Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32332d3233203d3e20313532383030.roa
File: 3136302e32322e32342e302f32332d3233203d3e20313532383030.roa (raw, json)
Hash identifier: OacysfNpwXez5zWarpDCPH0JnkMoGH3psm2JbtZti78=
Subject key identifier: 07:C5:A9:C0:25:11:44:41:29:B8:72:22:C0:36:A0:BA:0B:75:B3:01
Certificate issuer: /CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD
Certificate serial: 541973622589AD828D0C768394B403A4EB12DFC1
Authority key identifier: FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32332d3233203d3e20313532383030.roa
Signing time: Tue 28 Apr 2026 15:01:22 +0000
ROA not before: Tue 28 Apr 2026 14:56:22 +0000
ROA not after: Tue 27 Apr 2027 15:01:22 +0000
asID: 152800
IP address blocks: 160.22.24.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:19:73:62:25:89:ad:82:8d:0c:76:83:94:b4:03:a4:eb:12:df:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD
Validity
Not Before: Apr 28 14:56:22 2026 GMT
Not After : Apr 27 15:01:22 2027 GMT
Subject: CN=07C5A9C02511444129B87222C036A0BA0B75B301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:86:44:e7:15:02:d5:4b:3d:72:92:6a:2e:ce:
2c:71:a8:6d:72:34:8d:bb:5d:02:3d:6c:88:49:db:
a1:6d:c8:15:f8:c3:96:20:59:cf:fa:80:85:8e:bc:
b3:f9:9d:90:8b:e4:3f:ae:ee:23:14:36:fd:5f:8e:
60:c8:89:0d:f1:e9:46:95:27:ea:04:91:5b:f1:b9:
9b:3c:14:4b:ad:9f:6f:17:d3:50:b5:ea:b8:2c:0b:
91:48:03:3d:15:45:7b:48:d2:0f:ab:a2:1e:c5:62:
12:5f:bc:3e:55:f7:24:17:e0:40:4c:a1:5e:22:b3:
d4:db:f6:41:1d:df:66:dc:75:94:3b:ce:ba:c5:7c:
e2:38:3b:7d:04:dd:c2:2b:73:76:db:46:4f:92:4e:
e3:6d:e6:52:ec:34:86:e5:4f:67:64:27:41:bb:eb:
ff:60:90:d1:4c:0f:ee:50:bf:ff:49:b1:2b:09:29:
6f:e2:cd:c9:be:25:e7:50:85:e6:0c:b4:80:e7:56:
80:5f:0b:12:26:e3:cc:1c:0a:38:91:40:12:04:38:
08:a0:e5:07:25:37:eb:64:cb:84:fb:7b:2b:87:b8:
bb:24:b2:6b:46:55:29:53:55:4b:8a:bd:dc:9b:10:
7c:34:94:97:f7:7c:45:d2:2b:0e:26:92:03:68:ae:
16:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C5:A9:C0:25:11:44:41:29:B8:72:22:C0:36:A0:BA:0B:75:B3:01
X509v3 Authority Key Identifier:
keyid:FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32332d3233203d3e20313532383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.24.0/23
Signature Algorithm: sha256WithRSAEncryption
14:89:20:0e:bf:5b:c1:1d:6a:55:93:65:89:94:25:1d:8d:8f:
9c:81:d4:35:49:4b:63:66:c3:4f:de:b6:73:2c:4a:7e:61:9f:
fb:38:8b:b1:95:b2:1b:d7:75:36:14:86:75:4b:a7:69:23:fb:
72:39:6e:5a:cc:bd:c9:9f:c6:c7:fd:e1:69:e7:53:34:61:ba:
49:5f:a6:df:b0:c0:a6:b0:5f:ed:b3:77:ae:da:dc:6f:a4:ae:
6e:35:d5:5d:cb:f9:97:b8:b3:ef:a9:41:ec:52:d0:aa:10:f4:
14:4e:e2:32:7a:e9:ef:02:d2:44:f3:2a:85:c1:f1:e9:91:a9:
f5:07:30:14:a2:e4:69:d5:42:23:3d:b0:e0:ae:72:c5:a8:a5:
7c:77:63:17:25:6c:6e:eb:ae:6f:50:18:bb:07:a2:4f:16:d6:
a0:c6:85:55:f0:ad:6f:b0:ee:d9:52:93:8a:eb:23:17:ea:ec:
2d:46:bb:3c:82:78:33:f5:e4:c3:7a:74:dc:f2:4c:45:46:ae:
33:ae:fa:bb:44:d1:b0:ce:b3:fe:0b:86:60:f8:76:47:6c:a8:
7f:a0:05:db:86:e3:e2:82:f1:ba:25:66:e6:fa:27:77:a3:09:
31:1b:cb:8b:2e:74:a0:1b:4e:c9:f2:5d:b4:3a:fb:4a:3a:a0:
3f:eb:76:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 05:27:08 2026 by rpki-client