Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa
File: 3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa (raw, json)
Hash identifier: e1+XvHHu2r6u6y3h8uIjJC6MrI76tp0/NwemMwtgl0E=
Subject key identifier: EE:D6:74:49:0D:F6:0C:17:A4:90:DD:18:34:36:3F:43:E2:42:E3:C2
Certificate issuer: /CN=A603F8DE41A0C254133C531FFB98C664160BB962
Certificate serial: 58760414EBFA5B3938CAFC3897AF57D338E4B3F9
Authority key identifier: A6:03:F8:DE:41:A0:C2:54:13:3C:53:1F:FB:98:C6:64:16:0B:B9:62
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A603F8DE41A0C254133C531FFB98C664160BB962.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa
Signing time: Sun 26 Apr 2026 17:02:46 +0000
ROA not before: Sun 26 Apr 2026 16:57:46 +0000
ROA not after: Sun 25 Apr 2027 17:02:46 +0000
asID: 152799
IP address blocks: 160.20.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:76:04:14:eb:fa:5b:39:38:ca:fc:38:97:af:57:d3:38:e4:b3:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A603F8DE41A0C254133C531FFB98C664160BB962
Validity
Not Before: Apr 26 16:57:46 2026 GMT
Not After : Apr 25 17:02:46 2027 GMT
Subject: CN=EED674490DF60C17A490DD1834363F43E242E3C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:45:c6:39:6f:46:fb:e9:c4:43:0c:7c:71:6b:
5b:ed:0a:92:5d:8d:7b:36:18:72:6c:bc:7e:5b:74:
55:d7:98:91:7c:1f:cf:9a:48:eb:f9:30:92:3b:07:
93:30:17:45:f7:7c:d8:a2:ae:d4:89:5a:24:19:54:
2b:cd:c4:6f:91:c1:50:75:c5:0c:11:73:bc:40:67:
8f:ef:0a:d1:03:ec:45:30:2b:bc:9d:33:ad:7f:fe:
e1:29:0e:73:30:94:a9:f5:0b:59:94:00:5a:cb:1e:
20:d6:9a:5a:75:26:8d:70:15:bb:b5:1d:b2:a8:75:
79:ed:63:31:42:66:24:83:c2:54:53:cd:65:ff:e4:
82:e9:58:07:dc:39:66:8a:91:0c:60:75:6f:37:a2:
08:77:c9:d0:a7:ed:0b:11:a3:4c:67:2a:30:62:60:
c7:5d:10:92:96:98:3f:cb:e5:71:ff:29:82:30:7b:
47:d0:d5:c4:62:0e:eb:93:e2:d8:0f:7b:d7:99:20:
1a:9f:b1:6a:00:11:61:49:de:43:ec:14:31:dd:8d:
d3:91:19:33:14:9f:d4:12:d4:86:70:b5:dd:fa:ed:
56:d9:8e:d2:89:13:75:cb:ae:9b:59:e4:33:c7:a4:
33:c6:4a:87:9d:76:5e:35:be:5a:3c:7c:6f:90:d6:
1a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D6:74:49:0D:F6:0C:17:A4:90:DD:18:34:36:3F:43:E2:42:E3:C2
X509v3 Authority Key Identifier:
keyid:A6:03:F8:DE:41:A0:C2:54:13:3C:53:1F:FB:98:C6:64:16:0B:B9:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/A603F8DE41A0C254133C531FFB98C664160BB962.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A603F8DE41A0C254133C531FFB98C664160BB962.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a9b8152e-aa86-4d8a-81da-e71086b2956c/0/3136302e32302e3234342e302f32342d3234203d3e20313532373939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.244.0/24
Signature Algorithm: sha256WithRSAEncryption
84:a1:4d:39:90:b7:54:2d:aa:71:6b:30:9b:41:19:3e:56:c1:
3a:c9:d5:d5:c0:f3:87:da:68:24:fa:65:63:4f:56:0e:96:d4:
3f:73:42:70:2b:ce:b1:a4:8b:15:7f:a6:8d:6a:4f:e8:d7:95:
68:12:1c:92:bd:95:f8:0e:0d:b8:69:da:65:48:fe:99:53:8a:
94:25:94:8c:8c:8e:ff:95:04:0c:34:c2:71:af:40:ac:d6:d1:
8f:6e:16:13:ab:09:fe:4b:63:a5:59:75:ca:65:d4:7e:68:21:
b1:99:11:6a:2f:bb:f5:9d:da:5b:94:19:5e:61:d4:2f:20:d4:
b6:4c:74:bf:d1:84:79:2c:af:e1:f9:53:98:68:e1:30:e7:bd:
ab:70:ab:a4:a1:8a:12:44:98:bb:94:56:63:59:20:a4:3a:b9:
ab:f4:f0:38:e0:95:63:8c:02:67:54:df:22:fc:c9:08:42:f6:
c5:85:6a:08:68:47:f3:fc:59:3a:36:36:8c:35:8a:01:ac:4a:
eb:b1:8c:2e:cf:79:85:7b:1a:5d:43:d3:eb:9f:3e:0d:ca:a1:
20:a8:f5:97:b6:eb:80:94:c4:c5:10:ac:50:b2:ea:aa:77:36:
b9:71:8d:d5:11:43:14:69:e3:75:3c:dc:1f:ff:21:ab:a5:bc:
c0:06:fc:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 05:27:34 2026 by rpki-client