Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/3134392e36322e33382e302f32332d3234203d3e203631333137.roa
File: 3134392e36322e33382e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: dp2cqyba764T29CBlkfJMQMMGEeKpdBMCwco1K6BSIU=
Subject key identifier: B5:24:FF:4E:AB:DF:71:B7:19:98:51:78:8F:95:21:91:D7:F7:4F:16
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 16FB25DE3A280C307E77D235E1DDBB1903B25C84
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/3134392e36322e33382e302f32332d3234203d3e203631333137.roa
Signing time: Tue 07 Dec 2021 16:00:00 +0000
ROA not before: Tue 07 Dec 2021 15:55:00 +0000
ROA not after: Tue 06 Dec 2022 16:00:00 +0000
asID: 61317
IP address blocks: 149.62.38.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:fb:25:de:3a:28:0c:30:7e:77:d2:35:e1:dd:bb:19:03:b2:5c:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Dec 7 15:55:00 2021 GMT
Not After : Dec 6 16:00:00 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b4:33:f6:b1:86:55:bf:fe:b8:fe:3c:92:7a:
17:5c:24:33:75:f9:7e:8d:bf:3a:e0:2c:05:f5:73:
ec:b5:12:02:03:ce:94:cf:ed:b8:7f:e6:29:97:45:
72:0f:ba:c0:5e:4a:e1:70:1d:9c:93:29:30:1f:ed:
08:f5:7d:af:83:25:86:af:e3:f9:f3:db:d8:75:b1:
78:14:4c:5a:99:c2:bb:b5:c6:f6:c4:1c:e8:df:22:
9c:50:ea:97:37:17:19:31:d5:c4:17:91:15:9e:4a:
67:83:ed:bf:db:63:08:90:60:5b:33:bb:f0:19:0c:
39:c6:88:f9:d8:c9:62:1b:d5:be:89:23:b6:ea:8c:
e4:01:d1:94:c5:d8:e6:10:35:cd:d0:b3:cc:50:fa:
18:cc:d9:41:2d:f2:e2:b6:b2:58:eb:1f:76:bd:4f:
3a:b7:b0:ce:4f:c3:aa:4d:58:01:46:5f:de:b2:0c:
f7:8f:1f:dc:d2:72:5c:52:9f:b4:28:b2:d4:92:53:
a6:85:01:f6:85:8d:c6:20:38:07:a8:8f:84:fc:a2:
05:e0:24:13:23:3c:e3:5a:77:db:19:36:11:b4:e5:
08:3a:a2:09:8e:6c:d1:ea:49:02:14:4d:a0:90:9c:
cc:29:77:fd:95:03:2c:ac:c5:db:af:12:66:88:e3:
42:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:24:FF:4E:AB:DF:71:B7:19:98:51:78:8F:95:21:91:D7:F7:4F:16
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/3134392e36322e33382e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.62.38.0/23
Signature Algorithm: sha256WithRSAEncryption
88:8d:e4:da:7c:77:d7:81:bb:e4:53:6e:bd:b1:60:3f:be:b1:
f4:0c:c0:02:c0:57:9c:9c:02:6b:26:ad:7a:f2:e1:ae:79:af:
07:70:05:29:f7:05:2f:58:bb:cf:aa:48:a4:2e:b0:0b:fa:18:
59:b0:e5:6e:ad:02:b7:74:df:01:f3:22:ac:31:ad:a1:33:87:
c9:8a:ab:ea:27:be:59:3f:4d:cd:83:5f:c5:fe:94:a1:b4:21:
6a:38:a5:d6:60:c6:c0:3a:b1:e8:89:b2:c5:23:b6:da:4f:ea:
ef:5e:0a:a1:8d:dd:2f:80:98:2c:c8:9b:7f:c0:f7:a6:8e:07:
15:b4:21:b7:29:ea:ed:6a:d5:11:58:83:7d:ec:e3:2f:6b:ca:
67:de:33:8a:bf:4e:fe:0f:2f:51:45:4f:09:4c:5b:05:68:0e:
94:79:f1:94:64:11:80:08:fe:4c:aa:b2:dd:a9:0e:a0:86:51:
3c:6a:c2:b5:c6:4d:a7:26:61:4b:4e:9c:ad:e0:2a:33:51:a2:
03:29:bf:f0:b5:9d:74:17:a8:ac:dd:fa:06:7e:11:bb:e3:6d:
1a:07:00:08:16:ca:89:6f:4f:ab:7b:0f:ac:c0:a0:0e:0e:a0:
8f:c5:0d:42:0a:9e:c3:7c:50:74:36:36:a2:86:a5:dc:25:54:
ca:53:3a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net