Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e3133362e31362e302f32332d3234203d3e203631333137.roa
File: 34352e3133362e31362e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: 5Z1F1wexmMroD5LERvk4PQy4wx0CMwdWFEY1A5GM5So=
Subject key identifier: 4A:20:91:06:8F:DE:5F:5C:52:25:DE:60:5D:2F:86:CA:D3:7B:8C:3F
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 36D16FD7BA77E4990868A6939FB292140378C138
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3133362e31362e302f32332d3234203d3e203631333137.roa
Signing time: Sat 22 Oct 2022 04:33:48 +0000
ROA not before: Sat 22 Oct 2022 04:28:48 +0000
ROA not after: Sat 21 Oct 2023 04:33:48 +0000
asID: 61317
IP address blocks: 45.136.16.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:d1:6f:d7:ba:77:e4:99:08:68:a6:93:9f:b2:92:14:03:78:c1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:48 2022 GMT
Not After : Oct 21 04:33:48 2023 GMT
Subject: CN=4A2091068FDE5F5C5225DE605D2F86CAD37B8C3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5b:cc:67:76:84:86:2f:9a:15:51:6c:9a:86:
33:52:d4:69:92:e1:8e:bb:5e:f1:63:8c:e4:33:74:
a2:c0:61:0d:35:ed:06:2e:23:47:d5:42:4e:dd:bf:
84:49:07:6e:17:96:d8:72:2d:fd:1f:67:cc:2b:5e:
cb:87:7e:2c:90:a2:2c:5e:4f:0a:70:96:ed:14:26:
85:b0:0d:0b:b5:a6:d8:87:af:71:62:d3:25:5f:6a:
77:81:99:47:0b:a9:ed:22:fe:f7:64:6e:de:17:5b:
8f:b5:99:20:7e:cf:59:03:07:e3:38:48:57:a5:83:
55:20:40:34:be:2a:d0:1a:ab:d0:62:7f:5a:fd:ab:
02:5c:2d:69:32:20:81:6e:a1:13:89:df:ec:68:fd:
75:5e:d5:a3:b9:0c:11:d8:61:d6:c1:fe:a2:30:6a:
d4:9d:98:44:59:d7:d1:0e:36:5a:36:b6:c2:d5:7a:
9e:61:a4:a4:b4:a6:88:57:bf:2f:a9:38:59:82:45:
ef:bd:86:8e:b5:b1:e2:2c:62:aa:1d:49:79:3a:2d:
04:ab:3c:07:bc:ef:5e:fb:d6:8b:1e:c6:71:6b:f9:
cc:7f:29:b4:90:bd:ea:a8:b4:4a:a2:53:9f:a9:43:
d1:dc:7d:b5:c6:e2:88:65:c5:17:57:cd:25:16:55:
df:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:20:91:06:8F:DE:5F:5C:52:25:DE:60:5D:2F:86:CA:D3:7B:8C:3F
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3133362e31362e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.16.0/23
Signature Algorithm: sha256WithRSAEncryption
61:39:90:47:04:0a:b3:80:e2:ef:b9:c2:d0:09:d0:0d:0e:69:
a2:9a:d1:5a:29:59:19:6f:45:13:2c:77:d8:c6:f2:6f:d2:08:
42:30:3c:5a:2a:c4:6d:bf:98:02:48:e1:75:bc:39:02:3a:8c:
47:a7:43:22:3a:5c:55:98:a4:6b:da:28:49:5d:97:c4:a6:ae:
b1:9b:34:86:e2:95:65:5d:a2:7d:d8:3e:19:45:6d:e7:dc:d4:
ab:0a:da:e4:83:11:1f:ad:61:55:9f:d5:fe:be:33:7a:8e:76:
54:cb:8d:8e:d0:eb:96:b3:d7:40:43:8d:ee:70:b4:53:14:c5:
06:8b:cd:7c:4d:9b:48:b8:e8:76:90:e0:53:ff:6e:d3:61:33:
99:28:91:c6:01:19:b8:30:8f:d9:1d:60:bf:61:f9:99:5f:3e:
3f:ab:06:f1:0d:7c:7c:7d:5e:69:56:30:0d:b0:2d:05:47:38:
f2:79:93:ab:93:e8:01:de:da:eb:d2:ef:fa:91:50:24:45:83:
cf:bb:df:1c:c8:14:5f:5c:e0:fe:48:09:f9:f5:ec:2f:df:6a:
37:91:c9:53:5e:8d:0d:2b:ce:8a:57:2d:c1:a7:32:ad:85:00:
24:90:a9:e7:21:94:2f:04:5b:3d:b7:fc:58:cd:30:15:ee:e7:
41:e7:3d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net