Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/108/34352e38382e3232322e302f32342d3234203d3e20313431303339.roa
File: 34352e38382e3232322e302f32342d3234203d3e20313431303339.roa (raw, json)
Hash identifier: /omA3MOFUNMHu9InFhQnFCgxe4dvZO2kyhh03cMokb8=
Subject key identifier: 37:6F:9A:71:8C:28:C9:37:CC:C7:E3:83:46:B4:F8:E4:C8:19:C8:B0
Certificate issuer: /CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Certificate serial: 228E16A3585E5FF119766E4F4D74097C6F69F4C6
Authority key identifier: 79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/108/34352e38382e3232322e302f32342d3234203d3e20313431303339.roa
Signing time: Fri 09 Dec 2022 09:51:26 +0000
ROA not before: Fri 09 Dec 2022 09:46:26 +0000
ROA not after: Fri 08 Dec 2023 09:51:26 +0000
asID: 141039
IP address blocks: 45.88.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:8e:16:a3:58:5e:5f:f1:19:76:6e:4f:4d:74:09:7c:6f:69:f4:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Validity
Not Before: Dec 9 09:46:26 2022 GMT
Not After : Dec 8 09:51:26 2023 GMT
Subject: CN=376F9A718C28C937CCC7E38346B4F8E4C819C8B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c3:b0:36:2f:c1:05:39:9c:9f:0e:0c:78:cf:
2f:1b:d1:fb:fe:66:a7:5c:8c:bc:4e:cd:1e:32:70:
08:5f:af:96:99:d5:19:b0:9d:65:21:0c:25:45:04:
22:4a:f3:7e:59:bf:e7:78:27:aa:0a:d1:6b:6f:bf:
ec:58:d2:67:c1:4c:69:57:8f:dd:89:dc:e0:dd:f8:
59:a4:45:7a:4b:b9:c8:28:51:fe:2f:2a:51:c3:f6:
38:84:f8:8e:09:fa:57:00:51:2d:3d:32:9f:58:17:
0e:4f:3f:08:6a:44:cc:a6:ee:91:60:1d:04:61:bd:
42:a1:14:3c:28:e8:5a:ec:a1:c4:de:8e:9f:48:3f:
15:67:fa:27:c8:ec:de:82:6b:af:0b:f1:1e:9a:a6:
f6:82:dd:48:02:f9:5b:96:ce:7f:15:6d:81:32:3b:
40:93:01:5b:7b:fd:6c:29:55:5b:bf:9a:0d:a9:7d:
67:5c:a3:14:85:a1:22:4a:a2:d6:47:60:4d:d1:4e:
7c:84:a1:86:2b:90:6b:27:b3:b9:f1:19:a3:ad:8f:
5d:c6:47:12:3c:08:b0:86:f4:b0:c9:37:a1:d6:a1:
5b:f2:fd:e5:8a:f9:8b:bd:0a:a8:43:ca:d5:21:28:
ae:e0:5e:8a:ee:14:2e:1c:ef:47:21:4b:ff:28:c3:
d0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6F:9A:71:8C:28:C9:37:CC:C7:E3:83:46:B4:F8:E4:C8:19:C8:B0
X509v3 Authority Key Identifier:
keyid:79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/79131A4E3CC0851C2ED1363D6982E7436D3DF9F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/34352e38382e3232322e302f32342d3234203d3e20313431303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.222.0/24
Signature Algorithm: sha256WithRSAEncryption
87:91:cc:ca:8d:5b:23:5d:09:c3:61:89:98:41:8f:ce:ea:92:
2b:db:49:da:cb:e7:d6:6b:96:ce:10:34:2f:44:bc:12:c1:b2:
b7:5e:b8:18:1e:a2:06:b3:6f:d6:f5:9c:24:c4:fb:a4:95:de:
c3:a0:32:b2:85:6c:bf:66:4d:e5:a3:17:27:71:f9:71:c5:04:
ef:38:da:8a:a3:f9:ca:ef:16:d9:c5:1a:9f:9d:ab:10:78:56:
6c:60:20:3e:e3:09:4d:e8:f7:cb:c4:21:ea:21:d5:dc:e8:82:
bd:0d:a1:95:bd:ba:8e:3f:fd:e7:eb:f4:df:31:0a:ad:f0:38:
1b:09:4b:03:f8:0b:9e:99:8f:f4:a6:e0:e8:5b:fb:94:75:34:
3b:7c:61:41:ac:36:ee:0a:72:86:8b:1b:e2:b7:4d:8f:a1:e2:
0c:ff:42:60:bd:96:2c:fb:23:a9:9e:e0:2b:8d:5d:88:12:3a:
86:39:c8:78:1e:3f:af:0e:21:9b:b6:cd:64:1d:2c:67:ce:8b:
3e:cf:af:5f:0d:a7:f9:70:a6:15:ff:3c:65:d1:54:58:d9:0f:
57:69:01:ea:00:b2:46:c7:5f:0c:4f:05:8f:77:43:18:3a:3d:
be:ef:e5:14:5e:3f:a2:94:98:6c:02:6b:2c:33:61:25:99:d7:
c0:35:b7:e5
-----BEGIN CERTIFICATE-----
MIIE6zCCA9OgAwIBAgIUIo4Wo1heX/EZdm5PTXQJfG9p9MYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzkxMzFhNGUzY2MwODUxYzJlZDEzNjNkNjk4MmU3NDM2
ZDNkZjlmOTAeFw0yMjEyMDkwOTQ2MjZaFw0yMzEyMDgwOTUxMjZaMDMxMTAvBgNV
BAMTKDM3NkY5QTcxOEMyOEM5MzdDQ0M3RTM4MzQ2QjRGOEU0QzgxOUM4QjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYw7A2L8EFOZyfDgx4zy8b0fv+
ZqdcjLxOzR4ycAhfr5aZ1RmwnWUhDCVFBCJK835Zv+d4J6oK0Wtvv+xY0mfBTGlX
j92J3ODd+FmkRXpLucgoUf4vKlHD9jiE+I4J+lcAUS09Mp9YFw5PPwhqRMym7pFg
HQRhvUKhFDwo6FrsocTejp9IPxVn+ifI7N6Ca68L8R6apvaC3UgC+VuWzn8VbYEy
O0CTAVt7/WwpVVu/mg2pfWdcoxSFoSJKotZHYE3RTnyEoYYrkGsns7nxGaOtj13G
RxI8CLCG9LDJN6HWoVvy/eWK+Yu9CqhDytUhKK7gXoruFC4c70chS/8ow9BRAgMB
AAGjggH1MIIB8TAdBgNVHQ4EFgQUN2+acYwoyTfMx+ODRrT45MgZyLAwHwYDVR0j
BBgwFoAUeRMaTjzAhRwu0TY9aYLnQ209+fkwDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzEwOC83OTEzMUE0RTNDQzA4NTFDMkVEMTM2M0Q2OTgyRTc0
MzZEM0RGOUY5LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZVJNYVRqekFoUnd1
MFRZOWFZTG5RMjA5LWZrLmNlcjCBigYIKwYBBQUHAQsEfjB8MHoGCCsGAQUFBzAL
hm5yc3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNp
dC8xMDgvMzQzNTJlMzgzODJlMzIzMjMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIw
MzEzNDMxMzAzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVjeMA0GCSqGSIb3DQEBCwUAA4IBAQCH
kczKjVsjXQnDYYmYQY/O6pIr20nay+fWa5bOEDQvRLwSwbK3XrgYHqIGs2/W9Zwk
xPukld7DoDKyhWy/Zk3loxcncflxxQTvONqKo/nK7xbZxRqfnasQeFZsYCA+4wlN
6PfLxCHqIdXc6IK9DaGVvbqOP/3n6/TfMQqt8DgbCUsD+AuemY/0puDoW/uUdTQ7
fGFBrDbuCnKGixvit02PoeIM/0JgvZYs+yOpnuArjV2IEjqGOch4Hj+vDiGbts1k
HSxnzos+z69fDaf5cKYV/zxl0VRY2Q9XaQHqALJGx18MTwWPd0MYOj2+7+UUXj+i
lJhsAmssM2ElmdfANbfl
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:58 2023 by rpki-client on console.sobornost.net