Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/3135372e36362e35372e302f32342d3234203d3e20313530393835.roa
File: 3135372e36362e35372e302f32342d3234203d3e20313530393835.roa (raw, json)
Hash identifier: tc60p0NRTDdFI1yZmVwvl4o9KcGg/DMmasdGwfkDrBw=
Subject key identifier: 5C:87:19:29:29:FF:94:53:F6:B0:E2:98:EF:4A:6C:45:13:BD:EE:13
Certificate issuer: /CN=8999E6DA986A355F868ABD73E4E2AADC08244F29
Certificate serial: 65E61C9D8DBE086BB3B100C97325047A19B375D9
Authority key identifier: 89:99:E6:DA:98:6A:35:5F:86:8A:BD:73:E4:E2:AA:DC:08:24:4F:29
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8999E6DA986A355F868ABD73E4E2AADC08244F29.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/3135372e36362e35372e302f32342d3234203d3e20313530393835.roa
Signing time: Wed 22 Apr 2026 11:00:02 +0000
ROA not before: Wed 22 Apr 2026 10:55:02 +0000
ROA not after: Wed 21 Apr 2027 11:00:02 +0000
asID: 150985
IP address blocks: 157.66.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:e6:1c:9d:8d:be:08:6b:b3:b1:00:c9:73:25:04:7a:19:b3:75:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8999E6DA986A355F868ABD73E4E2AADC08244F29
Validity
Not Before: Apr 22 10:55:02 2026 GMT
Not After : Apr 21 11:00:02 2027 GMT
Subject: CN=5C87192929FF9453F6B0E298EF4A6C4513BDEE13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7a:8a:3c:d3:79:e0:a8:c3:aa:0f:84:c6:33:
31:49:5b:e7:96:b9:48:eb:cd:a5:c0:c3:99:37:12:
fc:d6:cf:0a:74:a8:39:af:09:2b:f1:5b:89:c7:19:
79:1f:33:47:d8:24:d9:8c:e3:a6:c2:91:0a:33:2f:
4d:58:3b:46:e2:a6:fc:55:8e:b4:0c:d0:f5:c6:ac:
7e:62:59:dd:ca:8c:b0:b3:18:ee:58:41:70:d2:7a:
e3:45:6b:1e:c7:09:76:dd:bc:13:4a:fd:16:3c:9c:
63:4a:f3:e8:a6:5d:a3:bb:0d:46:af:43:2f:17:65:
7b:8d:85:64:0b:b6:9b:f4:4c:aa:60:91:ee:06:93:
c7:6f:4d:5f:7c:28:7d:e0:d2:8c:57:0f:7e:f0:dc:
fd:2d:3b:e9:24:49:d2:ae:90:1e:ae:db:57:85:88:
85:9f:b4:5e:ea:cf:07:29:a0:b3:d6:ea:1d:5b:39:
ec:66:41:38:09:80:f1:92:50:b0:c2:29:47:05:8d:
e5:ba:c1:f0:3f:62:ec:3a:ed:2c:b1:f4:76:7e:46:
44:45:3f:d4:7c:a4:24:ae:15:3c:34:11:b5:5b:88:
44:e3:e5:5b:01:1d:45:c7:74:6e:2b:31:50:0b:54:
7c:9f:47:35:8e:4e:ea:fe:b7:45:05:51:bb:bc:01:
9b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:87:19:29:29:FF:94:53:F6:B0:E2:98:EF:4A:6C:45:13:BD:EE:13
X509v3 Authority Key Identifier:
keyid:89:99:E6:DA:98:6A:35:5F:86:8A:BD:73:E4:E2:AA:DC:08:24:4F:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/8999E6DA986A355F868ABD73E4E2AADC08244F29.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8999E6DA986A355F868ABD73E4E2AADC08244F29.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/3135372e36362e35372e302f32342d3234203d3e20313530393835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.66.57.0/24
Signature Algorithm: sha256WithRSAEncryption
35:29:ad:d3:c5:ad:6e:88:c4:cc:89:68:b8:d4:e9:ac:47:4a:
8d:90:4d:6c:25:e0:5d:6b:bd:28:82:6e:c0:1b:61:2c:44:30:
7c:42:75:11:d9:a8:aa:09:30:c4:03:c3:b9:7a:a3:05:66:d7:
70:53:02:93:1c:96:be:31:94:f6:8a:00:8b:b8:da:62:03:5e:
c5:0f:c4:99:01:0e:a1:9c:ab:ce:f5:8d:f5:69:2e:4e:3f:23:
4c:31:c9:a3:4b:87:26:25:a8:ea:46:f6:da:83:aa:44:0d:26:
a1:30:2c:d5:7e:3d:c8:0d:9f:55:ba:51:df:fd:8f:81:07:75:
0a:8d:66:8e:42:4b:fe:4d:f1:80:b3:0e:8a:d6:26:64:67:d2:
25:a1:3b:f3:c1:9a:5b:f3:e7:8e:ac:91:6c:bb:d0:62:cc:1c:
ba:b7:ad:d0:e8:19:3c:68:e2:51:fb:29:79:5d:02:1a:1d:cb:
53:13:48:98:96:32:be:34:14:25:48:ea:4a:a9:b0:3c:b9:c8:
16:9e:3e:d8:8c:9f:c2:1d:4a:71:79:a9:ab:6b:88:da:34:8d:
06:75:bf:c0:fe:f0:0d:1a:72:f0:28:97:75:71:05:03:d2:58:
39:74:86:6f:2e:88:1c:87:ff:f7:d4:6c:a2:48:7f:ce:c0:5b:
fa:de:1a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 05:35:20 2026 by rpki-client