Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/3134392e36322e33382e302f32342d3234203d3e20323037353431.roa
File: 3134392e36322e33382e302f32342d3234203d3e20323037353431.roa (raw, json)
Hash identifier: hQp+8g27CAvxsHR15TAiAAXdNIhp7zECVV4b1yDLJss=
Subject key identifier: 61:24:14:0D:43:44:1B:95:AB:1B:1B:86:78:DC:D4:BD:6A:33:C6:DE
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 2A9A652CA7B4BDD4EC4BB655D0DA4E370C551445
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/3134392e36322e33382e302f32342d3234203d3e20323037353431.roa
Signing time: Tue 28 Jun 2022 04:41:10 +0000
ROA not before: Tue 28 Jun 2022 04:36:10 +0000
ROA not after: Tue 27 Jun 2023 04:41:10 +0000
asID: 207541
IP address blocks: 149.62.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:9a:65:2c:a7:b4:bd:d4:ec:4b:b6:55:d0:da:4e:37:0c:55:14:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:10 2022 GMT
Not After : Jun 27 04:41:10 2023 GMT
Subject: CN=6124140D43441B95AB1B1B8678DCD4BD6A33C6DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5e:bf:4b:20:95:76:e0:2e:3c:75:63:f7:94:
bb:7b:0c:01:22:16:80:c6:b6:78:ad:26:82:f4:95:
75:87:fc:4d:f5:05:d9:37:6d:74:d0:f0:dd:b4:f6:
93:47:68:d6:44:ea:20:28:80:2d:1c:10:4f:d0:a3:
37:26:e3:ae:8b:03:d4:fa:59:f6:40:e6:15:4b:38:
d8:3b:c8:e4:23:5d:02:6b:c3:aa:c7:ad:bb:e7:19:
40:8d:b5:50:13:d7:7c:ab:1d:90:cc:52:cb:d9:e6:
b2:1e:13:c7:f2:4f:cf:d6:7c:3e:ba:63:c1:07:63:
90:0c:ca:d0:21:3a:10:70:10:08:76:c3:7f:12:76:
53:bf:9d:d7:c6:ae:6f:e6:14:54:d4:9a:ba:b4:12:
37:43:e3:2f:1d:5f:9a:60:68:a4:34:30:a2:1f:22:
44:3a:e9:69:ee:77:28:1e:4c:f8:3c:6a:95:76:9d:
80:c7:94:6a:d8:a3:fc:91:fa:0d:f9:94:90:c0:01:
da:54:00:12:21:0f:14:e8:2d:72:ac:31:a2:92:03:
d4:b5:95:73:63:0a:55:db:9b:0b:38:ac:5b:16:32:
5d:ca:aa:4b:a3:eb:29:85:c0:d6:ad:9a:56:61:cd:
41:40:75:92:59:35:1d:39:c9:71:65:90:6d:9f:b7:
7a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:24:14:0D:43:44:1B:95:AB:1B:1B:86:78:DC:D4:BD:6A:33:C6:DE
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/3134392e36322e33382e302f32342d3234203d3e20323037353431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.62.38.0/24
Signature Algorithm: sha256WithRSAEncryption
32:31:d3:59:0c:66:59:38:62:ff:c2:b7:c3:c5:d4:9b:e9:96:
86:d5:fd:62:38:08:48:cf:67:12:c1:71:a5:0e:fe:82:12:6c:
2d:a7:ca:9a:10:83:f5:af:75:8a:bb:77:47:3f:ad:d3:4a:17:
3b:fa:ef:6f:65:3d:11:99:11:2c:50:b8:d4:08:e7:e6:db:d7:
a6:3d:da:37:1f:ec:a6:26:b7:9e:f6:c1:29:cd:79:9b:92:bf:
f2:87:99:29:60:56:f3:15:39:16:30:2d:ef:13:4c:52:3e:35:
ba:59:cd:d9:2a:47:fd:12:1a:c4:03:94:35:29:2b:b1:45:97:
aa:e1:47:25:8d:4c:8e:0f:6f:7d:7e:c5:87:45:67:ea:22:e1:
eb:e5:46:fc:dd:1b:52:83:52:d5:b9:20:b1:eb:24:ba:21:c2:
5c:00:93:89:75:75:d6:93:d6:74:a1:0e:e2:24:4e:6f:5c:3e:
64:53:b1:64:0d:ce:9f:0a:57:ea:eb:df:9d:82:f6:54:4b:7b:
2c:48:44:2e:d2:df:4b:0c:bb:1f:37:e8:f5:0d:6b:77:37:91:
da:3d:22:b4:a4:f5:03:4e:fe:28:5a:c6:ef:3a:ba:cd:4f:59:
2f:b8:ff:7c:41:49:69:31:b5:bb:1d:bf:fb:40:10:fe:8b:80:
e8:5a:c2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net