Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/323430333a653434303a3a2f33322d3332203d3e20313338303936.roa
File: 323430333a653434303a3a2f33322d3332203d3e20313338303936.roa (raw, json)
Hash identifier: LCQSQuR36QnsYuiFhRCll1BJ93hq4PkkvJhE+ymKPRk=
Subject key identifier: 24:6A:2D:42:92:DC:1C:7C:E8:7C:96:D2:A8:BE:E5:54:56:0C:70:92
Certificate issuer: /CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86
Certificate serial: 78A1F807060D2C8285A7AA08839A4386A8E402D6
Authority key identifier: B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/323430333a653434303a3a2f33322d3332203d3e20313338303936.roa
Signing time: Mon 20 Apr 2026 05:00:01 +0000
ROA not before: Mon 20 Apr 2026 04:55:01 +0000
ROA not after: Mon 19 Apr 2027 05:00:01 +0000
asID: 138096
IP address blocks: 2403:e440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:a1:f8:07:06:0d:2c:82:85:a7:aa:08:83:9a:43:86:a8:e4:02:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86
Validity
Not Before: Apr 20 04:55:01 2026 GMT
Not After : Apr 19 05:00:01 2027 GMT
Subject: CN=246A2D4292DC1C7CE87C96D2A8BEE554560C7092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e8:49:ef:10:0c:ab:5c:0a:d4:18:2f:25:0d:
1b:d3:72:b0:b9:d7:80:02:17:32:c1:85:e5:5d:00:
d4:f3:be:0d:cd:f6:b3:72:ad:8e:ae:08:9f:7a:5d:
85:86:bf:bb:75:25:f5:20:22:d0:38:55:67:88:c0:
c8:8a:fa:94:af:ba:f4:0c:0e:56:7a:2b:a6:75:de:
81:03:f4:0a:3b:76:e8:57:f1:22:30:c9:9d:8e:93:
92:fd:9b:ee:3d:d2:b6:e1:27:60:6e:6b:69:fe:2c:
ad:72:d3:fe:00:1e:f7:00:53:24:34:bf:33:50:11:
0b:0c:1c:62:a4:45:20:e3:38:ee:ab:00:0b:fa:8f:
ba:5c:f0:fa:28:db:62:79:f4:1c:ee:51:1e:be:bd:
fd:01:74:99:1c:73:a2:59:8c:d3:79:4d:dd:ad:52:
1f:c1:94:c5:86:d3:b6:6f:c6:b2:19:55:a9:d9:b8:
93:67:8e:91:5f:08:5f:69:d1:fd:11:99:b6:4d:e7:
7e:10:87:86:74:04:0e:20:43:ab:1c:16:ee:bf:a6:
10:8c:1b:b4:e6:8a:04:0a:70:22:8b:12:b1:52:c9:
0a:7b:e2:e5:f9:4a:75:8d:62:07:77:18:4a:53:03:
73:e3:04:03:48:ca:26:28:d1:ae:4f:1b:aa:c4:1b:
41:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6A:2D:42:92:DC:1C:7C:E8:7C:96:D2:A8:BE:E5:54:56:0C:70:92
X509v3 Authority Key Identifier:
keyid:B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/323430333a653434303a3a2f33322d3332203d3e20313338303936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:e440::/32
Signature Algorithm: sha256WithRSAEncryption
25:bc:a0:42:c2:c9:c3:f9:71:98:56:dc:32:39:d8:3f:63:5a:
b2:9c:f9:6c:2d:75:2e:20:65:24:56:d8:1d:dc:4b:87:3b:2c:
85:48:9a:33:fb:75:85:53:84:71:ea:1f:e4:1d:f9:85:be:31:
cf:c5:ff:c2:8b:17:69:df:9f:80:ed:aa:c8:f7:e8:3a:1d:d2:
f7:59:a0:58:31:83:56:b4:78:5a:ca:e9:45:80:c1:4d:4f:49:
8e:a1:a1:2e:80:20:4d:0c:a3:ff:9f:0c:dc:41:6e:3b:d6:a3:
a5:3b:a3:91:18:64:60:cc:60:5d:c6:84:f4:c8:2d:a0:62:1f:
60:be:c2:f1:cf:c6:fc:e6:1f:7f:1b:1d:f1:04:32:65:51:40:
21:e2:34:9d:52:58:8a:75:6e:8a:32:b1:c8:78:25:90:37:b3:
63:e3:3b:7c:af:b2:74:47:05:31:f5:5e:fe:08:92:ae:31:89:
35:58:db:98:b5:58:5a:97:1d:e7:bc:1a:fa:cf:fa:e0:d0:e3:
22:a4:d2:dc:15:41:51:a1:c3:3c:9b:ab:b1:a2:77:da:2a:c5:
9f:f3:a5:98:a6:57:82:30:ed:f6:66:0d:ef:ad:0a:4f:b3:e8:
32:f6:ae:9c:d2:49:8c:0d:19:8a:ff:9b:48:b2:da:9d:1c:d1:
59:50:1f:e0
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgIUeKH4BwYNLIKFp6oIg5pDhqjkAtYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEz
N0M4M0E4NjAeFw0yNjA0MjAwNDU1MDFaFw0yNzA0MTkwNTAwMDFaMDMxMTAvBgNV
BAMTKDI0NkEyRDQyOTJEQzFDN0NFODdDOTZEMkE4QkVFNTU0NTYwQzcwOTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf6EnvEAyrXArUGC8lDRvTcrC5
14ACFzLBheVdANTzvg3N9rNyrY6uCJ96XYWGv7t1JfUgItA4VWeIwMiK+pSvuvQM
DlZ6K6Z13oED9Ao7duhX8SIwyZ2Ok5L9m+490rbhJ2Bua2n+LK1y0/4AHvcAUyQ0
vzNQEQsMHGKkRSDjOO6rAAv6j7pc8Poo22J59BzuUR6+vf0BdJkcc6JZjNN5Td2t
Uh/BlMWG07ZvxrIZVanZuJNnjpFfCF9p0f0RmbZN534Qh4Z0BA4gQ6scFu6/phCM
G7TmigQKcCKLErFSyQp74uX5SnWNYgd3GEpTA3PjBANIyiYo0a5PG6rEG0G9AgMB
AAGjggIzMIICLzAdBgNVHQ4EFgQUJGotQpLcHHzofJbSqL7lVFYMcJIwHwYDVR0j
BBgwFoAUtgXXH+taHb5Wds+ss5SrujfIOoYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
NWRmZjliMy05MDQxLTRkZDYtYjdhYi0wMjA2MGQ2NWQwOWEvMC9CNjA1RDcxRkVC
NUExREJFNTY3NkNGQUNCMzk0QUJCQTM3QzgzQTg2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEzN0M4
M0E4Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i
N2FiLTAyMDYwZDY1ZDA5YS8wLzMyMzQzMDMzM2E2NTM0MzQzMDNhM2EyZjMzMzIy
ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD5EAwDQYJKoZI
hvcNAQELBQADggEBACW8oELCycP5cZhW3DI52D9jWrKc+WwtdS4gZSRW2B3cS4c7
LIVImjP7dYVThHHqH+Qd+YW+Mc/F/8KLF2nfn4Dtqsj36Dod0vdZoFgxg1a0eFrK
6UWAwU1PSY6hoS6AIE0Mo/+fDNxBbjvWo6U7o5EYZGDMYF3GhPTILaBiH2C+wvHP
xvzmH38bHfEEMmVRQCHiNJ1SWIp1booysch4JZA3s2PjO3yvsnRHBTH1Xv4Ikq4x
iTVY25i1WFqXHee8GvrP+uDQ4yKk0twVQVGhwzybq7Gid9oqxZ/zpZimV4Iw7fZm
De+tCk+z6DL2rpzSSYwNGYr/m0iy2p0c0VlQH+A=
-----END CERTIFICATE-----
Generated at Fri May 1 16:02:07 2026 by rpki-client