Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/153/34352e31302e3135342e302f32342d3234203d3e2033323830.roa
File: 34352e31302e3135342e302f32342d3234203d3e2033323830.roa (raw, json)
Hash identifier: yViCXU/8PdHlWj04ZiHxDc3zZCrH79GfAqxgX4lsoAo=
Subject key identifier: 3D:01:8E:4A:67:4C:E9:71:5E:FE:0D:9A:50:6D:2C:05:85:91:2A:2E
Certificate issuer: /CN=2db99cc50935295f8e3427a0bb691b41507e3276
Certificate serial: 0211CC754D84F6C66F789F3CEB9C0CE75B0E233F
Authority key identifier: 2D:B9:9C:C5:09:35:29:5F:8E:34:27:A0:BB:69:1B:41:50:7E:32:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LbmcxQk1KV-ONCegu2kbQVB-MnY.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/153/34352e31302e3135342e302f32342d3234203d3e2033323830.roa
Signing time: Tue 01 Dec 2020 23:29:05 +0000
ROA not before: Tue 01 Dec 2020 23:24:05 +0000
ROA not after: Tue 30 Nov 2021 23:29:05 +0000
asID: 3280
IP address blocks: 45.10.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:11:cc:75:4d:84:f6:c6:6f:78:9f:3c:eb:9c:0c:e7:5b:0e:23:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2db99cc50935295f8e3427a0bb691b41507e3276
Validity
Not Before: Dec 1 23:24:05 2020 GMT
Not After : Nov 30 23:29:05 2021 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8e:c5:d5:ef:46:fe:fa:fa:ff:25:3e:de:60:
85:a4:fc:11:1d:a3:ae:ca:98:38:1f:54:61:a8:45:
d1:22:77:81:39:5d:6f:69:44:82:b3:04:46:05:f5:
f3:1f:64:20:07:a5:6f:ba:fd:a4:7c:32:63:56:b5:
7a:f5:1d:87:42:49:31:9d:7c:80:69:2b:b8:e0:9f:
55:ab:0b:e4:36:d8:dd:e6:ea:d1:98:8b:7b:42:ee:
c6:e7:9e:6e:a6:d7:5c:92:aa:c0:94:a7:66:a9:e6:
d3:ea:2f:8b:cc:c9:7c:e2:d3:51:61:0a:6a:2f:5e:
57:89:22:b9:d4:e7:30:6e:40:83:7a:22:4f:9c:42:
53:53:d4:71:7e:ac:10:17:de:d3:77:a1:5f:dd:96:
f9:cb:25:6c:72:f9:8a:4c:9a:9f:5f:87:a5:d3:53:
fd:b9:5a:ed:45:96:ab:ef:d2:f4:ff:16:74:27:9d:
81:17:52:0d:ad:1f:f7:0e:7f:e7:b3:79:18:d9:51:
ac:5e:e2:38:ea:ac:cc:da:2a:3e:dc:9a:f4:89:0c:
55:33:56:80:7c:d9:1e:87:fc:bc:d2:13:bc:6f:2a:
b6:b8:88:1b:53:2f:3c:64:5a:d0:ee:be:b0:86:11:
f1:28:63:ae:d8:88:66:ea:c8:ae:b9:8d:35:8d:8a:
96:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:01:8E:4A:67:4C:E9:71:5E:FE:0D:9A:50:6D:2C:05:85:91:2A:2E
X509v3 Authority Key Identifier:
keyid:2D:B9:9C:C5:09:35:29:5F:8E:34:27:A0:BB:69:1B:41:50:7E:32:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/153/2DB99CC50935295F8E3427A0BB691B41507E3276.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LbmcxQk1KV-ONCegu2kbQVB-MnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/153/34352e31302e3135342e302f32342d3234203d3e2033323830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.154.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:c0:1b:da:e0:ed:39:e6:e1:48:09:6a:0d:f6:60:57:dd:5e:
b4:a2:2f:d2:fc:8a:63:95:16:db:7d:55:20:92:d4:ed:07:47:
3b:33:36:78:35:86:75:77:02:cd:ed:41:f3:89:b9:e2:66:2f:
13:a8:fe:61:75:8e:4b:6f:07:36:ee:4a:7c:8c:2f:3e:0e:e7:
1b:f2:18:72:b2:b8:d0:a4:3c:ca:ad:56:a8:c1:dd:4a:c0:f0:
67:17:b9:df:b7:91:5a:4a:87:66:02:e7:09:a1:dd:55:18:12:
91:d0:0a:6b:d5:5c:64:3e:57:81:60:9f:d6:74:bd:58:d5:0a:
6a:fc:3b:5f:0c:7b:c7:d5:e4:1b:8f:b0:1a:55:36:bc:8c:62:
48:6f:fe:59:cc:24:e9:f9:80:5a:36:fc:6a:23:0c:3c:cd:de:
05:f9:e2:83:d8:6f:12:5f:2c:12:ad:4d:9c:a6:6e:14:fd:3e:
a0:f2:2c:49:8f:95:35:3e:84:60:58:38:6b:e5:0c:21:68:31:
58:aa:b5:95:bf:5c:23:13:19:42:61:9b:61:92:d7:22:24:17:
07:54:49:98:16:e0:3f:00:86:26:c5:00:4c:6a:a5:27:74:2a:
d7:e8:02:69:e6:43:e1:74:92:4f:1a:ab:2e:00:71:81:36:22:
30:57:97:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:58 2023 by rpki-client on console.sobornost.net