Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa
File: 3230322e35382e3231392e302f32342d3234203d3e203137363731.roa (raw, json)
Hash identifier: QV0FPG1lKY990S4cpyrqPPVDfEClrW2Ec8spUP3+K/I=
Subject key identifier: 82:46:6C:66:40:BC:8B:24:B7:6B:FA:10:50:DD:F9:7F:FB:3F:E4:0D
Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Certificate serial: 31813A1053355979E4E7FFB0311DA989E9CAFFED
Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa
Signing time: Sat 18 Apr 2026 12:02:53 +0000
ROA not before: Sat 18 Apr 2026 11:57:53 +0000
ROA not after: Sat 17 Apr 2027 12:02:53 +0000
asID: 17671
IP address blocks: 202.58.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:81:3a:10:53:35:59:79:e4:e7:ff:b0:31:1d:a9:89:e9:ca:ff:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Validity
Not Before: Apr 18 11:57:53 2026 GMT
Not After : Apr 17 12:02:53 2027 GMT
Subject: CN=82466C6640BC8B24B76BFA1050DDF97FFB3FE40D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:04:0b:3f:ab:eb:b8:9f:51:f5:9f:d1:2a:e7:
05:29:fd:72:6e:9d:7c:43:4f:ff:6a:12:f5:c2:12:
81:4e:d8:fd:c8:8d:63:4c:41:02:82:11:f1:e0:8a:
e4:da:11:51:03:32:e4:5e:76:8d:c0:98:e9:88:fe:
5e:51:ef:0a:42:19:97:7a:3e:78:71:75:84:9f:90:
7e:af:8d:25:d4:b6:5e:e1:e1:ba:18:47:38:e2:a2:
1d:ad:a6:a5:59:18:d3:a0:af:7d:d6:55:df:8c:e9:
be:1d:64:2a:2f:a4:5f:0a:67:35:94:a8:53:2e:13:
c9:dc:73:07:75:1e:50:85:25:cc:58:ae:2e:3c:ed:
e6:3f:3b:56:0f:d9:d6:4f:8b:89:ba:6c:84:ec:6b:
2f:47:29:f2:97:70:71:25:07:3e:1c:ec:03:12:07:
62:0d:09:1e:c6:2a:35:21:62:e0:45:dd:4f:ff:ab:
54:11:21:25:ff:e4:36:71:82:15:21:53:63:5e:bf:
5d:1a:19:34:a9:5d:b9:76:ca:1c:f4:41:11:b5:af:
77:94:9f:04:e7:f1:53:be:0e:30:5e:f0:31:5b:64:
7c:34:a2:43:bc:89:26:1c:bb:b8:4b:10:bb:a8:08:
df:b2:ff:f2:81:47:21:39:97:84:60:bc:9c:6c:b4:
7a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:46:6C:66:40:BC:8B:24:B7:6B:FA:10:50:DD:F9:7F:FB:3F:E4:0D
X509v3 Authority Key Identifier:
keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.58.219.0/24
Signature Algorithm: sha256WithRSAEncryption
08:87:b9:dc:ff:b1:7a:72:f1:15:70:fd:bf:b8:33:01:4e:a2:
f3:59:28:cf:3f:aa:fa:5d:54:a3:8d:89:b6:fe:b6:ac:0f:ad:
a4:e3:55:1d:14:0d:ec:83:e6:c1:4e:7a:4d:13:ac:6a:40:75:
1f:be:de:df:80:bd:f1:ae:22:73:64:41:a5:51:7b:a2:41:e1:
0c:37:93:58:77:44:ac:7d:00:5e:31:8e:97:d6:ab:f1:d6:ca:
ac:cf:5f:4d:ac:1b:b0:c0:bb:22:83:e0:20:d9:e6:78:8a:85:
21:ec:e4:c0:1c:5b:b6:77:3c:38:4d:33:56:a7:7f:71:03:6d:
e0:87:b4:90:8b:e4:e7:2d:78:35:23:49:3d:46:a5:ad:53:e3:
01:f5:42:3e:dc:3a:2c:97:67:d8:eb:d1:b0:85:c5:1a:63:01:
02:a1:8a:b3:7b:3f:83:e6:c6:06:06:f2:1c:35:02:e6:7a:0e:
0a:12:20:81:32:86:28:80:db:22:21:e2:f9:e9:f5:db:6a:c3:
3b:6b:60:b0:a0:9b:f9:3d:d7:84:5f:04:b1:bf:27:52:9a:37:
d2:02:d6:ff:33:94:e7:7b:58:8b:7f:2d:4a:44:3f:0f:f7:be:
53:42:e4:88:d2:ba:81:99:53:e5:fe:90:1d:9f:a4:c2:fc:8f:
9b:ad:30:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 04:35:16 2026 by rpki-client