Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/177/3138352e3135332e3137362e302f32342d3332203d3e20313336373837.roa
File: 3138352e3135332e3137362e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: hw0xexoTgLLYyJuov6YM3peiIsX+gIaVfPjB+ejhM4E=
Subject key identifier: FE:90:33:4A:DD:F1:10:78:5D:12:2D:8B:90:68:9D:9A:7F:E7:2B:68
Certificate issuer: /CN=2085ccded28a68d872cbf19754311e6f616649b1
Certificate serial: 564ED697FEE787A5BC1452C54452807EA5270242
Authority key identifier: 20:85:CC:DE:D2:8A:68:D8:72:CB:F1:97:54:31:1E:6F:61:66:49:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIXM3tKKaNhyy_GXVDEeb2FmSbE.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/177/3138352e3135332e3137362e302f32342d3332203d3e20313336373837.roa
Signing time: Wed 28 Dec 2022 09:38:06 +0000
ROA not before: Wed 28 Dec 2022 09:33:06 +0000
ROA not after: Wed 27 Dec 2023 09:38:06 +0000
asID: 136787
IP address blocks: 185.153.176.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:4e:d6:97:fe:e7:87:a5:bc:14:52:c5:44:52:80:7e:a5:27:02:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2085ccded28a68d872cbf19754311e6f616649b1
Validity
Not Before: Dec 28 09:33:06 2022 GMT
Not After : Dec 27 09:38:06 2023 GMT
Subject: CN=FE90334ADDF110785D122D8B90689D9A7FE72B68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6d:e6:de:9b:a5:ed:24:92:5a:58:ea:2b:8d:
ac:25:73:06:e5:4a:08:83:70:3e:e8:ca:e0:c1:47:
e2:b5:ea:ed:91:84:e0:f3:cb:46:fd:6f:a2:55:28:
bb:2a:47:15:5e:83:a3:ef:bc:a4:ec:4b:14:1b:04:
63:e2:94:89:f8:ae:48:7e:4e:f9:68:19:93:39:97:
f6:72:c3:7c:a7:ca:4e:d1:65:c2:18:1c:e4:ae:e0:
9e:08:60:a5:5d:44:75:87:41:f8:7e:e4:06:bb:be:
d6:6f:45:30:b5:d0:e7:29:29:5d:af:5a:8d:0a:3b:
74:28:05:51:32:8c:00:72:a8:63:8e:65:81:7c:b4:
5a:68:3e:70:1b:77:83:b6:59:b1:ce:d0:62:b9:af:
8a:1d:95:d4:2f:ee:8d:d7:6b:5f:15:be:6e:c5:92:
ad:1d:30:61:d1:d7:eb:3a:1e:d1:6c:01:6e:b1:3c:
ba:2c:06:f5:c9:b1:7d:be:cc:e1:6b:bd:fb:5e:50:
d6:1f:7b:3c:54:c0:54:76:ac:e0:23:f5:df:0b:01:
c2:9b:0a:9b:0c:c6:2d:37:1a:45:5b:40:a3:fb:0a:
5b:a5:b3:cb:41:10:08:cb:8d:8e:bc:cc:4c:f1:af:
fd:4e:47:12:ec:44:08:69:35:2a:63:a9:fa:20:5b:
6a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:90:33:4A:DD:F1:10:78:5D:12:2D:8B:90:68:9D:9A:7F:E7:2B:68
X509v3 Authority Key Identifier:
keyid:20:85:CC:DE:D2:8A:68:D8:72:CB:F1:97:54:31:1E:6F:61:66:49:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/177/2085CCDED28A68D872CBF19754311E6F616649B1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIXM3tKKaNhyy_GXVDEeb2FmSbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/177/3138352e3135332e3137362e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
91:3c:34:e2:02:79:68:0f:a9:66:dd:0e:6b:02:90:13:04:f5:
7c:85:c3:4d:b2:f5:4a:1e:8f:03:cc:b6:83:a3:90:c0:76:92:
8c:c5:bf:5c:59:09:3a:e2:4d:bc:bc:c7:2b:70:87:e2:4e:87:
68:c7:ca:13:79:33:70:38:10:8c:84:e4:02:09:55:d8:93:8e:
50:5b:24:7b:c3:60:0e:8e:94:65:cd:6f:62:6f:29:f6:5b:35:
ac:c9:e0:6c:e7:00:e6:7d:b0:af:22:15:51:e3:1f:e7:87:99:
7c:ea:5e:b9:3c:61:70:0e:8a:e1:c8:d0:11:1c:70:b1:dc:09:
3b:56:31:4e:45:88:63:da:aa:7a:9f:ac:3e:bf:4b:aa:3f:a5:
93:dc:f3:9a:a2:be:00:bf:7e:ce:b5:be:9a:10:1c:f4:7a:42:
f6:51:ad:dd:51:56:7c:54:1f:98:d5:40:cb:2f:15:26:de:eb:
02:e5:5e:ba:3b:35:8d:cc:7e:4c:6b:1d:5c:74:c5:8d:b4:c0:
3e:4e:40:69:aa:ef:0a:5a:0c:a5:c7:24:9b:5f:86:ee:57:72:
76:c7:90:d1:1b:95:18:2d:24:1f:a2:ab:3e:03:2d:9a:46:73:
da:05:86:35:20:d0:0b:8d:e3:bb:8e:80:c1:82:a6:d3:d6:fe:
6a:38:34:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:58 2023 by rpki-client on console.sobornost.net