Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32342d3234203d3e20313532383030.roa
File: 3136302e32322e32342e302f32342d3234203d3e20313532383030.roa (raw, json)
Hash identifier: 6fdEz0WhPYufITr1XyHhAfvY8CtDmIcqM8fDqmAUdcA=
Subject key identifier: 99:1C:5F:5C:0F:FD:8A:37:68:FC:C2:24:32:48:AF:76:F1:2F:2D:F3
Certificate issuer: /CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD
Certificate serial: 7DDA2A81C792DE09BFFDA8E93D7C0A38C0AA1988
Authority key identifier: FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32342d3234203d3e20313532383030.roa
Signing time: Tue 28 Apr 2026 15:01:22 +0000
ROA not before: Tue 28 Apr 2026 14:56:22 +0000
ROA not after: Tue 27 Apr 2027 15:01:22 +0000
asID: 152800
IP address blocks: 160.22.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:da:2a:81:c7:92:de:09:bf:fd:a8:e9:3d:7c:0a:38:c0:aa:19:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD
Validity
Not Before: Apr 28 14:56:22 2026 GMT
Not After : Apr 27 15:01:22 2027 GMT
Subject: CN=991C5F5C0FFD8A3768FCC2243248AF76F12F2DF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:37:32:6a:44:cd:59:a2:93:1d:8c:15:fc:8a:
10:91:c2:63:29:9e:56:6d:7b:72:7f:f7:d7:24:70:
d6:82:a0:de:54:ba:a5:c8:39:ef:e7:16:5f:7d:df:
33:cf:29:69:db:09:0d:17:c9:83:82:06:f2:ee:e9:
f2:7e:32:32:ea:86:5c:30:27:9e:d5:ca:fe:c0:fa:
2f:c4:a7:a0:e8:f9:0b:06:e6:95:d5:d1:4f:10:e3:
0a:99:4c:bd:ed:c9:fc:45:51:e7:77:a9:11:d9:b6:
24:e1:88:ea:22:d6:07:3e:f1:40:9d:62:92:39:6d:
21:4d:56:86:83:32:f0:60:e3:a7:43:6e:64:77:5c:
e7:de:35:2f:94:af:f5:6b:97:0e:73:1d:11:9e:3b:
a0:96:89:d3:c2:b1:6d:41:fc:62:91:94:90:15:b6:
22:e0:95:bb:e7:c0:eb:3d:16:0c:35:70:b0:cf:9b:
ac:c2:79:eb:b0:bb:45:12:54:ca:7d:be:17:63:f6:
56:90:95:43:e5:3a:25:4d:ec:dc:1b:1d:ca:d5:77:
ed:5f:a9:71:17:19:1d:b6:b5:8f:09:0c:ba:0e:cf:
35:a2:2e:bf:8f:0f:6c:d3:cc:45:40:26:5b:bb:ba:
f8:29:be:78:58:ea:c9:48:13:64:2a:ae:56:66:68:
2b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1C:5F:5C:0F:FD:8A:37:68:FC:C2:24:32:48:AF:76:F1:2F:2D:F3
X509v3 Authority Key Identifier:
keyid:FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32342d3234203d3e20313532383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.24.0/24
Signature Algorithm: sha256WithRSAEncryption
65:61:82:2b:91:3b:6d:7d:7f:3a:d7:15:0f:06:95:a1:d2:fd:
32:9f:6d:ee:c1:be:e9:96:22:22:9a:b6:65:3a:4b:b8:a3:3d:
ab:49:97:34:22:ff:af:b5:9c:5e:7a:2b:ec:c3:75:9c:a2:b3:
49:96:f8:fc:38:99:6d:f3:a6:73:5e:8b:fb:0b:00:d7:8b:45:
b8:ea:81:45:f5:ea:23:27:14:4e:f9:a7:92:7e:7a:68:3c:70:
2d:3d:07:82:92:a4:84:0a:9a:c9:4a:c8:15:84:a1:fd:4d:ca:
12:fc:65:3b:4f:33:bc:bf:da:01:47:b8:b9:2f:8b:4a:a7:2c:
33:ac:1a:8e:ff:97:3a:23:9e:26:07:36:e4:00:85:05:1d:5e:
f7:f2:95:7d:51:88:8f:1e:4a:b4:f9:ef:6b:9f:56:fd:c3:65:
32:a9:80:2c:00:0e:08:ed:96:bb:1c:09:a3:9c:fe:0b:fd:97:
e5:66:d2:51:bc:f5:b2:1b:2e:10:9e:b3:15:9b:00:0a:f9:72:
82:ae:db:8b:15:b6:0e:7a:66:6e:b3:ec:de:24:83:4f:75:72:
79:ef:ef:ab:3b:8a:36:67:4e:6e:3e:8a:cc:c6:de:24:7f:df:
f3:c4:59:e4:6e:c5:e3:47:76:68:4f:16:c4:be:91:1f:08:c6:
d8:0f:f9:40
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUfdoqgceS3gm//ajpPXwKOMCqGYgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRkEzMEZGODU2Njc1MzI1M0ZCQkQ4Nzg2Nzk3RkU5M0ZC
MENGNjJBRDAeFw0yNjA0MjgxNDU2MjJaFw0yNzA0MjcxNTAxMjJaMDMxMTAvBgNV
BAMTKDk5MUM1RjVDMEZGRDhBMzc2OEZDQzIyNDMyNDhBRjc2RjEyRjJERjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsNzJqRM1ZopMdjBX8ihCRwmMp
nlZte3J/99ckcNaCoN5UuqXIOe/nFl993zPPKWnbCQ0XyYOCBvLu6fJ+MjLqhlww
J57Vyv7A+i/Ep6Do+QsG5pXV0U8Q4wqZTL3tyfxFUed3qRHZtiThiOoi1gc+8UCd
YpI5bSFNVoaDMvBg46dDbmR3XOfeNS+Ur/Vrlw5zHRGeO6CWidPCsW1B/GKRlJAV
tiLglbvnwOs9Fgw1cLDPm6zCeeuwu0USVMp9vhdj9laQlUPlOiVN7NwbHcrVd+1f
qXEXGR22tY8JDLoOzzWiLr+PD2zTzEVAJlu7uvgpvnhY6slIE2QqrlZmaCtvAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUmRxfXA/9ijdo/MIkMkivdvEvLfMwHwYDVR0j
BBgwFoAU+jD/hWZ1MlP7vYeGeX/pP7DPYq0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
NmRhMGU4Mi0wNzY0LTQ1ZDMtYWVkOS1mZDI1OGU3MmI2ZTIvMC9GQTMwRkY4NTY2
NzUzMjUzRkJCRDg3ODY3OTdGRTkzRkIwQ0Y2MkFELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvRkEzMEZGODU2Njc1MzI1M0ZCQkQ4Nzg2Nzk3RkU5M0ZCMENG
NjJBRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2ZGEwZTgyLTA3NjQtNDVkMy1h
ZWQ5LWZkMjU4ZTcyYjZlMi8wLzMxMzYzMDJlMzIzMjJlMzIzNDJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAWGDANBgkqhkiG
9w0BAQsFAAOCAQEAZWGCK5E7bX1/OtcVDwaVodL9Mp9t7sG+6ZYiIpq2ZTpLuKM9
q0mXNCL/r7WcXnor7MN1nKKzSZb4/DiZbfOmc16L+wsA14tFuOqBRfXqIycUTvmn
kn56aDxwLT0HgpKkhAqayUrIFYSh/U3KEvxlO08zvL/aAUe4uS+LSqcsM6wajv+X
OiOeJgc25ACFBR1e9/KVfVGIjx5KtPnva59W/cNlMqmALAAOCO2WuxwJo5z+C/2X
5WbSUbz1shsuEJ6zFZsACvlygq7bixW2DnpmbrPs3iSDT3Vyee/vqzuKNmdObj6K
zMbeJH/f88RZ5G7F40d2aE8WxL6RHwjG2A/5QA==
-----END CERTIFICATE-----
Generated at Wed Jun 24 05:28:28 2026 by rpki-client