Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa
File: 3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa (raw, json)
Hash identifier: cG3ev/EAklM2l4r4BaIsIhcGWZl0YW3An8rpvMEi3TY=
Subject key identifier: 5C:D5:F5:14:65:59:AA:59:09:13:E7:22:FF:D7:C8:81:85:DA:59:7D
Certificate issuer: /CN=1391AB90F1BF56A92FBDF7B8F48207992410775E
Certificate serial: 2820F6F481F67843D61726C4887E994ACFB8F8E7
Authority key identifier: 13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa
Signing time: Fri 24 Apr 2026 05:00:47 +0000
ROA not before: Fri 24 Apr 2026 04:55:47 +0000
ROA not after: Fri 23 Apr 2027 05:00:47 +0000
asID: 152775
IP address blocks: 160.19.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:20:f6:f4:81:f6:78:43:d6:17:26:c4:88:7e:99:4a:cf:b8:f8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1391AB90F1BF56A92FBDF7B8F48207992410775E
Validity
Not Before: Apr 24 04:55:47 2026 GMT
Not After : Apr 23 05:00:47 2027 GMT
Subject: CN=5CD5F5146559AA590913E722FFD7C88185DA597D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:40:8e:f9:1d:2c:1b:ef:6f:0e:95:7f:df:0b:
14:5e:88:29:be:10:2f:4c:a2:bf:b4:b9:57:c6:28:
0b:97:c8:3e:9e:c4:6b:1f:2c:65:f0:44:95:bb:98:
5d:c8:f1:17:7a:94:7d:03:35:f3:bb:cc:2d:77:12:
c3:e4:82:a7:75:8d:92:0d:2e:45:d4:7f:d9:9a:a6:
f8:31:32:ac:a4:1e:63:f2:f1:81:b2:1d:f0:30:a1:
33:f7:68:8c:2b:ea:6a:86:b9:83:2b:ca:20:c4:6b:
78:15:1d:83:2f:c8:63:39:30:7f:4c:6f:f0:f0:ca:
70:59:d0:00:1e:5a:b4:40:86:47:f0:e9:44:23:c1:
47:57:c8:52:c9:e0:24:4f:c6:31:ea:02:99:a6:66:
2d:14:02:6c:2c:47:01:0c:1f:a5:bf:f0:b4:80:88:
38:64:6c:0e:05:31:e6:3f:c5:45:e5:e2:49:3f:c0:
c1:b2:db:04:e0:5a:70:4a:5f:61:4d:1e:6e:50:9c:
82:89:f1:02:0d:8f:97:42:0a:b8:cd:0c:89:83:e7:
55:cc:12:eb:75:2d:81:f6:69:41:60:33:23:b6:db:
24:41:97:09:a4:66:06:63:74:b3:77:1d:00:45:6a:
8e:31:3e:09:f0:ed:4e:45:7b:7f:44:6c:54:ed:32:
0c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D5:F5:14:65:59:AA:59:09:13:E7:22:FF:D7:C8:81:85:DA:59:7D
X509v3 Authority Key Identifier:
keyid:13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134362e302f32342d3234203d3e20313532373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.19.146.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:0d:25:25:df:61:49:76:c1:dc:a9:2f:00:f7:65:a8:41:61:
04:f0:9d:68:e3:8b:77:09:c5:42:03:22:05:20:6d:1b:98:04:
fb:1c:d6:f5:26:47:8c:52:10:b6:33:d8:28:4c:50:45:73:38:
3c:71:12:6f:bc:13:0d:4a:df:13:31:be:1c:35:d0:71:45:bb:
76:02:68:b5:a2:58:b7:6c:1b:d1:9b:dd:a1:f9:40:2a:f5:7c:
60:d3:13:2c:0d:14:5a:e4:47:1c:a0:1e:d0:9d:b1:3b:f5:a5:
0f:98:51:5f:ba:88:7b:b6:a7:8c:05:e8:3c:9a:8c:2f:ac:73:
ff:2a:27:08:f6:c9:9e:b4:60:9b:14:e3:ae:eb:39:e4:9a:2a:
bc:96:ea:ab:0e:3c:68:f9:ba:99:1c:04:a9:94:fa:bd:e4:c4:
2d:76:19:e8:46:e5:2a:26:35:e5:f3:b8:8e:fa:34:36:49:60:
d4:7c:f2:f7:9b:35:09:0d:73:08:6f:45:36:1f:5a:54:0d:9d:
00:68:c1:b8:18:b1:ad:c6:56:48:8d:19:70:b0:a6:62:2d:ef:
69:17:ba:9b:50:af:8b:b1:a7:e5:f9:64:ce:ae:76:d0:5f:eb:
04:ff:44:08:fd:d1:9c:f3:30:2a:e6:79:52:b7:ff:b4:8f:dc:
ec:99:e9:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 05:33:21 2026 by rpki-client