Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/108/34352e38382e3232332e302f32342d3332203d3e203531313637.roa
File: 34352e38382e3232332e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: q63UwyYZ24LIeuQ1GnroG8fP3lqSS6p/OvPsQ5GshJ8=
Subject key identifier: ED:67:CE:73:8C:CF:96:C4:D5:CC:D3:0D:B6:AD:E2:CF:A6:38:32:91
Certificate issuer: /CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Certificate serial: 0D440F99EDCC43A8E78A548BCDB9A8A6283B2FDC
Authority key identifier: 79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/108/34352e38382e3232332e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:33:39 +0000
ROA not before: Sat 22 Oct 2022 04:28:39 +0000
ROA not after: Sat 21 Oct 2023 04:33:39 +0000
asID: 51167
IP address blocks: 45.88.223.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:44:0f:99:ed:cc:43:a8:e7:8a:54:8b:cd:b9:a8:a6:28:3b:2f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Validity
Not Before: Oct 22 04:28:39 2022 GMT
Not After : Oct 21 04:33:39 2023 GMT
Subject: CN=ED67CE738CCF96C4D5CCD30DB6ADE2CFA6383291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c2:85:79:7b:b0:84:99:bd:b4:f4:fd:91:cb:
55:d9:18:22:fb:b0:e0:9a:89:c1:94:eb:76:27:81:
6e:07:25:c1:ef:c6:d5:3b:2f:79:6e:21:34:72:4a:
d8:3f:60:26:f6:e2:d7:60:94:2b:fe:35:a0:ee:af:
ff:24:23:94:43:71:72:d9:72:5c:02:b4:9f:55:8e:
9f:f0:06:84:23:c2:95:f6:80:48:84:99:4d:8c:37:
b4:a0:90:d3:41:69:73:cc:29:80:cc:a7:7d:cd:9b:
bd:0c:11:c0:19:98:8e:eb:39:d1:d0:07:9e:92:80:
73:20:c6:52:ee:8e:5e:0b:dd:c2:70:31:01:b2:ec:
6c:ec:c3:af:3e:8c:eb:bb:f7:aa:ae:14:2c:dd:ef:
87:af:58:bb:41:c7:91:4f:98:e5:e7:97:d6:33:a9:
64:43:c0:a6:47:43:b0:fb:ad:3e:c2:f9:32:22:87:
6b:83:bc:2d:8d:72:ca:df:c8:99:dc:56:2d:2d:28:
3f:3f:ad:a1:63:00:4c:69:8b:83:9a:99:6d:fb:0b:
22:bc:3a:91:60:40:bf:ea:65:a8:6e:d9:3f:44:23:
77:cf:89:61:c8:c8:98:02:17:8e:1d:67:d4:b8:7e:
30:88:1a:fb:0a:14:c8:ce:84:91:8c:84:dc:57:c0:
2d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:67:CE:73:8C:CF:96:C4:D5:CC:D3:0D:B6:AD:E2:CF:A6:38:32:91
X509v3 Authority Key Identifier:
keyid:79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/79131A4E3CC0851C2ED1363D6982E7436D3DF9F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/34352e38382e3232332e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.223.0/24
Signature Algorithm: sha256WithRSAEncryption
37:bc:95:6b:e1:b4:81:43:10:51:d0:83:c4:d3:65:a3:d2:9b:
e7:dd:4d:28:1c:75:e5:bd:71:92:ad:38:8b:3c:c3:a1:ed:af:
ce:d6:72:19:09:94:66:d8:0d:d1:11:5e:43:12:91:54:65:af:
ec:60:d7:d6:da:30:4d:11:f4:d7:71:58:87:b7:af:96:71:1a:
57:f5:f7:f1:a4:0d:52:b9:fe:4d:1d:ed:88:54:fa:0f:21:d2:
1e:46:e6:d7:2b:3f:c6:95:7e:49:c4:64:03:92:b2:5a:5d:49:
06:f8:87:2f:01:fe:6f:d4:8a:3f:23:f4:04:f0:05:f9:ef:0c:
7d:91:6f:58:97:d3:0b:ed:07:ba:70:38:11:5d:aa:a7:d0:04:
b0:71:3b:15:f6:ee:43:13:4d:78:cc:65:ef:a6:1d:9e:af:95:
9d:6b:b2:7b:48:25:e7:0c:2f:4a:57:99:3e:e6:51:a6:b0:a8:
14:75:4f:0b:38:b5:b9:78:81:64:e6:46:ba:00:97:4b:de:1c:
35:d5:ab:fd:73:7d:d0:93:c6:6e:8f:33:e2:63:43:79:69:e2:
87:06:14:b3:bf:c9:80:ac:89:a7:a9:50:bd:f8:bc:ad:0f:a6:
7b:2b:23:5a:a7:b6:38:c2:64:33:ad:81:0f:24:52:ca:5e:c4:
f0:53:56:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:58 2023 by rpki-client on console.sobornost.net