Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135392e302f32342d3234203d3e203132383539.roa
File: 34352e31302e3135392e302f32342d3234203d3e203132383539.roa (raw, json)
Hash identifier: kkBMuBn5u+fVbYwzPq5lOMtzoR7B/uezsDLpVCTnG84=
Subject key identifier: 22:F1:05:BB:4A:5F:8B:1F:EB:CC:31:C0:1B:75:E7:0D:DA:2D:6C:E9
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 4363FDE8DD44C2A92BB2D4C2CD506284E6038AAF
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135392e302f32342d3234203d3e203132383539.roa
Signing time: Wed 17 Nov 2021 18:57:00 +0000
ROA not before: Wed 17 Nov 2021 18:52:00 +0000
ROA not after: Wed 16 Nov 2022 18:57:00 +0000
asID: 12859
IP address blocks: 45.10.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:63:fd:e8:dd:44:c2:a9:2b:b2:d4:c2:cd:50:62:84:e6:03:8a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Nov 17 18:52:00 2021 GMT
Not After : Nov 16 18:57:00 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:84:3d:db:35:a3:8b:4a:8b:45:89:59:f4:d3:
b6:8e:bf:26:74:f0:b1:07:29:dc:c9:da:fc:a3:63:
f9:c3:c9:cd:e2:76:fa:21:66:a5:0f:07:d7:fb:c6:
ac:df:90:b8:d9:7b:83:8f:0f:02:c0:79:25:5f:22:
b3:1c:50:63:8e:0d:62:96:97:2b:7a:93:ad:e0:42:
c9:55:65:9c:4a:79:64:a8:01:7c:d5:1a:b7:ee:d9:
6e:cf:a1:12:18:57:f9:88:5b:41:d0:54:94:32:fe:
d5:fa:49:8b:21:49:40:a0:05:3f:45:41:7f:21:47:
9a:b1:26:8a:d4:7d:fd:13:43:50:b4:3a:3c:3f:9b:
b9:be:cf:58:ad:0d:1e:de:4c:23:e1:d2:40:65:34:
e7:be:b9:0a:a4:a6:ad:53:9e:fa:16:e8:04:28:58:
bd:86:9b:3e:9c:f7:97:fd:80:5e:02:49:16:74:b5:
60:c3:f7:26:22:92:c2:49:40:c1:c0:f5:5c:57:ec:
16:6f:56:ae:15:54:21:f8:45:79:24:96:e0:76:8f:
f3:f5:f5:9e:8b:eb:8e:49:68:d7:66:13:eb:c2:90:
b3:e0:77:dd:77:aa:c6:57:cb:47:21:91:8d:80:0f:
a6:f0:c0:e0:0e:c7:bb:b3:90:46:4c:c0:66:2c:0a:
e4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F1:05:BB:4A:5F:8B:1F:EB:CC:31:C0:1B:75:E7:0D:DA:2D:6C:E9
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135392e302f32342d3234203d3e203132383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.159.0/24
Signature Algorithm: sha256WithRSAEncryption
59:69:fc:0b:f3:78:4c:25:7e:67:ef:b7:4f:12:ab:fb:55:f6:
65:ce:6d:50:4c:9a:9c:fe:3f:e8:14:cf:d1:32:e8:da:af:81:
54:c6:1e:29:8b:75:29:ee:dc:e4:3d:26:23:e5:55:c9:b3:82:
e0:e0:a6:fe:84:24:32:36:dd:a3:30:be:eb:f7:4f:f8:fd:c8:
b8:34:9c:69:b3:c3:68:1e:e1:6e:61:e5:e0:90:f5:cc:65:16:
49:3b:78:21:98:08:0b:d4:0c:1b:7e:e6:5e:35:fb:ab:2f:72:
be:7e:f0:04:8d:bd:c5:7b:7b:64:c8:37:90:b4:3d:5e:f3:d5:
ea:23:b5:7d:75:ff:16:9f:64:bf:36:07:60:9e:e8:e4:68:c5:
1e:f4:17:5e:68:37:cd:48:3b:1d:19:19:9d:49:79:0c:f6:3e:
b9:c8:a0:d5:48:c2:65:f4:13:65:68:6f:be:7b:b4:f9:ce:29:
a6:15:e9:04:80:90:79:6c:10:32:7b:9a:be:fe:a6:c2:7b:49:
4f:19:47:c1:e3:10:17:38:50:0e:b4:9d:c6:1c:04:c7:26:c2:
81:4d:c3:b5:91:ea:15:01:05:2b:f6:df:7a:10:fe:5c:3f:29:
f2:1b:bf:9f:94:39:8f:6f:35:57:d1:1a:15:df:73:5c:e4:3c:
72:37:18:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net