20
119.13.240.0/20
121.91.16.0/20
121.91.88.0-121.91.103.255
121.91.112.0-121.91.151.255
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.189.255
123.200.192.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/22
220.157.69.0-220.157.73.255
220.157.76.0-220.157.95.255
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
0f:68:75:ae:10:00:64:25:37:8a:38:54:0e:e6:36:33:70:31:
7f:59:d2:86:d2:98:8c:02:45:1d:e7:dd:e5:8b:58:9b:f2:e1:
44:c7:d5:2b:fe:ff:47:9f:4b:ab:9d:af:ec:a4:c6:d2:d8:b5:
3f:0e:25:6e:60:d7:2e:00:46:d9:b7:49:cc:26:17:32:5c:53:
e3:34:dd:3a:7d:cd:c6:16:96:6a:dc:74:4b:44:29:5f:62:36:
dd:c2:3d:3c:ae:f4:b7:6b:85:7e:7d:af:3a:62:99:5a:c4:c4:
7c:22:6c:f0:45:f6:17:43:08:85:a4:58:f7:f8:ac:f8:12:39:
bb:3f:1b:8a:86:07:8c:05:ea:26:cc:d1:11:4d:5f:21:4c:e4:
4d:b7:57:77:7b:c9:98:42:22:c0:bf:60:6f:ab:3e:2f:02:d0:
ad:de:b4:af:29:a1:ac:5f:2c:ff:6e:16:f4:85:e5:98:50:88:
dc:31:58:93:a6:e0:c6:f9:11:65:14:6f:81:07:23:5e:a7:71:
ae:39:1e:4b:2a:9b:3c:e1:72:16:1f:e7:d6:07:25:db:1b:ba:
89:eb:7e:72:6f:e9:6f:02:a6:54:de:02:f2:a2:98:6e:8a:5c:
12:11:f8:b5:d4:0b:0a:1d:87:b4:96:17:f6:13:ee:4c:ea:46:
c8:15:2b:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:10 2023 by rpki-client on console-fra.rpki-client.org