Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa
File: 3136302e32322e37322e302f32342d3234203d3e20313532383033.roa (raw, json)
Hash identifier: 98YZ7gCPq90nqsSXRkwey/NMKWt9KydLBAQA+sCboKc=
Subject key identifier: A9:CB:6A:23:28:5F:99:3B:82:59:7C:54:62:70:C2:DC:04:01:3E:8F
Certificate issuer: /CN=E380A055DD3B1E364672B9F0DD6852AE31F93906
Certificate serial: 7D3467239FFA9D811B80E4A66A77A1A2CE23BBC7
Authority key identifier: E3:80:A0:55:DD:3B:1E:36:46:72:B9:F0:DD:68:52:AE:31:F9:39:06
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E380A055DD3B1E364672B9F0DD6852AE31F93906.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa
Signing time: Sun 26 Apr 2026 17:00:00 +0000
ROA not before: Sun 26 Apr 2026 16:55:00 +0000
ROA not after: Sun 25 Apr 2027 17:00:00 +0000
asID: 152803
IP address blocks: 160.22.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:34:67:23:9f:fa:9d:81:1b:80:e4:a6:6a:77:a1:a2:ce:23:bb:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E380A055DD3B1E364672B9F0DD6852AE31F93906
Validity
Not Before: Apr 26 16:55:00 2026 GMT
Not After : Apr 25 17:00:00 2027 GMT
Subject: CN=A9CB6A23285F993B82597C546270C2DC04013E8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e4:5a:f0:1b:40:fb:b7:b9:a8:b1:b5:5a:0d:
5e:b5:3b:74:d3:6e:fe:cd:4a:71:40:63:5f:db:bb:
36:fd:cc:b1:52:f1:e1:19:6e:c0:15:60:2a:a9:ed:
61:43:21:f6:ee:a4:2f:2f:2d:98:3b:89:e9:bc:58:
b6:39:80:de:2f:5b:15:cf:a0:61:c4:26:29:3f:af:
52:4c:70:b2:6e:51:18:d1:26:58:e1:79:ba:99:1b:
c8:0b:3d:fa:79:0a:b4:c7:f2:5b:3c:eb:94:a2:10:
e8:b7:76:29:7b:c3:e3:36:10:13:10:5c:18:d2:f8:
8c:48:09:79:e5:0c:fb:ed:02:47:47:81:ac:5e:f0:
74:db:d6:ce:30:b0:04:81:c1:f9:5d:77:d3:50:b7:
0c:db:41:c8:2b:c6:56:5c:f6:a2:a8:d5:6e:23:06:
38:7b:22:e4:73:ef:06:10:6d:0f:8b:b7:68:41:b1:
a5:d2:73:ab:3b:0e:24:f0:e5:9a:ab:86:ee:7c:a3:
dc:16:ab:05:52:1f:39:c4:d7:19:f6:2a:7a:e4:05:
57:6e:51:14:fd:91:b5:eb:18:eb:fe:4c:04:d4:83:
31:78:25:0d:cd:97:63:b0:d7:8b:2e:52:a0:a6:e3:
82:9d:15:34:29:1c:4e:1f:fb:c9:2d:27:d1:c4:86:
90:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:CB:6A:23:28:5F:99:3B:82:59:7C:54:62:70:C2:DC:04:01:3E:8F
X509v3 Authority Key Identifier:
keyid:E3:80:A0:55:DD:3B:1E:36:46:72:B9:F0:DD:68:52:AE:31:F9:39:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/E380A055DD3B1E364672B9F0DD6852AE31F93906.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E380A055DD3B1E364672B9F0DD6852AE31F93906.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/3136302e32322e37322e302f32342d3234203d3e20313532383033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.72.0/24
Signature Algorithm: sha256WithRSAEncryption
66:02:0e:e2:b2:22:70:06:93:83:5a:e4:fc:0c:c8:17:4b:18:
02:3d:38:a5:e3:5a:41:35:78:cc:a0:9b:31:21:52:6f:7a:46:
85:97:e5:a6:7a:8f:94:2c:a1:61:de:ae:97:4e:7a:2a:2c:a9:
9f:7a:8f:57:68:5a:2b:cb:48:57:26:df:4c:db:a6:32:84:e5:
fa:3e:de:37:1b:83:f1:dc:b4:f9:63:29:ed:9b:43:4f:95:47:
33:4f:65:b4:5b:8c:c7:5c:25:81:4d:02:3b:6b:fc:1a:40:2b:
fd:b1:54:b7:db:cd:b3:10:b6:89:57:61:23:b5:b7:b2:82:6c:
3d:4b:3d:e4:38:15:03:a9:a5:4a:80:e0:0a:da:01:a9:47:64:
0c:88:88:27:8e:9f:c9:d2:38:7d:c2:07:2b:b8:93:44:e9:7f:
58:b4:a0:98:75:8a:e9:f2:4d:af:d9:7e:59:ea:30:ae:cf:76:
54:e2:4b:4d:b3:a2:4b:e7:ed:fb:12:75:6b:19:ed:6b:f7:2c:
66:48:4a:f7:17:c0:bc:00:33:3d:ac:ff:25:9d:65:14:69:2f:
3f:0a:ee:a8:50:91:01:3d:b0:16:8a:3c:34:63:1c:fd:b4:5c:
9b:13:04:a5:e5:69:66:ad:fc:6b:00:f8:1c:c1:f3:d2:53:02:
bf:5c:18:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 05:36:55 2026 by rpki-client