Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS24768.roa
File: AS24768.roa (raw, json)
Hash identifier: bXBvUTnpAIYGZ0afZuR1uDXvlBHES2fbwB1vFH9k1Eg=
Subject key identifier: 20:54:83:23:D8:B7:5F:9B:AE:69:BD:BC:0F:80:3E:D1:AA:4E:40:23
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 222793918136A4CC05D90DAE78A2A41B48602510
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS24768.roa
Signing time: Fri 28 Mar 2025 00:53:59 +0000
ROA not before: Fri 28 Mar 2025 00:48:59 +0000
ROA not after: Fri 27 Mar 2026 00:53:59 +0000
asID: 24768
IP address blocks: 45.87.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:27:93:91:81:36:a4:cc:05:d9:0d:ae:78:a2:a4:1b:48:60:25:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 28 00:48:59 2025 GMT
Not After : Mar 27 00:53:59 2026 GMT
Subject: CN=20548323D8B75F9BAE69BDBC0F803ED1AA4E4023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ec:20:4c:c9:e7:59:c2:50:e9:c1:82:3c:b7:
fe:6c:fb:f4:04:dd:eb:00:db:9c:6e:9e:54:75:f6:
4b:10:d7:92:fc:09:60:04:de:f8:02:46:71:b2:0b:
ab:ac:d9:34:58:c5:0d:96:3c:17:b4:9b:03:c0:3a:
2c:f8:cd:92:df:f4:2c:5c:45:61:b4:98:9f:be:7c:
43:fa:3f:58:98:3a:37:00:89:5c:a1:af:05:04:e5:
c6:da:03:20:14:59:57:a2:d8:a7:db:82:92:c9:52:
b3:fc:9c:12:70:ad:95:a6:51:6a:98:3e:41:ed:27:
0d:42:4c:27:54:eb:c6:04:a2:78:5a:e0:86:8f:7d:
90:f2:93:fa:69:5b:f5:49:fa:23:ac:3b:1a:18:a8:
30:cf:79:f2:7f:e0:d1:cc:fd:35:23:93:35:ca:ce:
aa:1b:df:df:6b:78:0e:77:f0:8c:a4:55:81:21:88:
44:cf:46:a7:09:0a:b3:57:a7:63:cd:dd:c0:25:ba:
6e:4a:df:86:f9:50:0f:38:0c:73:07:fa:da:05:5c:
21:6f:85:4b:e9:60:10:da:c1:d4:0e:0e:37:80:51:
92:48:f0:72:81:9f:6b:05:67:b0:d2:b1:b2:a4:40:
03:2a:3c:da:e7:9b:3a:ad:bd:26:ae:5d:31:f6:ce:
26:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:54:83:23:D8:B7:5F:9B:AE:69:BD:BC:0F:80:3E:D1:AA:4E:40:23
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS24768.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.187.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:e4:cc:7b:1d:26:69:3c:16:09:b9:ee:a5:89:00:ce:a2:3b:
a1:ce:26:1d:4f:bd:cd:c0:99:b5:53:ef:9d:c5:76:dc:a0:00:
21:3b:fd:25:25:de:25:2c:71:3b:59:60:7f:6b:16:73:cb:49:
ac:56:45:e4:88:92:a6:f5:9c:a7:b3:8f:f7:db:59:07:34:3a:
a5:da:67:cb:ff:82:6f:26:40:27:52:1a:6a:c0:8c:d3:99:fa:
ef:b0:ca:d7:16:4d:e9:d6:27:42:f5:fb:47:09:c3:eb:e2:dd:
1f:5d:91:f6:f7:c7:3f:57:57:e3:4e:1c:32:a8:ee:b8:37:64:
97:44:bd:b0:1a:8e:1b:cf:ef:28:d9:50:e0:fa:0a:9d:a0:3c:
be:95:4d:f7:41:30:60:e2:0b:3a:c9:8b:06:1a:36:36:90:dc:
ff:1b:33:ec:7d:cd:ab:b8:3e:8f:0e:d7:51:90:be:31:de:03:
f7:26:2b:71:56:2a:2f:85:44:18:b0:e5:37:7e:05:7f:8b:64:
06:3e:6f:32:dc:64:d5:69:d2:d4:de:dd:05:fd:f8:06:30:36:
0a:d3:ad:b1:26:82:79:3e:08:1b:87:0e:dc:b9:64:f7:50:68:
d5:df:75:58:47:ee:f0:86:f8:db:1c:5b:3b:fe:a5:56:cf:a1:
f1:23:63:e9
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUIieTkYE2pMwF2Q2ueKKkG0hgJRAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNTAzMjgwMDQ4NTlaFw0yNjAzMjcwMDUzNTlaMDMxMTAvBgNV
BAMTKDIwNTQ4MzIzRDhCNzVGOUJBRTY5QkRCQzBGODAzRUQxQUE0RTQwMjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc7CBMyedZwlDpwYI8t/5s+/QE
3esA25xunlR19ksQ15L8CWAE3vgCRnGyC6us2TRYxQ2WPBe0mwPAOiz4zZLf9Cxc
RWG0mJ++fEP6P1iYOjcAiVyhrwUE5cbaAyAUWVei2KfbgpLJUrP8nBJwrZWmUWqY
PkHtJw1CTCdU68YEonha4IaPfZDyk/ppW/VJ+iOsOxoYqDDPefJ/4NHM/TUjkzXK
zqob399reA538IykVYEhiETPRqcJCrNXp2PN3cAlum5K34b5UA84DHMH+toFXCFv
hUvpYBDawdQODjeAUZJI8HKBn2sFZ7DSsbKkQAMqPNrnmzqtvSauXTH2ziaNAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUIFSDI9i3X5uuab28D4A+0apOQCMwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjQ3Njgucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtV7sw
DQYJKoZIhvcNAQELBQADggEBAD7kzHsdJmk8Fgm57qWJAM6iO6HOJh1Pvc3AmbVT
753FdtygACE7/SUl3iUscTtZYH9rFnPLSaxWReSIkqb1nKezj/fbWQc0OqXaZ8v/
gm8mQCdSGmrAjNOZ+u+wytcWTenWJ0L1+0cJw+vi3R9dkfb3xz9XV+NOHDKo7rg3
ZJdEvbAajhvP7yjZUOD6Cp2gPL6VTfdBMGDiCzrJiwYaNjaQ3P8bM+x9zau4Po8O
11GQvjHeA/cmK3FWKi+FRBiw5Td+BX+LZAY+bzLcZNVp0tTe3QX9+AYwNgrTrbEm
gnk+CBuHDty5ZPdQaNXfdVhH7vCG+NscWzv+pVbPofEjY+k=
-----END CERTIFICATE-----
Generated at Sat Apr 5 04:29:16 2025 by rpki-client