Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/322e35362e3235322e302f32332d3234203d3e20313336373837.roa
File: 322e35362e3235322e302f32332d3234203d3e20313336373837.roa (raw, json)
Hash identifier: CJ3+QkcJPryTgj/SNGDkwyjhB00fDPIMZQZqqo++kjQ=
Subject key identifier: 71:EB:80:55:C8:40:18:24:A2:13:8B:0D:14:5F:D8:BA:43:BF:78:B7
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 35164CE96CAD20492F3C118CA37D7C217FC96B5F
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/322e35362e3235322e302f32332d3234203d3e20313336373837.roa
Signing time: Sat 22 Oct 2022 04:33:49 +0000
ROA not before: Sat 22 Oct 2022 04:28:49 +0000
ROA not after: Sat 21 Oct 2023 04:33:49 +0000
asID: 136787
IP address blocks: 2.56.252.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:16:4c:e9:6c:ad:20:49:2f:3c:11:8c:a3:7d:7c:21:7f:c9:6b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:49 2022 GMT
Not After : Oct 21 04:33:49 2023 GMT
Subject: CN=71EB8055C8401824A2138B0D145FD8BA43BF78B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:07:78:0b:d9:50:5b:d7:5e:17:04:25:da:24:
2b:ff:2f:c3:a6:d2:84:68:d1:24:f7:3d:51:f3:70:
d7:ea:84:00:00:53:f4:b8:af:ad:7d:76:db:97:4d:
25:00:6c:b9:7e:19:1c:16:fc:96:be:8e:ba:fa:15:
7d:9a:0f:91:28:c2:3f:76:e5:f0:7a:7f:89:2f:56:
1f:e8:60:31:b8:5a:94:09:84:e5:d3:17:fc:41:c2:
01:e3:30:e7:c0:3b:1c:c6:24:99:1b:0d:9a:e4:6a:
2f:75:16:39:e3:d9:0f:23:ac:16:a1:1a:9b:7c:2d:
c0:5c:79:e2:d2:21:3c:6f:d9:9c:90:e4:70:2a:bd:
e0:1e:a6:33:c1:c9:26:80:e6:99:e9:6d:39:fb:9a:
3d:c3:90:c7:d1:b2:cf:80:69:cd:42:c8:68:bc:eb:
9a:34:36:c1:b0:66:64:3c:02:4e:76:60:fc:2c:b3:
91:41:5a:c7:04:43:e4:28:48:30:19:a2:c3:6d:73:
58:a9:b4:a0:db:aa:ca:a1:bd:79:64:68:32:e4:d6:
05:d9:ae:03:eb:0a:a7:60:5f:35:b5:bc:f0:c6:69:
97:37:f4:a7:a2:29:95:c8:c4:a8:95:0f:14:8d:77:
22:aa:2f:75:41:a3:57:05:75:85:b4:98:f3:c7:dd:
e3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EB:80:55:C8:40:18:24:A2:13:8B:0D:14:5F:D8:BA:43:BF:78:B7
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/322e35362e3235322e302f32332d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.252.0/23
Signature Algorithm: sha256WithRSAEncryption
14:cf:2b:c8:f8:85:62:a9:c9:1f:00:8d:cb:6a:0e:80:21:99:
f1:aa:ed:02:46:f8:55:03:16:0f:d0:32:54:6b:dc:31:83:ca:
4f:a1:53:b8:28:0c:1c:99:f1:2f:97:5a:13:ec:48:7a:8f:22:
94:b0:5c:f2:9a:0d:da:3c:9e:09:51:d1:be:94:ed:42:a4:84:
ff:3d:12:54:8f:1a:97:8b:c5:f8:80:6b:8b:04:e7:38:bb:80:
9f:63:a7:62:76:5e:a2:37:4c:f1:29:4b:33:5d:e9:89:03:65:
83:7d:fc:99:57:96:3d:12:91:78:28:59:09:2a:0d:1a:24:18:
a4:22:5f:74:ff:8b:54:a1:66:1c:45:4e:7e:0f:cf:65:a1:cf:
99:a2:f7:94:9b:45:44:5e:3d:f7:02:aa:33:eb:4a:3d:7c:be:
f3:27:92:e4:c1:6d:0a:d8:75:d9:51:f2:8f:15:21:84:85:1a:
86:3b:e1:0e:95:33:d9:db:43:04:84:55:47:af:ad:64:8d:38:
be:7d:d3:88:1e:84:96:ed:f9:62:c6:20:f4:92:62:70:d3:76:
c3:5d:44:3a:7a:18:46:2b:c5:89:73:66:07:62:cb:5f:36:38:
9d:c6:fb:75:72:ee:1a:00:1a:5b:25:97:a8:8b:65:dc:cf:f8:
e5:16:c1:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net