Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e3135322e34352e302f32342d3234203d3e203138343530.roa
File: 34352e3135322e34352e302f32342d3234203d3e203138343530.roa (raw, json)
Hash identifier: f36eAG3bj0cjvEmqisY6bSmYDTrwI/LN0rF4AqrXGtE=
Subject key identifier: 43:99:5B:E1:09:D3:11:16:D9:7C:EB:27:6A:D8:79:01:84:38:34:96
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 2D8B2D68CDAB3D99044703D476258D45419CCBA3
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3135322e34352e302f32342d3234203d3e203138343530.roa
Signing time: Tue 28 Jun 2022 04:40:32 +0000
ROA not before: Tue 28 Jun 2022 04:35:32 +0000
ROA not after: Tue 27 Jun 2023 04:40:32 +0000
asID: 18450
IP address blocks: 45.152.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:8b:2d:68:cd:ab:3d:99:04:47:03:d4:76:25:8d:45:41:9c:cb:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Jun 28 04:35:32 2022 GMT
Not After : Jun 27 04:40:32 2023 GMT
Subject: CN=43995BE109D31116D97CEB276AD8790184383496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:7c:13:3f:b6:f3:3c:00:7d:59:ab:f4:fd:
6e:41:7f:c8:f2:b2:0b:34:61:e4:07:ca:69:ca:f9:
25:1e:b5:bd:e2:bf:a6:77:c5:48:5f:5e:78:f5:99:
e8:2a:bc:4f:d1:da:43:a2:9a:51:60:d9:01:ac:00:
25:a3:73:00:57:c4:40:08:e1:2a:cb:96:4d:5a:b6:
f8:08:34:0a:38:91:7b:cf:02:5a:8e:61:30:90:8b:
a8:16:1d:7b:67:0e:9f:8a:10:98:d0:75:a1:4f:0c:
eb:91:82:29:47:20:99:cb:1f:70:71:c9:c6:9f:34:
1a:5f:a9:a1:8e:1a:d8:c3:1e:f4:47:e8:3d:f9:d4:
b6:d1:2f:33:c5:36:9b:55:61:fe:39:48:d0:9b:c7:
21:1d:53:23:82:c7:9d:fc:2a:ea:e8:f4:05:df:cb:
fe:8b:75:18:2f:eb:e8:eb:44:be:8d:31:b7:23:8e:
7e:d1:02:6b:68:d8:58:82:1e:9e:f8:36:1d:1b:92:
f5:db:ac:c8:3f:ef:fe:15:fe:a3:2d:9c:47:b9:76:
50:22:e7:3c:75:0b:a1:33:94:37:b5:0f:2a:7e:81:
44:56:c6:52:a2:a7:f9:06:74:fe:1a:7f:f0:49:ba:
8e:a7:f8:96:f8:83:84:c6:00:fa:2e:ed:29:0e:4e:
2e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:99:5B:E1:09:D3:11:16:D9:7C:EB:27:6A:D8:79:01:84:38:34:96
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e3135322e34352e302f32342d3234203d3e203138343530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.45.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b7:de:5f:89:a8:ea:6e:90:11:80:89:b8:f3:96:38:77:59:
a2:79:65:e5:5b:69:0f:04:5e:45:d9:00:e4:cf:ae:4d:db:d8:
c4:f6:d2:42:a8:a9:a3:8b:96:7f:35:74:aa:94:45:29:db:29:
39:32:44:c6:c8:26:5c:1d:46:14:28:87:64:61:64:ff:9b:84:
dc:8e:9c:05:37:9a:be:7a:5a:57:9a:7a:45:69:b0:e1:35:37:
38:2e:5c:28:9a:8a:88:3a:44:d1:b8:5c:ce:da:9f:9a:06:d5:
0e:0a:95:ba:61:99:8b:0d:2b:a1:ca:c2:77:2d:d7:d1:e0:cb:
87:9c:4c:e8:26:31:b3:52:18:d0:97:8b:6d:5b:d8:92:09:56:
dd:96:42:35:51:55:ae:bb:96:9c:54:98:6c:ee:3f:dd:65:34:
e0:f6:a0:2c:a1:a2:25:84:8d:c8:66:26:1f:ad:de:a1:25:ee:
01:a3:b1:64:0e:3b:57:1e:51:62:5c:25:a4:12:46:52:1d:12:
d4:71:af:9c:bd:66:c3:28:bb:72:99:b5:08:bf:1a:d3:9d:7a:
e9:83:88:0b:ca:53:5a:8a:75:41:2b:00:55:21:2e:49:c8:bb:
6f:f8:50:5f:44:19:ff:dd:65:f7:ef:cd:07:9d:a0:cb:a1:e8:
fa:c0:60:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net