Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e3135322e3138392e302f32342d3234203d3e203631333137.roa
File: 34352e3135322e3138392e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: zqRj2Bn/hal7SsRqNSRIGGZJWCoZr7qXvFYTOtZijrI=
Subject key identifier: F0:A2:F3:4B:6C:85:99:21:AD:45:9E:1E:80:16:3C:28:6F:31:38:79
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 23CE20F227DA3719FF7C9FDBE6EBA54DF5C6E1F6
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3135322e3138392e302f32342d3234203d3e203631333137.roa
Signing time: Sat 22 Oct 2022 04:33:47 +0000
ROA not before: Sat 22 Oct 2022 04:28:47 +0000
ROA not after: Sat 21 Oct 2023 04:33:47 +0000
asID: 61317
IP address blocks: 45.152.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:ce:20:f2:27:da:37:19:ff:7c:9f:db:e6:eb:a5:4d:f5:c6:e1:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:47 2022 GMT
Not After : Oct 21 04:33:47 2023 GMT
Subject: CN=F0A2F34B6C859921AD459E1E80163C286F313879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:40:92:f1:cc:ca:0a:e2:85:9e:4d:26:3a:02:
45:5f:ca:ef:aa:2b:24:b1:2f:21:99:10:b8:d2:aa:
89:5c:ed:18:17:22:7c:14:5d:ac:61:e3:45:5a:7b:
99:c9:0d:47:cc:f2:af:ef:f9:f1:bb:f1:8c:dc:50:
71:dd:d0:23:08:a5:ae:d8:4e:c8:4e:ae:74:97:b8:
c5:f8:87:ae:b4:a2:e2:c2:35:e3:33:da:4c:4d:82:
72:30:d2:9f:cd:28:6f:95:10:5e:e8:ab:91:f8:4d:
05:07:ce:a6:d5:47:bd:23:12:e8:ab:a6:ee:9b:57:
07:c2:0f:d0:93:07:e0:74:fd:5c:df:5f:de:6f:66:
84:c6:bd:a0:af:ba:4f:59:2d:1b:ae:fb:55:c7:d4:
8c:4c:34:89:07:d3:e0:01:87:73:77:ee:04:a0:57:
35:60:2b:d7:c3:34:22:27:b7:71:78:25:db:71:b3:
e9:9d:2a:56:e5:52:fb:3e:a9:d0:dd:b5:27:c4:e0:
52:14:f4:04:03:d4:1a:d6:84:eb:e1:5e:67:01:25:
3e:73:cf:d4:f6:16:14:cc:8d:fb:f3:07:4a:04:01:
db:50:8e:e8:59:e1:10:d5:a1:23:5e:90:5f:0c:fd:
64:5b:cd:17:e5:35:9a:57:01:34:53:2d:6d:d0:b0:
9d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A2:F3:4B:6C:85:99:21:AD:45:9E:1E:80:16:3C:28:6F:31:38:79
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3135322e3138392e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:cc:af:f7:21:0c:2e:cd:87:34:36:81:d5:59:8d:23:59:10:
c0:9e:41:1c:67:66:99:f0:99:4c:60:11:0a:cb:6f:da:2b:9b:
54:06:f8:db:63:d3:ab:a6:ca:31:d2:30:c5:d3:f4:44:34:52:
63:c3:73:eb:54:80:a5:e9:fb:29:97:36:33:3d:83:eb:a6:91:
05:b8:f9:70:cb:9a:e5:76:35:a3:b2:58:ff:1b:a6:f2:8c:ac:
d4:05:57:51:5f:27:cf:f9:47:a0:aa:33:00:87:48:08:7e:ff:
1c:85:df:9a:63:70:ac:11:bb:6d:95:87:a3:fc:03:46:69:81:
04:e0:b2:9b:ff:d1:17:0f:ef:e5:2e:f4:4e:3d:d0:fd:83:dd:
2b:44:fc:72:7b:a4:e8:03:1d:81:4e:ed:6f:d8:1f:9f:e1:1a:
f0:63:99:b1:05:45:60:20:cd:fc:ca:de:c4:2a:dc:46:c1:6d:
a3:cf:da:92:c7:08:60:7d:3f:ec:8d:10:07:43:33:9c:c6:a3:
d3:52:ae:91:2e:5f:83:a1:40:7c:c6:5f:b8:49:85:36:11:9c:
ac:a9:32:fe:a5:06:03:3e:cb:5e:71:ea:a3:ab:6a:4b:75:ba:
98:44:af:d5:d9:14:2f:b6:c8:8b:15:ca:c6:aa:12:31:8e:8e:
35:40:c5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net