Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135392e302f32342d3234203d3e203530363733.roa
File: 34352e31302e3135392e302f32342d3234203d3e203530363733.roa (raw, json)
Hash identifier: U1CEyOG7XNPx3bUQS6+mP4nQgqK0sBneIuOC4TAayr0=
Subject key identifier: D7:B3:47:EF:B4:63:1A:CD:22:DC:F6:3E:ED:F5:5D:B7:B2:B6:11:60
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 30BA371923AF3251AA657E9EC04910D5A056CA70
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135392e302f32342d3234203d3e203530363733.roa
Signing time: Wed 17 Nov 2021 18:57:04 +0000
ROA not before: Wed 17 Nov 2021 18:52:04 +0000
ROA not after: Wed 16 Nov 2022 18:57:04 +0000
asID: 50673
IP address blocks: 45.10.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:ba:37:19:23:af:32:51:aa:65:7e:9e:c0:49:10:d5:a0:56:ca:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Nov 17 18:52:04 2021 GMT
Not After : Nov 16 18:57:04 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f9:bf:c6:5e:91:7e:08:7e:3e:9f:73:b9:34:
54:a8:30:fc:fb:41:e2:29:24:87:56:43:40:ca:9c:
e9:4e:ba:64:c1:74:bb:66:41:99:b1:a9:d0:a3:f4:
31:aa:e9:c8:48:3c:72:fa:3e:07:e9:ec:50:bf:a3:
73:89:a7:df:5e:17:69:62:b3:8f:f6:cb:3f:15:32:
67:b7:df:1d:a6:08:c0:c3:fb:c9:ad:7d:d9:4e:17:
46:af:2c:07:fd:4b:58:78:cb:dc:e0:c9:ce:77:62:
0c:b6:ea:f5:fd:e8:18:4b:ae:36:2f:50:0c:fa:b4:
c2:3f:3b:58:e7:0b:04:45:59:c4:b5:ac:19:b9:c8:
3e:5e:6a:80:f4:17:83:55:8f:2a:ee:f2:d7:13:bf:
0b:84:9f:c0:0f:d5:91:f0:28:41:3e:74:4e:57:57:
e5:99:ef:f3:22:13:ab:ee:75:2e:a4:5f:9b:56:e6:
ae:7e:a3:57:e8:97:a6:82:77:22:be:66:18:65:5f:
bc:e9:f2:36:20:a7:57:85:56:ba:eb:03:12:2d:22:
78:ce:be:b5:61:dc:6f:8c:a6:09:7c:cc:de:88:1f:
59:c5:f1:5c:77:db:4d:75:cb:eb:dd:a5:c8:ed:39:
2f:0a:29:26:45:e8:cc:23:3e:c4:d9:6b:84:da:e0:
73:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B3:47:EF:B4:63:1A:CD:22:DC:F6:3E:ED:F5:5D:B7:B2:B6:11:60
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135392e302f32342d3234203d3e203530363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.159.0/24
Signature Algorithm: sha256WithRSAEncryption
08:df:38:ac:36:6b:3a:02:dc:31:dc:92:0d:7e:c8:16:b2:7a:
73:95:59:8b:f4:69:6f:f4:89:6a:23:13:25:c0:7d:29:bd:95:
99:cb:9b:14:d7:8b:fe:9d:b8:15:5c:af:18:a2:4b:09:cd:2d:
a7:f8:f5:01:e0:2f:97:3f:80:92:ad:71:83:3d:cc:e7:70:ad:
ce:b6:25:47:08:c8:cf:dc:ab:bd:52:82:04:9d:bb:5c:90:bb:
27:38:4e:05:77:c2:f4:da:0e:8a:ef:e7:85:cc:11:6b:02:94:
04:43:bb:cc:e3:18:cb:66:78:a1:1b:f6:09:c8:3c:da:8b:c9:
0c:84:46:46:1a:ff:79:46:4d:a8:11:8c:eb:ee:3f:08:8c:1b:
98:a7:06:59:d0:34:76:3f:9e:12:3d:b7:65:a2:c3:dc:44:68:
78:c1:b7:a8:6c:0b:28:f2:1f:be:6b:63:f7:25:a0:f1:26:d0:
fc:bf:1b:66:7f:6b:a3:e7:62:16:86:f3:37:04:0f:db:c6:32:
0a:27:e8:bf:e6:3d:b0:62:45:d1:6f:8f:8d:6d:10:e9:ee:e1:
7e:94:8b:85:70:9d:83:20:0b:19:2a:7f:dd:8e:ef:be:31:33:
b6:7a:c8:74:86:e6:4f:18:61:47:f1:6f:52:2d:41:83:a1:28:
a8:a6:da:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net