Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/164/34352e31342e3231322e302f32322d3232203d3e20323031333431.roa
File: 34352e31342e3231322e302f32322d3232203d3e20323031333431.roa (raw, json)
Hash identifier: oYJf+0H2ADEvoVpivOKhqOu4xi5otlcc5kfVVK/uzNw=
Subject key identifier: 1B:40:AF:1B:A6:7F:77:D2:06:96:F6:66:05:2B:0E:A4:51:02:8F:FD
Certificate issuer: /CN=7ebd1421d6ee46b714647fb7d198ae4601b63729
Certificate serial: 208AC64BD7E1D58DE75659AD8753E1C9B7D3887D
Authority key identifier: 7E:BD:14:21:D6:EE:46:B7:14:64:7F:B7:D1:98:AE:46:01:B6:37:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fr0UIdbuRrcUZH-30ZiuRgG2Nyk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/164/34352e31342e3231322e302f32322d3232203d3e20323031333431.roa
Signing time: Sat 22 Oct 2022 04:33:11 +0000
ROA not before: Sat 22 Oct 2022 04:28:11 +0000
ROA not after: Sat 21 Oct 2023 04:33:11 +0000
asID: 201341
IP address blocks: 45.14.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:8a:c6:4b:d7:e1:d5:8d:e7:56:59:ad:87:53:e1:c9:b7:d3:88:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ebd1421d6ee46b714647fb7d198ae4601b63729
Validity
Not Before: Oct 22 04:28:11 2022 GMT
Not After : Oct 21 04:33:11 2023 GMT
Subject: CN=1B40AF1BA67F77D20696F666052B0EA451028FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:01:be:2f:d6:bf:11:34:75:de:7b:67:dd:16:
4a:20:f9:4e:c0:c0:f4:9d:9a:23:3b:fa:f9:08:ef:
b7:50:25:ef:af:30:29:0d:54:a2:5b:e6:51:27:e0:
ce:3e:1c:7a:aa:7e:93:fc:21:86:bf:ce:5e:70:bd:
2d:88:fc:49:44:f6:64:25:bc:af:c5:37:21:93:f2:
08:8f:81:ce:a0:7c:27:3c:f1:68:01:58:26:12:95:
21:49:d3:0a:e8:fd:39:d3:6d:84:50:db:0e:9e:a3:
6f:25:2f:cc:51:54:2b:25:15:bb:d7:d9:0c:08:1f:
db:05:ce:57:bb:e3:a6:79:63:5a:9f:63:3d:ca:7f:
8f:a7:a6:e5:2e:71:e4:a4:1e:09:fc:27:19:44:23:
00:aa:2a:6a:5c:d1:97:9e:d0:99:05:ac:2b:6f:e1:
4c:b9:fe:27:bb:fe:09:2c:2e:8c:a8:f1:0a:4b:9e:
e0:b5:eb:e7:2d:1c:52:61:93:ea:fc:53:a1:ac:3e:
3b:52:93:3c:8a:af:41:f8:78:88:e8:09:17:32:84:
64:40:a4:05:3d:5d:c7:d8:5c:20:8f:13:d3:86:a1:
e3:82:a5:58:d4:1e:14:33:d1:57:03:86:de:7c:cf:
24:23:b0:d7:a9:08:e0:3b:22:72:e6:81:6b:c7:14:
0d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:40:AF:1B:A6:7F:77:D2:06:96:F6:66:05:2B:0E:A4:51:02:8F:FD
X509v3 Authority Key Identifier:
keyid:7E:BD:14:21:D6:EE:46:B7:14:64:7F:B7:D1:98:AE:46:01:B6:37:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/164/7EBD1421D6EE46B714647FB7D198AE4601B63729.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fr0UIdbuRrcUZH-30ZiuRgG2Nyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/164/34352e31342e3231322e302f32322d3232203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.212.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:a0:47:80:08:a7:92:9a:d8:d0:8d:4e:4e:07:02:16:b7:ca:
e8:ae:8c:9d:16:0b:f2:0d:ce:e5:6f:a3:cc:41:fb:de:be:8d:
28:ec:74:51:85:45:e8:6f:33:1c:04:09:06:5d:e6:de:08:91:
01:3f:ae:58:eb:ba:71:ab:b3:61:38:31:7f:6e:ca:d3:b6:2b:
4d:10:f8:fc:5a:71:22:96:57:27:75:15:97:41:0b:27:76:78:
67:90:04:44:6b:27:d2:86:70:96:97:15:ec:c0:f5:96:f9:c2:
ab:a9:70:2d:a4:80:fd:98:fa:0a:67:49:2d:4b:8e:eb:cd:72:
6f:99:11:99:34:37:fe:ab:37:dd:84:46:b8:56:92:b2:62:43:
de:36:45:fd:87:98:4c:28:38:3b:78:aa:a8:98:96:10:15:ea:
f6:05:be:1f:f9:da:77:0d:b8:c1:4a:31:cb:e6:4f:13:f6:54:
22:37:02:1a:7d:15:66:16:e0:83:b2:df:c8:e9:9c:1d:67:c9:
62:00:5f:70:67:f1:f0:03:f9:08:04:63:0a:66:db:52:07:d3:
4e:fb:20:22:46:dc:ca:bd:f4:21:cc:64:a3:d1:ed:d8:bd:ef:
cf:e7:08:7a:18:f3:97:6a:97:e1:29:a3:54:2c:82:18:7b:ce:
49:b6:ae:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:58 2023 by rpki-client on console.sobornost.net