Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/3136302e32322e33342e302f32332d3234203d3e20313532383136.roa
File: 3136302e32322e33342e302f32332d3234203d3e20313532383136.roa (raw, json)
Hash identifier: eJ/l1zwRYUsN6tob83NohJM+9jYctBFJwzuDQDbDu6Y=
Subject key identifier: 80:3C:36:F3:BB:31:4A:30:83:B3:CA:AA:0D:C2:FE:0E:94:B7:10:94
Certificate issuer: /CN=C6E5FF54770B28DB44FDD655765364797010697B
Certificate serial: 0C43FC2C6B0C48DE2E8B61EF451AE1D3CCE326D5
Authority key identifier: C6:E5:FF:54:77:0B:28:DB:44:FD:D6:55:76:53:64:79:70:10:69:7B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C6E5FF54770B28DB44FDD655765364797010697B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/3136302e32322e33342e302f32332d3234203d3e20313532383136.roa
Signing time: Tue 28 Apr 2026 12:00:03 +0000
ROA not before: Tue 28 Apr 2026 11:55:03 +0000
ROA not after: Tue 27 Apr 2027 12:00:03 +0000
asID: 152816
IP address blocks: 160.22.34.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:43:fc:2c:6b:0c:48:de:2e:8b:61:ef:45:1a:e1:d3:cc:e3:26:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C6E5FF54770B28DB44FDD655765364797010697B
Validity
Not Before: Apr 28 11:55:03 2026 GMT
Not After : Apr 27 12:00:03 2027 GMT
Subject: CN=803C36F3BB314A3083B3CAAA0DC2FE0E94B71094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:2c:20:35:b2:31:24:8a:d3:b5:a4:8f:b3:af:
b7:66:b9:40:30:0b:76:bc:97:d4:28:b6:fe:b7:0d:
a7:14:5e:8b:25:eb:c6:b6:32:7e:56:b9:39:89:78:
98:35:77:69:48:66:b2:90:de:76:ab:9c:93:7b:c9:
a4:05:04:af:b7:b8:52:ae:dc:53:26:e8:4c:d9:3b:
de:a2:37:17:53:cf:16:fc:e4:30:4e:fc:80:48:5c:
30:8e:fd:27:a7:f9:21:3a:ba:86:32:5f:01:70:d7:
fa:90:7a:71:ef:23:e8:82:ed:ec:1c:3c:08:a7:ae:
e2:46:68:3c:1f:ee:00:ef:90:84:ef:a3:81:9e:55:
38:60:3a:02:14:a9:37:d4:9c:85:db:a0:22:89:4c:
38:f7:d4:70:1e:42:c8:57:39:5e:ae:a1:5c:ce:5b:
50:8e:71:16:7d:3d:31:10:a2:8a:d6:b5:9e:61:62:
ad:da:3e:10:9e:97:54:bc:0b:8f:b1:2d:1a:db:81:
8b:c6:95:6a:c2:83:d4:73:36:d6:af:89:4a:b2:d2:
6f:68:b5:fd:46:1e:1d:5e:85:ee:6c:25:40:5e:4f:
68:ab:53:c8:a1:f0:56:d3:c0:69:8f:67:cb:56:d2:
65:1e:12:5f:86:74:35:94:bc:ce:c5:b8:a5:88:12:
d4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3C:36:F3:BB:31:4A:30:83:B3:CA:AA:0D:C2:FE:0E:94:B7:10:94
X509v3 Authority Key Identifier:
keyid:C6:E5:FF:54:77:0B:28:DB:44:FD:D6:55:76:53:64:79:70:10:69:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/C6E5FF54770B28DB44FDD655765364797010697B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C6E5FF54770B28DB44FDD655765364797010697B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb88a513-debf-4d5c-951b-d9759a092de7/0/3136302e32322e33342e302f32332d3234203d3e20313532383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.34.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:87:39:49:b3:ee:31:d9:92:a8:74:f1:60:07:b7:f7:55:4a:
17:9a:1f:32:b8:79:b7:89:a1:96:66:13:a9:80:4e:47:49:c3:
7e:56:30:c9:8c:42:8b:ec:a9:30:ef:c6:3a:c7:06:23:f7:2a:
9c:2b:78:dd:e0:1b:2b:2a:2f:58:de:80:87:da:39:f8:c1:8e:
52:6a:ab:6d:60:5c:b2:71:a0:e5:94:97:ef:40:34:d5:a3:d8:
3b:2c:2b:b5:0c:7a:78:dc:0e:cd:b2:95:95:14:02:b4:f0:7e:
7b:95:58:80:d4:47:6e:ea:63:f2:a0:de:9f:2e:cc:48:de:1c:
2a:cd:88:ec:bc:77:37:cc:a8:82:1f:55:ed:e5:10:4b:82:d4:
5e:02:ee:61:ef:8d:ff:0c:1a:52:69:f9:6b:fe:c9:8a:f0:1b:
80:92:2e:dd:31:66:22:41:00:86:7f:06:81:85:c7:62:46:74:
11:e8:1a:ba:1e:ee:e8:b5:14:d0:dd:c7:c6:6c:3d:62:8e:25:
36:fd:b3:31:e0:c1:6f:dc:e5:97:34:83:97:d3:8b:93:6f:51:
48:f7:3f:ce:af:80:50:1c:c2:38:30:23:8a:e3:5e:d0:3b:60:
c1:f4:6c:55:65:87:a3:51:ee:d3:16:47:36:85:ac:11:f9:44:
57:39:c3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 05:33:38 2026 by rpki-client