Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e31342e39302e302f32342d3234203d3e20323636303530.roa
File: 34352e31342e39302e302f32342d3234203d3e20323636303530.roa (raw, json)
Hash identifier: +b7bwNh4TCYqCRplzVsGdIcfmcfsljmYe7YNJJxIYU0=
Subject key identifier: 5F:62:FC:78:C7:6B:74:18:92:E8:13:EC:BC:82:C2:C7:A2:AF:A0:84
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 0E2A8C90BB1FB4889DE26AC8BF4AB5C8EEA17D04
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e31342e39302e302f32342d3234203d3e20323636303530.roa
Signing time: Sat 22 Oct 2022 04:33:48 +0000
ROA not before: Sat 22 Oct 2022 04:28:48 +0000
ROA not after: Sat 21 Oct 2023 04:33:48 +0000
asID: 266050
IP address blocks: 45.14.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:2a:8c:90:bb:1f:b4:88:9d:e2:6a:c8:bf:4a:b5:c8:ee:a1:7d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:48 2022 GMT
Not After : Oct 21 04:33:48 2023 GMT
Subject: CN=5F62FC78C76B741892E813ECBC82C2C7A2AFA084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a7:00:45:87:5a:35:f5:3c:5d:3e:c2:aa:81:
fd:d7:0c:bb:63:aa:f3:47:27:49:88:04:65:8a:07:
70:b8:bb:a4:1a:30:e4:83:96:b1:af:9c:1f:69:90:
d6:be:44:18:1e:6e:f4:a2:38:ed:bc:41:71:2b:6f:
d9:fd:25:5c:78:f7:ca:9e:4b:6a:fc:18:ae:b4:55:
1b:45:78:94:9c:7c:af:fc:d3:4a:14:1e:0f:a7:5e:
bc:85:1e:43:2c:35:db:be:a7:d8:e2:48:7c:73:aa:
b6:a9:62:76:c1:bc:76:08:a0:f1:67:26:52:ed:fb:
f5:b4:df:1e:b3:40:ed:7c:58:58:32:b4:84:02:03:
50:cc:cc:89:25:b9:af:ba:db:d6:43:13:ed:45:3c:
22:e0:84:de:f4:d9:c3:91:b2:f9:4b:bf:60:e9:ea:
40:f8:8f:0f:07:8e:60:07:e0:49:10:0a:0f:82:0d:
01:9b:df:07:28:68:95:dc:06:cf:1b:99:e1:31:5b:
c1:35:a6:98:ef:8f:44:b8:c3:6d:b6:04:fe:b2:74:
33:f6:7e:89:7a:9c:1f:99:17:77:b8:fb:46:fc:67:
06:1d:ef:fa:7c:52:83:ab:88:7e:9c:de:7a:bf:2a:
38:c4:99:68:67:91:86:d7:e4:d0:fa:db:b6:bf:55:
dc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:62:FC:78:C7:6B:74:18:92:E8:13:EC:BC:82:C2:C7:A2:AF:A0:84
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e31342e39302e302f32342d3234203d3e20323636303530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.90.0/24
Signature Algorithm: sha256WithRSAEncryption
af:db:89:3e:c3:83:d5:af:2f:70:c4:06:76:5f:4d:c1:fb:d1:
83:7d:d5:0f:af:de:d7:8f:94:56:8a:23:ec:90:90:28:6c:ad:
a7:a0:4a:ef:77:fb:aa:be:5f:8a:29:e4:51:eb:fb:a5:56:1f:
a1:22:22:78:ac:17:6c:83:7f:36:ad:1e:8c:1d:ac:d7:e3:64:
f5:99:16:d2:7c:8a:63:6e:66:f3:b3:0b:19:2f:a0:b7:66:c9:
c3:d2:4e:37:d2:13:bf:60:a8:ad:07:50:7f:3e:12:46:fc:e9:
91:66:44:e0:94:b3:fd:c1:ad:62:c2:eb:af:d7:ef:1f:5c:6a:
94:46:83:2f:64:8a:9a:de:52:ca:74:44:7d:c4:ef:5e:0f:a3:
f0:ae:a9:bd:02:e5:19:23:37:6e:6d:82:40:75:dc:2c:84:8c:
2a:fe:27:fd:4b:59:29:00:9d:d0:f0:4f:3a:38:c6:51:08:d8:
de:ed:1b:f0:64:b7:d4:8f:bb:84:cd:3d:97:86:69:5d:2b:7d:
65:a4:1a:60:3a:2b:b5:9d:1e:3d:19:72:b0:62:2f:f9:dd:20:
35:d3:01:ac:fe:8d:f2:5e:b0:f6:8f:f5:b9:c6:5a:84:f9:3f:
e1:30:ab:95:78:c9:7d:69:7f:f4:c5:6c:79:0a:27:1f:4c:07:
7f:28:89:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net