Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/D4C65828E55A11ED98D38780C4F9AE02.roa
File: D4C65828E55A11ED98D38780C4F9AE02.roa (raw, json)
Hash identifier: wrggpdPVIRS+UVgrDLXJBDPGanVBtaBQn7EdXtT9eiM=
Subject key identifier: 2C:AB:99:55:CD:D6:55:18:93:1A:0B:42:A4:A7:ED:4A:0A:F8:1E:85
Certificate issuer: /CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Certificate serial: 063D
Authority key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/D4C65828E55A11ED98D38780C4F9AE02.roa
Signing time: Sun 03 Dec 2023 00:12:42 +0000
ROA not before: Sun 03 Dec 2023 00:12:42 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 9723
IP address blocks: 1.178.0.0/20 maxlen: 20
1.178.0.0/21 maxlen: 24
1.178.16.0/20 maxlen: 20
1.178.16.0/21 maxlen: 24
1.178.64.0/20 maxlen: 20
1.178.64.0/21 maxlen: 24
1.178.80.0/20 maxlen: 20
1.178.96.0/20 maxlen: 20
1.178.144.0/20 maxlen: 20
1.178.144.0/21 maxlen: 24
1.178.160.0/20 maxlen: 20
1.178.176.0/20 maxlen: 20
1.178.176.0/21 maxlen: 24
1.178.192.0/20 maxlen: 20
1.178.192.0/21 maxlen: 24
1.179.0.0/20 maxlen: 20
1.179.16.0/20 maxlen: 20
1.179.32.0/21 maxlen: 21
1.179.48.0/20 maxlen: 20
1.179.48.0/21 maxlen: 24
1.179.64.0/21 maxlen: 21
1.179.80.0/21 maxlen: 21
1.179.96.0/20 maxlen: 20
58.87.0.0/23 maxlen: 23
58.87.2.0/23 maxlen: 23
58.87.6.0/23 maxlen: 23
58.87.8.0/23 maxlen: 23
58.87.10.0/23 maxlen: 23
58.87.12.0/23 maxlen: 23
58.87.14.0/24 maxlen: 24
58.87.15.0/24 maxlen: 24
110.238.0.0/19 maxlen: 19
110.238.0.0/20 maxlen: 20
110.238.16.0/20 maxlen: 20
110.238.16.0/24 maxlen: 24
110.238.18.0/24 maxlen: 24
110.238.21.0/24 maxlen: 24
110.238.24.0/24 maxlen: 24
110.238.25.0/24 maxlen: 24
110.238.128.0/20 maxlen: 20
110.238.128.0/21 maxlen: 24
110.238.144.0/20 maxlen: 20
110.238.144.0/21 maxlen: 24
110.238.224.0/20 maxlen: 20
110.238.224.0/21 maxlen: 24
110.238.240.0/20 maxlen: 20
110.238.240.0/21 maxlen: 24
110.239.0.0/20 maxlen: 20
110.239.16.0/20 maxlen: 20
110.239.32.0/20 maxlen: 20
110.239.32.0/21 maxlen: 24
110.239.128.0/20 maxlen: 20
110.239.128.0/21 maxlen: 21
110.239.136.0/21 maxlen: 21
110.239.144.0/20 maxlen: 20
110.239.176.0/21 maxlen: 24
110.239.224.0/20 maxlen: 20
110.239.240.0/20 maxlen: 20
119.12.0.0/20 maxlen: 20
119.12.80.0/20 maxlen: 20
119.12.80.0/21 maxlen: 24
119.12.96.0/21 maxlen: 21
119.12.112.0/20 maxlen: 20
119.12.112.0/21 maxlen: 24
119.12.144.0/21 maxlen: 24
119.13.0.0/20 maxlen: 20
119.13.0.0/23 maxlen: 23
119.13.2.0/24 maxlen: 24
119.13.3.0/24 maxlen: 24
119.13.4.0/23 maxlen: 23
119.13.6.0/23 maxlen: 23
119.13.8.0/23 maxlen: 23
119.13.16.0/21 maxlen: 24
119.13.48.0/21 maxlen: 21
119.13.48.0/24 maxlen: 24
119.13.128.0/20 maxlen: 20
119.13.144.0/21 maxlen: 24
119.13.176.0/21 maxlen: 24
119.13.240.0/21 maxlen: 24
121.91.16.0/20 maxlen: 20
121.91.96.0/21 maxlen: 21
121.91.112.0/20 maxlen: 20
121.91.128.0/21 maxlen: 24
121.91.144.0/21 maxlen: 21
121.91.160.0/21 maxlen: 21
121.91.192.0/21 maxlen: 21
123.200.128.0/20 maxlen: 20
123.200.133.0/24 maxlen: 24
123.200.136.0/22 maxlen: 22
123.200.140.0/22 maxlen: 22
123.200.144.0/22 maxlen: 22
123.200.148.0/22 maxlen: 22
123.200.152.0/21 maxlen: 21
123.200.160.0/23 maxlen: 23
123.200.162.0/23 maxlen: 23
123.200.164.0/23 maxlen: 23
123.200.165.0/24 maxlen: 24
123.200.166.0/23 maxlen: 23
123.200.168.0/23 maxlen: 23
123.200.170.0/23 maxlen: 23
123.200.172.0/24 maxlen: 24
123.200.173.0/24 maxlen: 24
123.200.174.0/24 maxlen: 24
123.200.175.0/24 maxlen: 24
123.200.176.0/23 maxlen: 23
123.200.176.0/24 maxlen: 24
123.200.177.0/24 maxlen: 24
123.200.178.0/24 maxlen: 24
123.200.179.0/24 maxlen: 24
123.200.180.0/23 maxlen: 23
123.200.182.0/23 maxlen: 23
123.200.184.0/22 maxlen: 22
123.200.187.0/24 maxlen: 24
123.200.188.0/23 maxlen: 23
123.200.192.0/21 maxlen: 21
123.200.200.0/21 maxlen: 21
123.200.208.0/21 maxlen: 21
123.200.216.0/21 maxlen: 21
123.200.224.0/21 maxlen: 21
123.200.240.0/21 maxlen: 21
202.83.64.0/19 maxlen: 19
202.83.64.0/22 maxlen: 22
202.83.68.0/23 maxlen: 23
202.83.70.0/23 maxlen: 23
202.83.72.0/24 maxlen: 24
202.83.73.0/24 maxlen: 24
202.83.74.0/23 maxlen: 23
202.83.76.0/22 maxlen: 22
202.83.80.0/23 maxlen: 23
202.83.82.0/24 maxlen: 24
202.83.83.0/24 maxlen: 24
202.83.84.0/22 maxlen: 22
202.83.88.0/23 maxlen: 23
202.83.90.0/23 maxlen: 23
202.83.92.0/23 maxlen: 23
202.83.94.0/24 maxlen: 24
202.83.95.0/24 maxlen: 24
202.183.96.0/20 maxlen: 20
202.183.96.0/24 maxlen: 24
202.183.97.0/24 maxlen: 24
202.183.98.0/24 maxlen: 24
202.183.100.0/23 maxlen: 23
202.183.102.0/23 maxlen: 23
202.183.102.0/24 maxlen: 24
202.183.103.0/24 maxlen: 24
202.183.104.0/22 maxlen: 22
202.183.108.0/23 maxlen: 23
202.183.109.0/24 maxlen: 24
202.183.110.0/24 maxlen: 24
202.183.111.0/24 maxlen: 24
202.183.112.0/20 maxlen: 20
202.183.112.0/23 maxlen: 23
202.183.114.0/23 maxlen: 23
202.183.116.0/23 maxlen: 23
202.183.118.0/24 maxlen: 24
202.183.119.0/24 maxlen: 24
202.183.120.0/22 maxlen: 22
202.183.124.0/23 maxlen: 23
202.183.126.0/24 maxlen: 24
202.183.127.0/24 maxlen: 24
210.56.64.0/20 maxlen: 20
210.56.64.0/22 maxlen: 22
210.56.64.0/24 maxlen: 24
210.56.65.0/24 maxlen: 24
210.56.66.0/24 maxlen: 24
210.56.67.0/24 maxlen: 24
210.56.68.0/23 maxlen: 23
210.56.70.0/23 maxlen: 23
210.56.72.0/23 maxlen: 23
210.56.74.0/23 maxlen: 23
210.56.76.0/23 maxlen: 23
210.56.78.0/23 maxlen: 23
220.157.64.0/23 maxlen: 23
220.157.66.0/23 maxlen: 23
220.157.66.0/24 maxlen: 24
220.157.69.0/24 maxlen: 24
220.157.70.0/24 maxlen: 24
220.157.71.0/24 maxlen: 24
220.157.72.0/23 maxlen: 23
220.157.76.0/23 maxlen: 23
220.157.78.0/23 maxlen: 23
220.157.78.0/24 maxlen: 24
220.157.79.0/24 maxlen: 24
220.157.80.0/23 maxlen: 23
220.157.82.0/23 maxlen: 23
220.157.84.0/23 maxlen: 23
220.157.86.0/23 maxlen: 23
220.157.88.0/23 maxlen: 23
220.157.90.0/24 maxlen: 24
220.157.91.0/24 maxlen: 24
220.157.92.0/24 maxlen: 24
220.157.93.0/24 maxlen: 24
220.157.94.0/24 maxlen: 24
220.157.95.0/24 maxlen: 24
2407:6800::/32 maxlen: 32
2407:6800:0:200::/56 maxlen: 56
2407:6800:0:300::/56 maxlen: 56
2407:6800:0:400::/56 maxlen: 56
2407:6800:0:500::/56 maxlen: 56
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1597 (0x63d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Validity
Not Before: Dec 3 00:12:42 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=656bc7fa-5fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9b:7a:a4:2b:36:5a:68:70:fc:80:29:d7:65:
13:5b:e3:ed:b8:d5:94:a6:75:ad:c2:f0:08:46:1c:
eb:50:6a:5c:63:8d:3b:46:e9:3c:e4:86:da:64:80:
ee:ce:c3:44:11:79:38:19:d0:9d:bb:3e:95:89:b1:
40:70:d1:7b:54:91:4e:6a:f3:8e:41:06:67:94:46:
bf:cb:5a:dc:a7:6e:c7:ab:99:5d:dd:d3:5f:18:bf:
6c:a6:3e:57:74:f0:7a:7a:66:b9:e3:1a:6c:bc:53:
93:bb:6b:62:a3:05:64:dc:8b:ee:7e:b1:cc:e5:08:
83:53:99:db:7d:f0:15:25:e8:a1:fd:a9:de:5a:be:
e6:24:09:93:f1:37:2e:7f:45:82:5e:87:19:0d:f0:
4f:39:0a:e8:e2:4a:a5:92:5a:c9:31:29:ca:41:3c:
1e:ec:78:4a:65:05:bc:c2:98:cd:b3:9a:26:eb:0e:
94:95:be:80:0c:18:e6:53:39:b2:f9:dd:ca:8f:ba:
b6:e5:03:4f:ae:7b:cf:46:b3:1e:91:a4:a2:6b:1f:
4c:3a:5f:63:83:b5:aa:b7:b4:5f:db:03:25:8b:46:
66:d0:a6:7b:50:d6:c2:a9:34:89:6f:88:ed:71:bf:
51:6a:81:30:c4:f0:9f:3a:c6:12:d4:cb:b4:7d:f8:
65:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AB:99:55:CD:D6:55:18:93:1A:0B:42:A4:A7:ED:4A:0A:F8:1E:85
X509v3 Authority Key Identifier:
keyid:7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/D4C65828E55A11ED98D38780C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/19
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/22
58.87.6.0-58.87.15.255
110.238.0.0/19
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/21
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0/20
119.12.144.0/21
119.13.0.0-119.13.23.255
119.13.48.0/21
119.13.128.0-119.13.151.255
119.13.176.0/21
119.13.240.0/21
121.91.16.0/20
121.91.96.0/21
121.91.112.0-121.91.135.255
121.91.144.0/21
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.189.255
123.200.192.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/22
220.157.69.0-220.157.73.255
220.157.76.0-220.157.95.255
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
27:0a:3c:57:87:ad:55:6f:bb:9d:bd:c6:7f:5e:ee:d5:db:bf:
05:4c:4f:6e:e8:b1:73:56:47:b6:5e:11:2f:0d:ad:a3:7a:a1:
59:ce:b7:2d:0d:84:f3:b6:39:b3:18:f8:1c:a6:13:e6:56:94:
bc:27:0f:0d:20:cc:c6:70:75:37:fc:99:fb:6f:40:20:64:59:
aa:4a:6d:57:92:39:2e:17:a5:ad:02:7e:57:dd:f5:40:28:0f:
f7:05:d2:3b:3f:3a:93:ef:5f:e8:d6:e4:84:2f:c1:c2:26:f6:
d5:e0:72:60:15:3d:88:d5:99:b0:63:a9:ad:09:5f:3a:a2:97:
2d:fc:5b:01:b8:90:f5:30:48:52:aa:ed:89:69:13:b0:0f:f6:
61:da:7c:6b:05:a4:0f:45:a6:c2:29:2e:71:e6:f6:00:d2:73:
ed:09:bb:fe:88:27:30:10:cd:6e:39:35:98:c1:0f:f3:e0:7f:
3d:e6:74:6f:3a:0d:de:e1:03:56:22:15:cb:63:82:a5:90:28:
d4:42:a3:a8:8c:ea:b4:62:b6:88:bf:74:ad:d8:c3:bf:06:ca:
11:73:d4:74:3b:49:67:ce:75:68:7c:d7:e8:3b:7e:25:27:59:
e8:91:c2:5d:c2:72:8f:19:0a:06:ef:31:a1:7f:3c:d5:8b:84:
d6:92:74:2b
-----BEGIN CERTIFICATE-----
MIIG3DCCBcSgAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REI0RkUxMTAvBgNVBAUTKDdGNkJFMUQ1QTI3MzBGQzIyN0ZBRkM4OTZEMTM0MzMy
NDE3ODMxNzkwHhcNMjMxMjAzMDAxMjQyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTZiYzdmYS01ZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAupt6pCs2Wmhw/IAp12UTW+PtuNWUpnWtwvAIRhzrUGpcY407Ruk85IbaZIDu
zsNEEXk4GdCduz6VibFAcNF7VJFOavOOQQZnlEa/y1rcp27Hq5ld3dNfGL9spj5X
dPB6ema54xpsvFOTu2tiowVk3IvufrHM5QiDU5nbffAVJeih/aneWr7mJAmT8Tcu
f0WCXocZDfBPOQro4kqlklrJMSnKQTwe7HhKZQW8wpjNs5om6w6Ulb6ADBjmUzmy
+d3Kj7q25QNPrnvPRrMekaSiax9MOl9jg7Wqt7Rf2wMli0Zm0KZ7UNbCqTSJb4jt
cb9RaoEwxPCfOsYS1Mu0ffhlZQIDAQABo4IEADCCA/wwHQYDVR0OBBYEFCyrmVXN
1lUYkxoLQqSn7UoK+B6FMB8GA1UdIwQYMBaAFH9r4dWicw/CJ/r8iW0TQzJBeDF5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjRGRS9DRjRBMTBFQTg1
RTExMUVCQUZCNTFFODRDNEY5QUUwMi9mMnZoMWFKekQ4SW4tdnlKYlJORE1rRjRN
WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2YydmgxYUp6RDhJbi12eUpiUk5ETWtGNE1Yay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REI0RkUvQ0Y0QTEwRUE4NUUxMTFFQkFGQjUxRTg0QzRGOUFFMDIvRDRDNjU4MjhF
NTVBMTFFRDk4RDM4NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggGIBggrBgEFBQcBBwEB
/wSCAXcwggFzMIIBYAQCAAEwggFYAwQFAbIAMAwDBAYBskADBAQBsmAwDAMEBAGy
kAMEBAGywDALAwMAAbMDBAMBsyAwDAMEBAGzMAMEAwGzQAMEAwGzUAMEBAGzYAME
AjpXADAMAwQBOlcGAwQEOlcAAwQFbu4AAwQFbu6AMAwDBAVu7uADBARu7yADBAVu
74ADBANu77ADBAVu7+ADBAR3DAAwDAMEBHcMUAMEA3cMYAMEBHcMcAMEA3cMkDAL
AwMAdw0DBAN3DRADBAN3DTAwDAMEB3cNgAMEA3cNkAMEA3cNsAMEA3cN8AMEBHlb
EAMEA3lbYDAMAwQEeVtwAwQDeVuAAwQDeVuQAwQDeVugAwQDeVvAMAwDBAd7yIAD
BAF7yLwwDAMEBnvIwAMEA3vI4AMEA3vI8AMEBcpTQAMEBcq3YAMEBNI4QAMEAtyd
QDAMAwQA3J1FAwQB3J1IMAwDBALcnUwDBAXcnUAwDQQCAAIwBwMFACQHaAAwDQYJ
KoZIhvcNAQELBQADggEBACcKPFeHrVVvu529xn9e7tXbvwVMT27osXNWR7ZeES8N
raN6oVnOty0NhPO2ObMY+BymE+ZWlLwnDw0gzMZwdTf8mftvQCBkWapKbVeSOS4X
pa0Cflfd9UAoD/cF0js/OpPvX+jW5IQvwcIm9tXgcmAVPYjVmbBjqa0JXzqily38
WwG4kPUwSFKq7YlpE7AP9mHafGsFpA9FpsIpLnHm9gDSc+0Ju/6IJzAQzW45NZjB
D/Pgfz3mdG86Dd7hA1YiFctjgqWQKNRCo6iM6rRitoi/dK3Yw78GyhFz1HQ7SWfO
dWh81+g7fiUnWeiRwl3Cco8ZCgbvMaF/PNWLhNaSdCs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:42 2024 by rpki-client on console-fra.rpki-client.org