Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e3133362e31362e302f32342d3234203d3e203235303938.roa
File: 34352e3133362e31362e302f32342d3234203d3e203235303938.roa (raw, json)
Hash identifier: RqRPWnPbjyWPWJmx9Y8sGsMJH+z9oxNOfvBe1zbQrgU=
Subject key identifier: 95:81:4F:C6:EE:A8:FF:C6:D2:CD:79:F7:83:11:6C:B9:C5:1D:53:5D
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 7F577FB4CF07B23566A77F29DB6674D161DEEC9F
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3133362e31362e302f32342d3234203d3e203235303938.roa
Signing time: Sat 22 Oct 2022 04:33:49 +0000
ROA not before: Sat 22 Oct 2022 04:28:49 +0000
ROA not after: Sat 21 Oct 2023 04:33:49 +0000
asID: 25098
IP address blocks: 45.136.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:57:7f:b4:cf:07:b2:35:66:a7:7f:29:db:66:74:d1:61:de:ec:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:49 2022 GMT
Not After : Oct 21 04:33:49 2023 GMT
Subject: CN=95814FC6EEA8FFC6D2CD79F783116CB9C51D535D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b8:ea:74:b9:7e:47:2c:bf:80:bb:48:98:45:
f8:67:dd:9d:48:ff:a3:f1:67:b2:10:35:49:82:9b:
4f:3b:52:24:8e:c3:13:fb:52:d2:1f:8e:bf:01:84:
13:97:82:39:f5:91:1e:f0:06:1f:6c:6c:de:17:31:
fc:22:c7:b8:b8:4a:5c:23:5e:8f:3e:46:1c:e5:f1:
bf:50:6a:f9:16:ca:ce:cc:f3:01:a1:c3:69:36:5d:
c9:c8:e6:88:65:fc:8e:9d:8e:bb:b6:01:bd:34:f0:
08:1d:74:5c:6d:67:31:93:aa:34:f3:e4:e7:52:dd:
75:7f:1b:5f:b5:f0:d5:22:a9:52:0b:1c:c8:b0:2c:
28:6c:04:b2:58:fb:a0:53:bc:f8:a6:c4:6e:59:be:
95:81:45:63:cf:b2:3f:36:b9:29:4e:6b:a0:2f:f2:
00:b4:3b:33:6f:99:c1:64:e5:c8:34:85:4b:a8:a4:
a0:ce:5f:7a:98:14:72:8b:a4:69:ce:0b:3c:9d:cf:
dd:d6:7e:18:8e:f4:ee:bb:82:7c:f8:32:d0:e3:c9:
94:c5:0c:d3:31:60:0f:5c:da:a5:b4:35:f6:b1:e4:
3d:80:25:eb:70:18:7a:ab:ad:3d:cc:a0:4b:d4:52:
1c:0b:30:73:be:15:ab:15:5e:76:fa:f5:36:b4:b8:
05:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:81:4F:C6:EE:A8:FF:C6:D2:CD:79:F7:83:11:6C:B9:C5:1D:53:5D
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3133362e31362e302f32342d3234203d3e203235303938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.16.0/24
Signature Algorithm: sha256WithRSAEncryption
be:57:f0:bf:72:d7:25:02:9a:b7:1c:da:40:73:dc:de:dd:9b:
47:ef:81:61:7e:24:13:71:94:d6:98:0c:33:4e:c1:97:a6:e9:
6e:da:d5:96:e4:13:65:8a:99:4c:90:32:60:05:7e:60:35:6f:
ce:60:2b:c4:8e:14:9b:3e:71:4a:ae:d6:5c:40:6c:f6:d5:7f:
61:42:ca:90:b6:42:9b:90:84:c1:74:2c:8a:69:33:5d:36:c1:
31:0c:4b:a1:cc:87:06:3e:83:26:e1:ae:17:0e:fa:f4:6e:e3:
24:2f:bd:72:d2:e8:64:d5:41:0c:f3:72:10:e4:75:29:92:aa:
80:b0:1b:c4:65:ad:22:03:98:06:5c:e6:0b:e9:e8:23:a5:53:
95:86:4f:75:85:40:55:6e:84:f5:ae:3b:35:8b:7f:ba:69:90:
64:83:81:36:c9:eb:fd:42:c4:eb:96:fb:b7:8e:e4:e4:13:0e:
fb:30:c8:11:ef:1a:d8:81:f9:48:d9:f8:6a:08:cd:5b:6d:e1:
35:b8:97:02:04:d8:49:44:df:a2:b2:25:c1:cc:f0:f3:ef:c4:
f1:8e:3e:55:fc:2a:1f:ac:c2:2f:b1:0a:6d:7a:9f:4b:8f:da:
f2:2f:d7:bb:f1:c4:5f:16:f3:17:b7:9b:5f:e3:c4:64:bd:8c:
5a:04:c2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net