Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/108/34352e38352e3234382e302f32342d3234203d3e2030.roa
File: 34352e38352e3234382e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: czaONlQnYYA6wB7jfzHNrYdFYLH/om7aZJqUs56UHzE=
Subject key identifier: 42:91:20:48:D1:5C:F8:A5:40:88:5A:30:7C:FC:19:07:BF:02:BC:CA
Certificate issuer: /CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Certificate serial: 28293056C1C887316708A0E138AD3D2B39044724
Authority key identifier: 79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/108/34352e38352e3234382e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:23:04 +0000
ROA not before: Fri 03 Mar 2023 16:18:04 +0000
ROA not after: Fri 01 Mar 2024 16:23:04 +0000
asID: 0
IP address blocks: 45.85.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:29:30:56:c1:c8:87:31:67:08:a0:e1:38:ad:3d:2b:39:04:47:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Validity
Not Before: Mar 3 16:18:04 2023 GMT
Not After : Mar 1 16:23:04 2024 GMT
Subject: CN=42912048D15CF8A540885A307CFC1907BF02BCCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:08:ec:32:d0:4c:dd:1d:7e:5e:a6:0c:c1:ee:
d1:7a:b2:17:e1:1d:c3:f7:28:89:95:ce:26:7e:80:
92:88:1e:9e:01:64:a2:f8:1d:b5:8a:5d:83:99:45:
c6:d2:ad:1b:21:30:cd:2a:11:a3:87:9e:f2:79:32:
b4:25:c7:b0:af:a3:31:42:a8:5d:da:54:71:7d:e4:
bf:44:dc:c1:5a:e4:b4:32:e4:1b:66:9a:de:dc:fa:
bf:30:f2:a8:2b:c2:fd:3f:80:91:43:d6:55:ba:d0:
ce:4f:f0:1f:a4:95:dd:c9:3d:7c:ac:96:c4:6c:5e:
66:63:9b:9e:04:95:d8:b0:57:1e:21:9e:a3:67:fc:
89:46:8a:e4:01:9a:12:76:a6:c0:df:93:11:53:e5:
b6:e7:cd:69:c1:d0:fc:93:28:5a:00:13:a5:cc:27:
74:5a:1d:65:d7:5c:4a:10:5d:f7:74:95:cc:79:6c:
ee:c9:05:aa:1b:c3:ff:16:cf:a7:bf:76:82:69:76:
ec:4e:a6:bb:1c:19:55:40:b5:3c:d1:40:44:54:d1:
3f:0b:ac:86:f6:ba:55:b7:e7:e2:06:bd:b0:1b:99:
ac:be:a3:80:b3:5b:35:dc:29:f5:ca:3c:d9:99:1b:
c7:a4:42:40:02:ad:cb:db:73:08:43:68:9f:36:23:
4a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:91:20:48:D1:5C:F8:A5:40:88:5A:30:7C:FC:19:07:BF:02:BC:CA
X509v3 Authority Key Identifier:
keyid:79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/79131A4E3CC0851C2ED1363D6982E7436D3DF9F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/34352e38352e3234382e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:f2:83:cc:03:a9:93:d3:e7:73:0d:f5:84:37:7b:43:b0:10:
90:aa:8f:c2:33:26:92:b9:da:ca:62:7f:69:45:95:3d:5f:3d:
56:e7:f7:96:08:c5:2d:66:44:80:dd:72:2d:16:80:5b:2d:3a:
6e:95:01:99:f8:a0:a5:2c:d2:fb:76:ba:d4:3c:19:83:ae:43:
f2:b2:02:f0:6d:1f:96:71:46:99:4a:cd:08:d6:5c:1d:e2:ad:
53:16:94:65:fa:5a:69:49:93:a2:f7:27:d1:21:d6:53:4f:d6:
0f:d0:f5:2c:c3:77:45:6e:7b:30:6a:fe:e5:37:35:b9:5e:b4:
19:26:6d:6d:87:7e:63:80:6d:f4:a8:34:76:e8:3d:24:f3:9c:
06:9a:c7:58:80:51:fb:09:6d:7d:17:73:5c:62:83:c6:40:39:
ba:e1:a1:92:72:55:4b:47:b6:e8:81:f3:ae:ce:f1:b9:0b:74:
b8:7f:a7:a5:81:c6:07:f4:9b:b8:6d:a8:6c:2d:dd:9f:ac:ea:
70:20:24:64:ff:f1:75:f7:ca:6e:20:05:90:d2:40:aa:20:0b:
d8:c4:60:3f:35:c7:21:c7:cc:4d:3f:b0:3d:a5:ee:ce:b3:f3:
28:29:f3:1c:89:54:10:df:73:46:d4:a4:3e:49:fb:fe:4f:3d:
6e:2e:55:00
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgIUKCkwVsHIhzFnCKDhOK09KzkERyQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzkxMzFhNGUzY2MwODUxYzJlZDEzNjNkNjk4MmU3NDM2
ZDNkZjlmOTAeFw0yMzAzMDMxNjE4MDRaFw0yNDAzMDExNjIzMDRaMDMxMTAvBgNV
BAMTKDQyOTEyMDQ4RDE1Q0Y4QTU0MDg4NUEzMDdDRkMxOTA3QkYwMkJDQ0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmCOwy0EzdHX5epgzB7tF6shfh
HcP3KImVziZ+gJKIHp4BZKL4HbWKXYOZRcbSrRshMM0qEaOHnvJ5MrQlx7CvozFC
qF3aVHF95L9E3MFa5LQy5Btmmt7c+r8w8qgrwv0/gJFD1lW60M5P8B+kld3JPXys
lsRsXmZjm54EldiwVx4hnqNn/IlGiuQBmhJ2psDfkxFT5bbnzWnB0PyTKFoAE6XM
J3RaHWXXXEoQXfd0lcx5bO7JBaobw/8Wz6e/doJpduxOprscGVVAtTzRQERU0T8L
rIb2ulW35+IGvbAbmay+o4CzWzXcKfXKPNmZG8ekQkACrcvbcwhDaJ82I0qpAgMB
AAGjggHrMIIB5zAdBgNVHQ4EFgQUQpEgSNFc+KVAiFowfPwZB78CvMowHwYDVR0j
BBgwFoAUeRMaTjzAhRwu0TY9aYLnQ209+fkwDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzEwOC83OTEzMUE0RTNDQzA4NTFDMkVEMTM2M0Q2OTgyRTc0
MzZEM0RGOUY5LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZVJNYVRqekFoUnd1
MFRZOWFZTG5RMjA5LWZrLmNlcjCBgAYIKwYBBQUHAQsEdDByMHAGCCsGAQUFBzAL
hmRyc3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNp
dC8xMDgvMzQzNTJlMzgzNTJlMzIzNDM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIw
MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAAtVfgwDQYJKoZIhvcNAQELBQADggEBAFzyg8wDqZPT53MN
9YQ3e0OwEJCqj8IzJpK52spif2lFlT1fPVbn95YIxS1mRIDdci0WgFstOm6VAZn4
oKUs0vt2utQ8GYOuQ/KyAvBtH5ZxRplKzQjWXB3irVMWlGX6WmlJk6L3J9Eh1lNP
1g/Q9SzDd0VuezBq/uU3NbletBkmbW2HfmOAbfSoNHboPSTznAaax1iAUfsJbX0X
c1xig8ZAObrhoZJyVUtHtuiB867O8bkLdLh/p6WBxgf0m7htqGwt3Z+s6nAgJGT/
8XX3ym4gBZDSQKogC9jEYD81xyHHzE0/sD2l7s6z8ygp8xyJVBDfc0bUpD5J+/5P
PW4uVQA=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:58 2023 by rpki-client on console.sobornost.net