Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e38302e3138302e302f32322d3234203d3e203437353833.roa
File: 34352e38302e3138302e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: V+LHeO4uybC45AUafybxavXiYRXhHm4NxLKR/sIMVBE=
Subject key identifier: D2:CA:4E:8B:4A:CB:6A:FA:DB:02:23:96:5B:AB:FD:4F:CE:9E:24:C6
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 311DF421DD22D38F559F79B67AB1EC0164976217
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e38302e3138302e302f32322d3234203d3e203437353833.roa
Signing time: Sat 22 Oct 2022 04:33:47 +0000
ROA not before: Sat 22 Oct 2022 04:28:47 +0000
ROA not after: Sat 21 Oct 2023 04:33:47 +0000
asID: 47583
IP address blocks: 45.80.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:1d:f4:21:dd:22:d3:8f:55:9f:79:b6:7a:b1:ec:01:64:97:62:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:47 2022 GMT
Not After : Oct 21 04:33:47 2023 GMT
Subject: CN=D2CA4E8B4ACB6AFADB0223965BABFD4FCE9E24C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:e1:33:62:a5:bf:f5:6b:22:c4:92:30:43:
88:bf:40:49:71:e5:42:71:68:aa:a6:33:46:33:cd:
4e:10:0f:c3:cb:af:66:0c:0e:1b:79:7b:ec:37:31:
ce:2a:b4:ad:4f:64:34:fd:d6:70:5d:4e:c4:94:f6:
8e:8d:33:09:11:01:40:02:e9:e9:bd:ed:cc:99:39:
85:42:81:d0:ff:e6:25:a0:35:e1:12:05:70:cc:d2:
83:8c:01:16:77:36:e5:8c:52:4b:58:07:b5:81:90:
58:bd:5f:63:24:87:22:a2:29:82:39:d5:7c:ea:28:
1b:45:e2:3e:7d:ff:1b:3e:55:8f:49:55:b0:8f:dc:
9a:14:7f:94:43:5a:44:7b:dc:c6:cd:cb:63:2d:8e:
64:45:0b:e8:31:d4:f1:d9:6d:6a:9a:b0:c8:20:cb:
88:60:4c:66:11:17:24:f5:7c:9e:dc:61:f0:24:6b:
fb:80:cd:71:d0:e8:16:95:db:7c:e9:18:04:8f:00:
b6:6f:07:3c:c4:95:ed:18:d5:d7:71:56:19:c1:be:
b8:70:d7:e0:4e:f7:74:70:4b:ec:18:fb:d3:e0:5c:
d3:15:14:41:ea:f7:c3:fc:a9:bf:f5:97:9e:04:4a:
17:4c:3f:06:92:9b:c8:88:33:29:33:28:ed:24:d3:
c1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CA:4E:8B:4A:CB:6A:FA:DB:02:23:96:5B:AB:FD:4F:CE:9E:24:C6
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e38302e3138302e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.180.0/22
Signature Algorithm: sha256WithRSAEncryption
86:ba:4f:14:50:4e:8d:9d:3b:22:95:59:d9:e5:c3:fd:5b:a1:
2f:f6:88:64:36:fe:45:75:10:55:18:59:77:4f:dd:b4:f5:4e:
7b:be:a3:82:e3:6c:14:bb:88:e5:93:a2:2e:8a:19:27:e6:2f:
a1:4c:a7:62:16:a7:4e:98:19:10:2b:0f:b3:9e:ca:42:26:84:
54:58:ec:c2:cb:cf:53:9b:ca:59:e3:0d:a1:d6:5c:bb:bc:7b:
01:ff:aa:95:33:90:50:fb:f0:c3:a9:14:27:9b:45:82:1f:94:
7c:ef:e7:1d:01:e3:ee:68:d2:07:16:77:75:76:a1:f1:a4:99:
4b:72:02:f1:5a:41:25:06:a6:9e:df:6f:ff:4a:af:ee:ed:9b:
63:2f:d8:e8:f6:4c:1c:52:f3:1b:31:0a:dc:54:38:79:96:ec:
29:85:d4:52:06:c5:91:49:d5:3a:fb:22:c0:91:96:c8:fe:bb:
c3:3f:02:3a:32:87:24:a0:7e:c3:cb:a3:26:2c:37:77:b8:6a:
9e:78:9e:53:7c:80:0b:52:96:4f:e3:01:aa:6b:56:8d:a8:e6:
b2:46:59:9e:17:32:a3:f0:d0:c2:7c:50:63:be:74:bc:93:c2:
97:bb:b6:9a:fa:4a:b0:45:81:d3:54:21:ea:a9:fa:11:b9:91:
8e:79:21:33
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgIUMR30Id0i049Vn3m2erHsAWSXYhcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGZlODliZjdkYWEwZjhhYTdkMDIyZGY5ODRlNmVhMzdl
NmY2MGEzZDAeFw0yMjEwMjIwNDI4NDdaFw0yMzEwMjEwNDMzNDdaMDMxMTAvBgNV
BAMTKEQyQ0E0RThCNEFDQjZBRkFEQjAyMjM5NjVCQUJGRDRGQ0U5RTI0QzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1duEzYqW/9WsixJIwQ4i/QElx
5UJxaKqmM0YzzU4QD8PLr2YMDht5e+w3Mc4qtK1PZDT91nBdTsSU9o6NMwkRAUAC
6em97cyZOYVCgdD/5iWgNeESBXDM0oOMARZ3NuWMUktYB7WBkFi9X2MkhyKiKYI5
1XzqKBtF4j59/xs+VY9JVbCP3JoUf5RDWkR73MbNy2MtjmRFC+gx1PHZbWqasMgg
y4hgTGYRFyT1fJ7cYfAka/uAzXHQ6BaV23zpGASPALZvBzzEle0Y1ddxVhnBvrhw
1+BO93RwS+wY+9PgXNMVFEHq98P8qb/1l54EShdMPwaSm8iIMykzKO0k08GZAgMB
AAGjggHzMIIB7zAdBgNVHQ4EFgQU0spOi0rLavrbAiOWW6v9T86eJMYwHwYDVR0j
BBgwFoAU3+ib99qg+Kp9Ai35hObqN+b2Cj0wDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzE4MC9ERkU4OUJGN0RBQTBGOEFBN0QwMjJERjk4NEU2RUEz
N0U2RjYwQTNELmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMy1pYjk5cWctS3A5
QWkzNWhPYnFOLWIyQ2owLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzAL
hmxyc3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNp
dC8xODAvMzQzNTJlMzgzMDJlMzEzODMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIw
MzQzNzM1MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1QtDANBgkqhkiG9w0BAQsFAAOCAQEAhrpP
FFBOjZ07IpVZ2eXD/VuhL/aIZDb+RXUQVRhZd0/dtPVOe76jguNsFLuI5ZOiLooZ
J+YvoUynYhanTpgZECsPs57KQiaEVFjswsvPU5vKWeMNodZcu7x7Af+qlTOQUPvw
w6kUJ5tFgh+UfO/nHQHj7mjSBxZ3dXah8aSZS3IC8VpBJQamnt9v/0qv7u2bYy/Y
6PZMHFLzGzEK3FQ4eZbsKYXUUgbFkUnVOvsiwJGWyP67wz8COjKHJKB+w8ujJiw3
d7hqnnieU3yAC1KWT+MBqmtWjajmskZZnhcyo/DQwnxQY750vJPCl7u2mvpKsEWB
01Qh6qn6EbmRjnkhMw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net