Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/189/33372e31362e38392e302f32342d3234203d3e20323035363539.roa
File: 33372e31362e38392e302f32342d3234203d3e20323035363539.roa (raw, json)
Hash identifier: CbAEGeWNxkXSO0bRXGKh3eO7G3E7oDt1AdHg1JGqmpc=
Subject key identifier: 03:B2:86:2E:08:7C:1C:6A:AE:11:56:03:09:2F:D7:44:7D:B2:BB:9B
Certificate issuer: /CN=4cd923117ab255bf36c9c04e9cb209b10c8dc35f
Certificate serial: 2638ED80A9EFE5B0187B695712A4F79962026B24
Authority key identifier: 4C:D9:23:11:7A:B2:55:BF:36:C9:C0:4E:9C:B2:09:B1:0C:8D:C3:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNkjEXqyVb82ycBOnLIJsQyNw18.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/189/33372e31362e38392e302f32342d3234203d3e20323035363539.roa
Signing time: Sat 22 Oct 2022 04:33:10 +0000
ROA not before: Sat 22 Oct 2022 04:28:10 +0000
ROA not after: Sat 21 Oct 2023 04:33:10 +0000
asID: 205659
IP address blocks: 37.16.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:38:ed:80:a9:ef:e5:b0:18:7b:69:57:12:a4:f7:99:62:02:6b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd923117ab255bf36c9c04e9cb209b10c8dc35f
Validity
Not Before: Oct 22 04:28:10 2022 GMT
Not After : Oct 21 04:33:10 2023 GMT
Subject: CN=03B2862E087C1C6AAE115603092FD7447DB2BB9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:9a:4b:64:94:98:6c:ef:04:6d:b6:c9:0b:
c4:33:e1:97:c6:ca:d9:18:be:d1:3f:55:ab:7b:f8:
18:d1:17:90:36:cf:77:a3:0d:25:56:67:c3:4d:e3:
ad:9b:27:d2:fc:0f:cd:c1:44:64:e2:1e:94:25:b2:
fb:86:78:b8:29:f0:2d:92:8b:0c:1c:0d:74:63:3f:
ee:60:ab:cf:a8:a2:5d:48:bc:80:c8:f1:71:37:2e:
e6:60:37:96:97:6a:3d:34:50:c0:71:8b:43:4c:75:
0c:59:a9:cb:40:ad:c5:4a:ef:fb:95:1d:1d:af:c7:
75:2c:eb:04:5c:1c:68:61:c3:1e:df:7e:6c:6f:cd:
95:3f:4b:10:07:b8:a4:f1:3f:9e:b8:38:e9:49:66:
cd:e6:de:1b:5a:ae:e5:4b:00:3c:59:15:8d:d5:a6:
7c:fb:cc:50:84:df:6a:bb:78:53:b6:32:82:34:9f:
16:d3:41:75:7e:af:22:a1:f1:2a:ce:94:66:ce:fa:
90:39:71:f4:d3:cf:5d:98:f1:b9:14:0e:81:d7:03:
ad:f8:09:7e:90:01:85:48:29:2d:e0:0b:03:59:24:
49:70:ce:4c:f5:46:bc:1f:09:79:00:ca:b8:7c:60:
95:22:84:ae:3c:cb:ea:97:b7:30:77:4b:b0:a5:83:
7b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B2:86:2E:08:7C:1C:6A:AE:11:56:03:09:2F:D7:44:7D:B2:BB:9B
X509v3 Authority Key Identifier:
keyid:4C:D9:23:11:7A:B2:55:BF:36:C9:C0:4E:9C:B2:09:B1:0C:8D:C3:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/189/4CD923117AB255BF36C9C04E9CB209B10C8DC35F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNkjEXqyVb82ycBOnLIJsQyNw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/189/33372e31362e38392e302f32342d3234203d3e20323035363539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.89.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:ce:c2:f4:f4:2a:07:54:e4:7b:44:0b:7a:94:57:4f:52:80:
77:1b:cf:d0:61:8e:6f:57:34:55:e8:1a:54:b0:9e:f4:c4:a7:
0b:fd:3b:58:64:10:28:8c:31:f5:a7:c2:dc:b7:a7:89:99:15:
11:23:14:b7:aa:07:7f:dc:be:c0:c0:d5:c1:a3:1c:a4:65:06:
a5:05:12:06:1f:ae:9a:5d:aa:d0:0f:52:93:00:0e:b0:be:de:
02:09:45:3f:0d:0d:0a:45:fe:54:05:0b:a1:58:f7:82:74:55:
f2:60:b5:bc:44:53:d7:e4:7b:8a:96:86:2e:a3:e0:0f:ba:8d:
5c:d8:a6:93:a0:44:19:bd:3c:1e:a3:31:2d:06:60:aa:8e:27:
ca:24:22:ea:20:02:ef:78:2e:56:00:19:af:17:fa:ff:e5:a0:
a4:7b:94:5b:81:42:37:14:de:a9:31:9d:d0:63:c8:65:b3:8f:
54:7d:c4:b3:42:88:45:fe:0d:48:bc:17:4a:3c:61:97:31:e5:
2c:63:0b:9f:20:30:9d:2a:2e:46:11:69:96:75:44:10:3c:0d:
05:6b:7f:4c:7e:50:fa:39:94:36:b9:0d:03:60:8e:57:6d:d4:
2a:0d:56:56:f0:bb:a3:86:0a:a8:82:6c:65:b4:ff:65:17:49:
59:bc:e3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net