Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa
File: 3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa (raw, json)
Hash identifier: TTCOPhlQOLheUlXKHYzJF9d38fdA7EUTqfdVW+FV7sg=
Subject key identifier: AB:CA:37:99:19:EC:D3:80:4F:2A:9E:CC:09:0E:4D:24:83:5C:C7:10
Certificate issuer: /CN=1391AB90F1BF56A92FBDF7B8F48207992410775E
Certificate serial: 0FD954B1BE9DF98EB51983C047FA2B6DFACDE67F
Authority key identifier: 13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa
Signing time: Fri 24 Apr 2026 05:00:47 +0000
ROA not before: Fri 24 Apr 2026 04:55:47 +0000
ROA not after: Fri 23 Apr 2027 05:00:47 +0000
asID: 152775
IP address blocks: 160.19.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:d9:54:b1:be:9d:f9:8e:b5:19:83:c0:47:fa:2b:6d:fa:cd:e6:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1391AB90F1BF56A92FBDF7B8F48207992410775E
Validity
Not Before: Apr 24 04:55:47 2026 GMT
Not After : Apr 23 05:00:47 2027 GMT
Subject: CN=ABCA379919ECD3804F2A9ECC090E4D24835CC710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d3:a8:f7:4d:69:d9:22:8f:1b:60:85:a6:1a:
81:8c:fa:d9:45:17:81:ac:ab:d3:28:a0:df:a5:7b:
21:da:e0:37:10:74:28:89:fc:7d:2e:7c:c9:91:19:
86:f6:35:2e:85:52:79:ea:65:54:35:57:73:dd:24:
73:c0:13:0d:cc:1d:a5:d4:5f:e7:ef:bd:b6:86:d6:
24:f9:e8:7f:b2:f9:be:8e:5d:ca:c5:42:f3:24:1b:
78:bf:8f:13:9a:ef:2f:4b:64:99:98:94:11:ac:b2:
26:58:3c:85:bc:1f:20:aa:56:7c:9f:33:0b:3e:cf:
d4:b3:25:12:85:b8:85:c2:1a:8e:93:1a:98:fd:b5:
0a:7a:47:08:53:58:68:0a:6b:5d:ff:38:ab:89:71:
2e:75:60:1a:1f:6e:5f:02:0d:81:7d:fb:13:74:9c:
9b:14:ac:14:d9:3c:18:df:c8:fc:e1:c4:58:9e:4b:
cc:b9:8f:2c:bc:e5:f6:26:b3:38:de:6a:4c:4d:a8:
a5:89:98:26:3a:e8:4a:4e:aa:4a:34:fd:77:17:c9:
64:97:2c:8d:48:69:0e:3c:33:95:e5:43:19:af:5a:
6d:7a:3a:a6:b4:37:b9:b3:ad:3c:27:48:6e:03:ae:
f2:f9:64:0c:89:1a:14:68:60:fd:b0:fd:02:d0:fa:
8c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CA:37:99:19:EC:D3:80:4F:2A:9E:CC:09:0E:4D:24:83:5C:C7:10
X509v3 Authority Key Identifier:
keyid:13:91:AB:90:F1:BF:56:A9:2F:BD:F7:B8:F4:82:07:99:24:10:77:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/1391AB90F1BF56A92FBDF7B8F48207992410775E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/1391AB90F1BF56A92FBDF7B8F48207992410775E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b9b9bd38-2efa-4d4c-a956-42492a3e6000/0/3136302e31392e3134372e302f32342d3234203d3e20313532373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.19.147.0/24
Signature Algorithm: sha256WithRSAEncryption
54:4e:0f:d6:f4:98:44:64:b3:b2:53:32:1b:0a:10:1a:7f:70:
b8:10:97:70:d9:da:56:51:50:53:d6:8e:db:11:65:ba:da:51:
56:54:ad:05:2d:ca:60:3e:51:f8:3c:d6:3a:60:a3:59:e9:24:
72:cb:7c:9c:46:bf:a2:c7:41:6d:dc:37:d3:d4:ba:ff:36:9a:
44:51:41:05:da:b8:52:1f:d8:0c:d1:5d:5d:8c:05:a7:8e:19:
78:ad:e9:6e:37:24:7f:01:4a:6b:05:1c:af:01:6d:70:01:e3:
7a:94:fd:0c:f3:ed:58:68:6e:43:6c:1a:dd:42:f5:13:7a:34:
ce:98:ce:52:47:01:7d:e9:a6:f6:06:b7:ef:a0:04:75:c3:01:
14:43:3c:4e:c6:93:11:5a:ef:8e:fb:b8:ef:05:1a:73:2f:c0:
4c:71:6c:80:1b:a3:ed:cb:d2:db:fc:73:92:af:72:f4:7f:18:
79:7a:9e:b2:50:98:e2:e8:82:19:9a:0b:b5:00:ea:f9:f5:e2:
b8:40:a8:56:d1:2d:e2:5f:37:45:fd:22:8b:be:ba:90:cb:d0:
42:c4:fd:a4:18:d8:b0:18:c9:ba:58:0a:e9:59:28:0f:c7:15:
2f:0b:c3:a3:22:e7:39:1c:8e:2b:e4:7d:d7:41:7e:91:e9:e8:
ac:bb:09:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 05:32:50 2026 by rpki-client