Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e3133372e3139342e302f32332d3234203d3e203631333137.roa
File: 34352e3133372e3139342e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: NX2QqENhd/U2mKNpzkvgXlUD/1AZvIHCozajS16n4cE=
Subject key identifier: BB:04:10:C1:AF:0A:9E:26:FD:6E:CC:2A:2C:2C:4E:25:7C:0B:C2:CA
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 2D655D70DBD7DF09CE32D8FEC5183E080374E5DA
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e3133372e3139342e302f32332d3234203d3e203631333137.roa
Signing time: Tue 28 Jun 2022 04:41:12 +0000
ROA not before: Tue 28 Jun 2022 04:36:12 +0000
ROA not after: Tue 27 Jun 2023 04:41:12 +0000
asID: 61317
IP address blocks: 45.137.194.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:65:5d:70:db:d7:df:09:ce:32:d8:fe:c5:18:3e:08:03:74:e5:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:12 2022 GMT
Not After : Jun 27 04:41:12 2023 GMT
Subject: CN=BB0410C1AF0A9E26FD6ECC2A2C2C4E257C0BC2CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:06:5e:32:a5:26:9f:ca:6c:28:c7:e8:72:b7:
e9:8e:82:0a:a2:38:40:91:ac:d8:4d:c7:a3:4f:8f:
7a:fe:d4:37:89:bb:96:ec:92:47:12:e9:21:b4:24:
38:c4:c2:52:7c:53:46:0b:7c:15:5b:e5:24:d5:3d:
f7:49:b7:ef:51:f6:20:38:e4:eb:8d:87:b6:97:05:
12:40:57:d8:f9:60:83:f7:19:e8:d9:9b:05:f8:f5:
ab:7a:a9:84:41:a0:b7:5d:91:8d:ff:de:bd:9b:cb:
23:1f:d2:0e:14:c8:6c:e1:de:56:87:b0:b1:a9:2a:
0a:cd:cd:80:03:9f:e0:49:4e:f6:d2:ff:59:5b:7b:
68:67:2e:68:14:b3:7e:c0:0f:e9:f6:46:c7:b3:fc:
80:6c:82:13:fc:3c:ae:c0:c2:dc:ec:ce:72:d1:ec:
3b:f3:f6:71:08:36:01:0a:55:8f:ba:22:31:2a:27:
f2:68:f0:9e:c1:8a:8f:60:ce:ea:93:8b:2c:49:f9:
b2:a1:fc:65:41:43:f1:2e:1d:a6:84:28:33:fb:22:
a7:97:d6:7d:d7:91:5c:3d:1c:c2:a2:f7:d4:c4:3e:
5b:6b:b0:e7:80:b8:78:6a:31:ba:29:4e:21:a7:66:
b1:29:0b:4c:e2:42:6b:ad:3f:ea:7e:32:cf:a5:a2:
74:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:04:10:C1:AF:0A:9E:26:FD:6E:CC:2A:2C:2C:4E:25:7C:0B:C2:CA
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e3133372e3139342e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.194.0/23
Signature Algorithm: sha256WithRSAEncryption
87:e2:9a:c6:e9:a9:2e:4f:e7:b6:0a:56:82:d1:10:fc:a2:7f:
c1:b6:03:9a:10:70:5e:dc:b6:a8:b6:dd:6d:4e:8e:5a:f9:bb:
46:f2:a3:e4:81:36:7b:f0:0b:15:68:ec:e8:34:81:cd:b9:a0:
ea:d8:67:2d:91:02:ec:f6:57:70:30:d4:b5:dd:9d:7c:6c:5c:
c9:17:69:f2:9f:75:1e:a4:63:b2:5a:c3:58:ad:21:aa:70:a9:
aa:11:53:3f:8a:af:d1:4a:18:94:54:58:95:9a:4a:55:36:ff:
ba:84:22:dc:7e:90:92:e8:b0:d4:67:16:93:dd:80:30:d3:9c:
66:4d:05:1e:63:37:a5:b3:db:5f:24:58:96:70:7a:60:58:a0:
05:66:25:4c:c4:4c:6f:d9:f8:3a:d4:42:ae:bc:a1:d4:51:fb:
c1:0b:3a:67:f5:89:e2:58:c0:3a:3a:b3:6f:dc:52:3f:ea:bc:
20:19:2e:8b:64:c6:f8:2a:6a:a9:7a:32:9b:5f:4b:c7:65:74:
a5:64:81:d8:bb:a5:35:61:98:6c:c5:26:b2:a3:73:d5:d9:22:
f3:77:0b:3b:7b:8c:f7:35:96:92:9d:ad:0c:bc:68:9a:72:c6:
01:6c:11:43:e8:ab:d0:6e:77:85:15:f1:41:b3:c2:e7:3a:d8:
c1:d8:34:58
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIULWVdcNvX3wnOMtj+xRg+CAN05dowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjA2MjgwNDM2MTJaFw0yMzA2MjcwNDQxMTJaMDMxMTAvBgNV
BAMTKEJCMDQxMEMxQUYwQTlFMjZGRDZFQ0MyQTJDMkM0RTI1N0MwQkMyQ0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWBl4ypSafymwox+hyt+mOggqi
OECRrNhNx6NPj3r+1DeJu5bskkcS6SG0JDjEwlJ8U0YLfBVb5STVPfdJt+9R9iA4
5OuNh7aXBRJAV9j5YIP3GejZmwX49at6qYRBoLddkY3/3r2byyMf0g4UyGzh3laH
sLGpKgrNzYADn+BJTvbS/1lbe2hnLmgUs37AD+n2Rsez/IBsghP8PK7AwtzsznLR
7Dvz9nEINgEKVY+6IjEqJ/Jo8J7Bio9gzuqTiyxJ+bKh/GVBQ/EuHaaEKDP7IqeX
1n3XkVw9HMKi99TEPltrsOeAuHhqMbopTiGnZrEpC0ziQmutP+p+Ms+lonSHAgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQUuwQQwa8Knib9bswqLCxOJXwLwsowHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4Zs
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNDM1MmUzMTMzMzcyZTMxMzkzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM2
MzEzMzMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAEticIwDQYJKoZIhvcNAQELBQADggEBAIfimsbp
qS5P57YKVoLREPyif8G2A5oQcF7ctqi23W1Ojlr5u0byo+SBNnvwCxVo7Og0gc25
oOrYZy2RAuz2V3Aw1LXdnXxsXMkXafKfdR6kY7Jaw1itIapwqaoRUz+Kr9FKGJRU
WJWaSlU2/7qEItx+kJLosNRnFpPdgDDTnGZNBR5jN6Wz218kWJZwemBYoAVmJUzE
TG/Z+DrUQq68odRR+8ELOmf1ieJYwDo6s2/cUj/qvCAZLotkxvgqaql6MptfS8dl
dKVkgdi7pTVhmGzFJrKjc9XZIvN3Czt7jPc1lpKdrQy8aJpyxgFsEUPoq9Bud4UV
8UGzwuc62MHYNFg=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net