Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/177/3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa
File: 3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa (raw, json)
Hash identifier: sPvSmTTY+AAeOcvJM3e4iwJHAdDFL/XTkDGcSTlw980=
Subject key identifier: 43:B4:5B:F5:5D:9E:2F:31:12:C3:F2:29:09:40:F2:AA:73:CF:97:BE
Certificate issuer: /CN=2085ccded28a68d872cbf19754311e6f616649b1
Certificate serial: 26BDB555DCE8B99E114F858F9A4962B1E00A1F66
Authority key identifier: 20:85:CC:DE:D2:8A:68:D8:72:CB:F1:97:54:31:1E:6F:61:66:49:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIXM3tKKaNhyy_GXVDEeb2FmSbE.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/177/3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa
Signing time: Fri 24 Feb 2023 07:50:45 +0000
ROA not before: Fri 24 Feb 2023 07:45:45 +0000
ROA not after: Fri 23 Feb 2024 07:50:45 +0000
asID: 147049
IP address blocks: 185.153.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:bd:b5:55:dc:e8:b9:9e:11:4f:85:8f:9a:49:62:b1:e0:0a:1f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2085ccded28a68d872cbf19754311e6f616649b1
Validity
Not Before: Feb 24 07:45:45 2023 GMT
Not After : Feb 23 07:50:45 2024 GMT
Subject: CN=43B45BF55D9E2F3112C3F2290940F2AA73CF97BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:25:57:cf:38:4b:7c:84:48:42:94:f1:1f:
74:75:9b:26:8a:cf:b8:5f:4e:95:76:d2:fc:77:02:
4e:ce:3f:a2:0f:04:b1:56:66:60:cb:d6:5d:48:be:
1e:cd:b9:b8:fb:f6:77:3b:ca:90:bb:56:f1:ed:ac:
37:1b:94:63:19:8f:c8:e2:c9:db:38:2d:fb:e5:06:
6a:e3:c5:5e:49:04:e8:49:65:f6:95:3d:3c:a3:b9:
aa:4c:4a:3c:cf:bc:6f:6b:23:a5:84:13:a1:8c:f1:
1e:42:00:89:21:df:7d:91:6b:98:34:93:98:64:ce:
b8:cc:10:17:17:0c:c0:db:94:f5:c6:72:9c:8c:22:
9f:aa:ad:55:0c:26:38:8a:37:cf:da:46:9d:3a:41:
04:02:98:f1:77:27:cc:e3:36:4d:fc:9a:f9:de:52:
c7:2d:5e:88:5c:88:43:27:fe:8f:0c:6b:4b:4a:9b:
66:9c:c4:92:89:bf:8c:ca:bb:62:dd:fd:11:b6:9f:
e5:ec:28:6c:84:3f:3b:de:e2:d5:6a:92:02:7f:08:
ba:c6:16:94:2c:42:7f:0e:1b:91:c7:5a:46:a6:8b:
5e:ea:1c:20:9f:29:10:9d:ef:89:3b:42:55:72:91:
51:f6:44:c5:65:82:86:3c:32:93:2d:9e:1e:86:2b:
61:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B4:5B:F5:5D:9E:2F:31:12:C3:F2:29:09:40:F2:AA:73:CF:97:BE
X509v3 Authority Key Identifier:
keyid:20:85:CC:DE:D2:8A:68:D8:72:CB:F1:97:54:31:1E:6F:61:66:49:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/177/2085CCDED28A68D872CBF19754311E6F616649B1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIXM3tKKaNhyy_GXVDEeb2FmSbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/177/3138352e3135332e3137392e302f32342d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.179.0/24
Signature Algorithm: sha256WithRSAEncryption
09:11:0b:96:6e:17:d1:5f:e6:f3:2e:27:83:ae:de:0f:29:fc:
22:7c:31:35:af:f3:b9:63:ad:cc:a5:a2:62:fb:72:85:28:be:
1f:b9:1b:ae:74:91:18:49:22:b9:8a:4d:62:a2:94:27:1c:4f:
b7:2a:fc:84:40:be:7e:9a:e0:a9:0e:87:d7:d0:b0:0d:77:11:
a6:72:a5:e6:8e:b5:8e:d5:b6:27:7b:76:9c:84:ee:ae:92:c3:
ce:ac:80:e7:b8:eb:b2:4a:e0:ad:15:c3:15:1e:9e:e2:12:2e:
d5:e5:6a:c4:30:aa:70:ca:85:6f:cd:83:06:97:ab:00:31:3b:
b4:b5:10:35:0d:b3:3e:43:84:f1:d2:f5:05:2f:b0:c4:4a:46:
ee:91:a1:57:5e:f8:a2:64:aa:92:a1:39:21:28:e8:50:f7:18:
45:c9:a6:4b:b2:d8:13:53:6f:d0:62:80:4c:1c:fe:86:f2:2d:
bd:56:f2:62:6a:5b:8a:28:4c:98:07:e6:dc:b4:4c:80:34:a8:
8d:1b:4c:9b:c0:67:91:1a:7a:99:35:f2:d0:46:6e:1c:79:94:
58:62:ea:39:cd:66:3f:c2:e8:14:d3:c3:f4:0c:39:da:30:c4:
4d:8e:fe:92:48:cf:e4:99:1c:44:a6:32:45:ba:27:78:ea:06:
4a:21:c3:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:58 2023 by rpki-client on console.sobornost.net