Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37372e302f32342d3234203d3e203137363731.roa
File: 3230322e34372e37372e302f32342d3234203d3e203137363731.roa (raw, json)
Hash identifier: M7TDJ1Gymjo6lf4Js/f3ggfXAohx4NsrAbReJK3ruIE=
Subject key identifier: 01:1D:3D:BB:84:70:8B:97:9F:49:B0:54:34:33:4F:4F:76:4C:EB:D1
Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Certificate serial: 3C51BBF44C8B07B053FAB8656EE7E13CEB83F177
Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37372e302f32342d3234203d3e203137363731.roa
Signing time: Sat 18 Apr 2026 12:02:49 +0000
ROA not before: Sat 18 Apr 2026 11:57:49 +0000
ROA not after: Sat 17 Apr 2027 12:02:49 +0000
asID: 17671
IP address blocks: 202.47.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:51:bb:f4:4c:8b:07:b0:53:fa:b8:65:6e:e7:e1:3c:eb:83:f1:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Validity
Not Before: Apr 18 11:57:49 2026 GMT
Not After : Apr 17 12:02:49 2027 GMT
Subject: CN=011D3DBB84708B979F49B05434334F4F764CEBD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:20:e0:28:e2:0e:3a:8f:f3:d8:c2:79:ca:86:
3f:2e:e8:1d:23:9b:92:bb:78:47:27:90:73:19:98:
1d:2a:d9:c6:be:93:2b:72:6d:c2:5f:aa:e8:a3:6e:
4a:8c:44:7f:31:b8:07:c4:fc:13:43:c3:b0:01:e2:
25:22:16:ec:79:82:37:80:93:e0:cb:14:40:f1:34:
08:34:aa:c9:75:fe:40:08:26:20:dd:de:7c:b3:4d:
d2:78:39:e3:87:9b:11:62:bb:b9:e1:c4:b2:15:00:
85:e2:da:51:c1:e4:26:13:4d:33:40:39:9e:f7:08:
69:4f:9b:2f:26:42:2c:0d:ad:cf:b0:01:99:ca:cb:
e2:49:f9:6e:1e:15:1c:04:ca:c6:cf:15:53:95:28:
c1:e9:e4:ab:3c:3d:60:d8:fd:e6:3f:23:f6:e1:55:
55:d7:3d:f4:99:5e:8c:6e:75:db:48:0b:8c:37:57:
e3:ee:f7:86:0a:a7:5f:0c:dd:82:81:45:38:93:d9:
af:23:39:c7:63:50:93:e4:d6:44:b7:2e:c8:f5:a9:
c5:b6:6e:5b:b4:e7:3c:97:d0:c1:e7:ce:93:b5:8e:
33:d8:f9:90:46:b3:4d:a0:bc:5a:2b:74:e1:0b:30:
37:b8:cc:da:5a:34:ef:3e:c8:86:6e:e8:ef:67:dd:
2d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:1D:3D:BB:84:70:8B:97:9F:49:B0:54:34:33:4F:4F:76:4C:EB:D1
X509v3 Authority Key Identifier:
keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37372e302f32342d3234203d3e203137363731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.47.77.0/24
Signature Algorithm: sha256WithRSAEncryption
19:dc:cd:59:35:5f:c6:12:1f:70:e6:59:2d:80:15:36:3d:30:
06:be:5b:52:82:b0:11:29:5b:c4:3b:99:12:be:4f:04:d2:0f:
c2:aa:17:0c:c2:ab:79:3b:1b:ef:9f:9f:2f:f2:3e:b9:d0:b9:
64:0b:d8:f7:32:8a:6b:78:a9:59:4a:24:ea:54:f9:f3:63:63:
39:3e:c7:e1:4d:91:86:49:d9:54:56:1f:d7:f9:5d:9e:d5:a0:
3a:85:4a:47:f5:86:e7:07:a8:00:f6:1b:04:07:c1:e7:87:b9:
fc:d4:a9:51:e6:f9:b6:6e:5e:be:d1:b6:bb:fd:11:c9:81:56:
94:37:53:3d:08:42:46:52:0a:f9:d2:de:db:bc:3a:0b:11:31:
ab:1c:5d:79:85:19:d0:b1:d8:4a:61:cf:ff:c5:67:57:ed:cd:
13:42:a6:1b:21:ec:dd:ee:cc:ce:d4:7b:77:02:e1:59:e9:1c:
07:76:40:88:19:d4:c4:75:b6:12:46:d2:cb:21:bb:47:20:46:
c4:ed:4b:a2:86:06:27:f7:57:2e:5b:f9:42:f5:3a:db:2a:76:
8d:22:03:b0:02:a4:cb:4d:16:82:b0:61:7d:c8:d8:93:a5:50:
71:f3:ef:c5:94:36:b5:ef:98:b3:71:c6:da:58:e6:a0:77:1d:
c5:bb:0b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 04:35:09 2026 by rpki-client