Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e31342e39312e302f32342d3234203d3e20333238333737.roa
File: 34352e31342e39312e302f32342d3234203d3e20333238333737.roa (raw, json)
Hash identifier: hz5c1GIuwG+70WiXCdnYlM1aj+IKBo/C5IP41hyyK7k=
Subject key identifier: 56:A5:35:18:A4:9B:1F:BE:1F:C8:7E:E3:14:E0:F0:23:27:E4:C2:B6
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 7582B20688D4E6F13066A9F67A747EE1558F33F1
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e31342e39312e302f32342d3234203d3e20333238333737.roa
Signing time: Sat 22 Oct 2022 04:33:49 +0000
ROA not before: Sat 22 Oct 2022 04:28:49 +0000
ROA not after: Sat 21 Oct 2023 04:33:49 +0000
asID: 328377
IP address blocks: 45.14.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:82:b2:06:88:d4:e6:f1:30:66:a9:f6:7a:74:7e:e1:55:8f:33:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:49 2022 GMT
Not After : Oct 21 04:33:49 2023 GMT
Subject: CN=56A53518A49B1FBE1FC87EE314E0F02327E4C2B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6f:e8:ae:e8:53:cd:d4:7e:ac:2d:e5:36:77:
30:1f:54:1e:13:92:d3:67:44:00:8a:fe:e9:7c:f0:
8e:33:a6:3c:40:ad:5a:2c:a7:05:54:8b:a0:ad:1b:
7a:9f:b1:77:28:8d:58:01:3b:43:24:ad:69:77:ae:
33:0a:45:17:3e:b2:7c:9a:87:38:63:1b:5a:01:a6:
44:fd:d3:e5:0e:51:bd:53:f6:4a:c9:76:bb:7d:b1:
21:3d:f2:6a:7e:37:27:d2:0d:a2:7d:65:f2:13:5c:
2a:3d:ef:5b:55:cd:b3:25:f9:41:3b:38:9e:d9:e1:
36:03:3e:49:b8:6d:7c:0c:9e:24:ec:88:05:6e:25:
09:7b:e6:74:15:05:23:74:8b:1c:77:75:80:db:36:
44:94:76:9b:2a:5e:9c:e1:bd:37:9c:74:eb:f8:cb:
eb:99:8f:ce:32:0a:0a:c7:13:ce:b5:e0:d7:fc:49:
78:f2:e3:bb:05:8f:e0:a8:fc:db:06:d0:41:0a:54:
5c:45:03:38:be:fd:6b:55:6e:7c:d5:ba:fa:24:1a:
92:0b:d6:d2:91:99:8b:2a:25:9b:98:fa:6d:0d:b7:
85:67:ae:3e:54:ac:94:02:e6:17:04:28:77:c7:98:
92:56:fa:a6:76:70:d0:0f:ce:98:ad:f8:35:16:52:
15:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A5:35:18:A4:9B:1F:BE:1F:C8:7E:E3:14:E0:F0:23:27:E4:C2:B6
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e31342e39312e302f32342d3234203d3e20333238333737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.91.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:16:d2:b5:b4:cb:f8:e8:52:73:4d:86:8b:08:cb:ab:6c:ba:
36:1f:05:bf:02:50:dd:7d:b1:b4:71:0b:67:93:91:c8:8b:9d:
e2:6c:5a:ff:89:d3:4c:dd:1d:3b:51:3b:ca:c9:b8:cb:92:f5:
c1:4c:3d:43:52:87:a6:10:bd:17:97:30:65:5e:95:93:a9:1b:
b5:ad:46:15:69:7d:e0:10:3b:41:ac:cf:7a:ef:3a:c9:e8:a9:
f2:07:e6:b1:1a:c5:11:69:d8:5e:be:11:cc:a0:30:55:fa:4f:
a0:72:87:8c:f5:16:db:17:84:15:54:1d:fc:29:77:df:b5:16:
de:03:e2:7e:de:d3:7f:e7:a0:6e:86:e8:60:2d:78:c5:24:bf:
a9:b6:87:2b:94:eb:08:8c:34:4a:af:40:60:1c:07:8e:8d:79:
4c:a3:2d:15:64:97:39:d3:d5:34:cc:5f:75:83:de:65:9b:ec:
3c:0f:1d:1a:c9:ee:71:17:1f:d8:83:f8:9a:2b:1d:b2:38:91:
fc:ca:9b:25:c1:63:9e:ed:40:e6:1d:50:f0:82:55:19:47:74:
23:06:6b:97:5d:f6:0a:9f:fc:5d:89:ba:6b:74:a0:12:0c:92:
d5:70:f4:d7:85:50:57:29:9e:6f:ec:59:e9:9c:d9:6c:44:3b:
12:d6:ca:8d
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgIUdYKyBojU5vEwZqn2enR+4VWPM/EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGZlODliZjdkYWEwZjhhYTdkMDIyZGY5ODRlNmVhMzdl
NmY2MGEzZDAeFw0yMjEwMjIwNDI4NDlaFw0yMzEwMjEwNDMzNDlaMDMxMTAvBgNV
BAMTKDU2QTUzNTE4QTQ5QjFGQkUxRkM4N0VFMzE0RTBGMDIzMjdFNEMyQjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChb+iu6FPN1H6sLeU2dzAfVB4T
ktNnRACK/ul88I4zpjxArVospwVUi6CtG3qfsXcojVgBO0MkrWl3rjMKRRc+snya
hzhjG1oBpkT90+UOUb1T9krJdrt9sSE98mp+NyfSDaJ9ZfITXCo971tVzbMl+UE7
OJ7Z4TYDPkm4bXwMniTsiAVuJQl75nQVBSN0ixx3dYDbNkSUdpsqXpzhvTecdOv4
y+uZj84yCgrHE8614Nf8SXjy47sFj+Co/NsG0EEKVFxFAzi+/WtVbnzVuvokGpIL
1tKRmYsqJZuY+m0Nt4Vnrj5UrJQC5hcEKHfHmJJW+qZ2cNAPzpit+DUWUhX7AgMB
AAGjggHzMIIB7zAdBgNVHQ4EFgQUVqU1GKSbH74fyH7jFODwIyfkwrYwHwYDVR0j
BBgwFoAU3+ib99qg+Kp9Ai35hObqN+b2Cj0wDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzE4MC9ERkU4OUJGN0RBQTBGOEFBN0QwMjJERjk4NEU2RUEz
N0U2RjYwQTNELmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMy1pYjk5cWctS3A5
QWkzNWhPYnFOLWIyQ2owLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzAL
hmxyc3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNp
dC8xODAvMzQzNTJlMzEzNDJlMzkzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMz
MzIzODMzMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0OWzANBgkqhkiG9w0BAQsFAAOCAQEALxbS
tbTL+OhSc02GiwjLq2y6Nh8FvwJQ3X2xtHELZ5ORyIud4mxa/4nTTN0dO1E7ysm4
y5L1wUw9Q1KHphC9F5cwZV6Vk6kbta1GFWl94BA7QazPeu86yeip8gfmsRrFEWnY
Xr4RzKAwVfpPoHKHjPUW2xeEFVQd/Cl337UW3gPift7Tf+egboboYC14xSS/qbaH
K5TrCIw0Sq9AYBwHjo15TKMtFWSXOdPVNMxfdYPeZZvsPA8dGsnucRcf2IP4misd
sjiR/MqbJcFjnu1A5h1Q8IJVGUd0IwZrl132Cp/8XYm6a3SgEgyS1XD014VQVyme
b+xZ6ZzZbEQ7EtbKjQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net