Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa
File: 3136302e32322e37302e302f32332d3234203d3e203538333831.roa (raw, json)
Hash identifier: djKA81oeURWzgaI0h7cxzd0rxM03k+F/lFJpsndnL3s=
Subject key identifier: 5C:CC:FB:E8:91:42:17:6C:89:2E:98:CE:6D:1B:57:F3:4E:83:8E:75
Certificate issuer: /CN=5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61
Certificate serial: 14E7ADEC10957C8763554A6161858BF3A7AF9083
Authority key identifier: 5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa
Signing time: Wed 22 Apr 2026 06:01:52 +0000
ROA not before: Wed 22 Apr 2026 05:56:52 +0000
ROA not after: Wed 21 Apr 2027 06:01:52 +0000
asID: 58381
IP address blocks: 160.22.70.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:e7:ad:ec:10:95:7c:87:63:55:4a:61:61:85:8b:f3:a7:af:90:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61
Validity
Not Before: Apr 22 05:56:52 2026 GMT
Not After : Apr 21 06:01:52 2027 GMT
Subject: CN=5CCCFBE89142176C892E98CE6D1B57F34E838E75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:10:e8:8b:70:b1:ea:16:b4:9e:87:aa:20:f4:
03:ad:68:d2:ff:93:e3:ef:be:ad:54:a8:a5:df:f3:
8d:35:8b:17:e9:69:fa:c4:55:48:56:66:ed:d9:00:
76:91:29:39:67:c8:10:51:a4:0d:94:20:c9:f2:de:
37:11:4b:6c:8e:ed:fc:2c:34:4d:a0:f1:8b:15:54:
9d:1b:bd:64:14:c2:67:df:9a:3c:65:8c:bd:09:a7:
a2:59:5b:39:91:d2:56:dc:47:3c:b1:0a:24:a7:9c:
66:03:c5:eb:20:31:fd:a3:53:8e:4c:aa:c7:ab:de:
28:20:5a:32:6d:66:b1:bc:41:16:74:84:0b:05:70:
1f:45:35:bb:11:d1:4c:09:d3:19:16:3b:0b:ff:31:
0f:f1:3c:56:7c:57:a3:32:68:c1:c8:db:6d:10:08:
be:a9:19:91:68:f6:ec:b9:23:01:0a:ab:79:fe:d0:
46:fb:d6:39:75:00:1a:17:37:37:d4:60:c4:3c:87:
fc:ad:17:78:3c:d6:ba:01:92:cf:8b:04:e2:dc:8e:
ba:fa:34:63:42:37:5a:36:1e:57:63:9a:73:d9:0d:
51:28:f2:83:ba:a8:48:67:e5:d9:6a:d4:9c:f7:64:
55:24:3c:19:98:cc:9c:98:cd:27:a2:69:b0:d4:7d:
48:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CC:FB:E8:91:42:17:6C:89:2E:98:CE:6D:1B:57:F3:4E:83:8E:75
X509v3 Authority Key Identifier:
keyid:5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/3136302e32322e37302e302f32332d3234203d3e203538333831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.70.0/23
Signature Algorithm: sha256WithRSAEncryption
08:10:8b:32:4b:be:f1:a5:99:47:de:9f:61:9d:3f:4b:4b:78:
b5:91:82:99:1d:88:a1:03:df:27:d8:43:5b:97:3d:f0:d8:94:
29:03:1a:be:fb:94:51:2e:af:92:22:3f:dd:ab:94:ff:b2:8c:
5f:c3:b4:b6:25:c0:3b:3d:8e:25:e6:d4:33:6c:0b:6e:96:cd:
fa:d2:2d:b3:1f:d7:99:df:64:c4:40:6b:ee:d2:5b:e1:8b:ae:
b6:d6:c2:53:02:73:3c:e2:53:94:93:45:1f:e8:61:d5:77:5c:
b9:ed:aa:c0:43:a4:fc:67:6b:20:6d:75:ab:df:89:d8:42:d0:
e0:13:ce:97:4d:d9:d1:d2:b5:e2:ea:c9:63:70:6a:01:59:96:
83:12:6c:fc:ef:b5:6f:08:39:b0:6c:3b:d4:3e:5f:f3:25:3c:
30:80:c5:11:6c:47:b0:c9:84:07:39:22:5b:42:29:e8:34:3f:
36:8c:36:a4:b6:af:3b:f3:83:a5:b9:a2:f3:88:3f:0d:8d:6f:
4a:58:14:58:4c:7b:b2:34:05:68:82:da:02:b2:d4:65:03:81:
2f:71:b5:2c:84:5d:f3:14:1e:21:23:73:f0:9d:51:d3:95:78:
aa:84:36:a5:1b:3f:8d:4b:e1:c3:f4:1d:18:a3:1d:31:a7:70:
ed:20:71:8c
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUFOet7BCVfIdjVUphYYWL86evkIMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUJCN0U4QTNBQkY2REY2RDQ2QzNENUY5MUVDM0I3Nzg3
MENFNkM2MTAeFw0yNjA0MjIwNTU2NTJaFw0yNzA0MjEwNjAxNTJaMDMxMTAvBgNV
BAMTKDVDQ0NGQkU4OTE0MjE3NkM4OTJFOThDRTZEMUI1N0YzNEU4MzhFNzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlEOiLcLHqFrSeh6og9AOtaNL/
k+Pvvq1UqKXf8401ixfpafrEVUhWZu3ZAHaRKTlnyBBRpA2UIMny3jcRS2yO7fws
NE2g8YsVVJ0bvWQUwmffmjxljL0Jp6JZWzmR0lbcRzyxCiSnnGYDxesgMf2jU45M
qser3iggWjJtZrG8QRZ0hAsFcB9FNbsR0UwJ0xkWOwv/MQ/xPFZ8V6MyaMHI220Q
CL6pGZFo9uy5IwEKq3n+0Eb71jl1ABoXNzfUYMQ8h/ytF3g81roBks+LBOLcjrr6
NGNCN1o2HldjmnPZDVEo8oO6qEhn5dlq1Jz3ZFUkPBmYzJyYzSeiabDUfUiVAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUXMz76JFCF2yJLpjObRtX806DjnUwHwYDVR0j
BBgwFoAUW7foo6v2321Gw9X5HsO3eHDObGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
NWEyMDA3Ny1mYzUzLTQzYTMtYmRhNy1mMzk5NTZkOTkyNmQvMC81QkI3RThBM0FC
RjZERjZENDZDM0Q1RjkxRUMzQjc3ODcwQ0U2QzYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvNUJCN0U4QTNBQkY2REY2RDQ2QzNENUY5MUVDM0I3Nzg3MENF
NkM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1YTIwMDc3LWZjNTMtNDNhMy1i
ZGE3LWYzOTk1NmQ5OTI2ZC8wLzMxMzYzMDJlMzIzMjJlMzczMDJlMzAyZjMyMzMy
ZDMyMzQyMDNkM2UyMDM1MzgzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgFkYwDQYJKoZIhvcN
AQELBQADggEBAAgQizJLvvGlmUfen2GdP0tLeLWRgpkdiKED3yfYQ1uXPfDYlCkD
Gr77lFEur5IiP92rlP+yjF/DtLYlwDs9jiXm1DNsC26WzfrSLbMf15nfZMRAa+7S
W+GLrrbWwlMCczziU5STRR/oYdV3XLntqsBDpPxnayBtdavfidhC0OATzpdN2dHS
teLqyWNwagFZloMSbPzvtW8IObBsO9Q+X/MlPDCAxRFsR7DJhAc5IltCKeg0PzaM
NqS2rzvzg6W5ovOIPw2Nb0pYFFhMe7I0BWiC2gKy1GUDgS9xtSyEXfMUHiEjc/Cd
UdOVeKqENqUbP41L4cP0HRijHTGncO0gcYw=
-----END CERTIFICATE-----
Generated at Wed Jun 24 05:36:58 2026 by rpki-client