Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e38352e3134342e302f32332d3234203d3e203631333137.roa
File: 34352e38352e3134342e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: xsSDEzLn+gDMYrZnHauZGHCpxHpLF47NipyZomEdPx4=
Subject key identifier: A8:C4:A3:8E:74:17:C4:EA:DE:FB:8E:08:23:68:DE:6C:CC:57:E2:05
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 6D4012AA189C6F3DD63B4692E6CA1080B80DBD2D
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38352e3134342e302f32332d3234203d3e203631333137.roa
Signing time: Tue 28 Jun 2022 04:41:19 +0000
ROA not before: Tue 28 Jun 2022 04:36:19 +0000
ROA not after: Tue 27 Jun 2023 04:41:19 +0000
asID: 61317
IP address blocks: 45.85.144.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:40:12:aa:18:9c:6f:3d:d6:3b:46:92:e6:ca:10:80:b8:0d:bd:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:19 2022 GMT
Not After : Jun 27 04:41:19 2023 GMT
Subject: CN=A8C4A38E7417C4EADEFB8E082368DE6CCC57E205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0b:8a:7d:60:0b:1b:b9:0c:a9:41:1d:75:dc:
d6:f1:ba:89:5e:68:fd:bd:3f:6a:45:df:78:28:57:
6a:49:6b:e7:38:d7:78:db:26:2f:79:58:85:59:36:
bb:3f:5c:7c:d0:07:cf:ad:b9:d4:a6:c7:a7:2f:87:
72:46:a4:b8:ea:43:80:d2:b8:c2:0e:52:8b:10:e8:
91:ea:44:92:c6:b4:44:e2:c4:ee:00:23:75:c0:6c:
e4:c4:64:0c:33:20:80:a1:45:08:0f:ab:62:d8:a3:
c4:e3:8e:63:54:da:4b:e7:03:62:12:07:31:5a:58:
3b:c1:bb:8a:a0:2c:81:91:4c:58:87:a9:b6:04:ae:
c5:c5:4e:e3:2f:f2:08:6f:8b:b9:9d:05:ec:bd:61:
ab:b3:0b:84:cd:bd:41:73:4f:0d:f3:c5:43:0e:d9:
93:61:c3:02:06:35:58:a4:b6:ab:f8:ce:bb:75:41:
8c:2f:7d:84:e8:01:98:60:8b:69:52:8d:01:38:7b:
61:63:33:f3:61:b5:96:1d:62:7a:20:3f:cf:a0:48:
d3:b4:19:6b:c5:19:6a:b7:aa:e9:c7:73:02:b8:f7:
7a:f5:be:02:b5:00:ff:a3:9e:21:4e:72:d7:09:ed:
4b:6a:af:87:9d:20:0b:c0:61:17:9e:1a:93:b7:62:
e8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C4:A3:8E:74:17:C4:EA:DE:FB:8E:08:23:68:DE:6C:CC:57:E2:05
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38352e3134342e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.144.0/23
Signature Algorithm: sha256WithRSAEncryption
c5:e9:21:7f:21:b1:67:63:f8:bc:56:3f:48:c5:77:e3:40:20:
58:32:e5:af:7e:86:60:af:4a:1f:95:c9:2d:bf:32:d4:2a:65:
98:c3:7b:85:a6:c7:ee:81:7f:68:40:7b:06:f0:39:d7:9d:7f:
29:27:e1:8a:e2:14:1a:00:c9:5d:87:8a:a6:3d:15:0a:4a:30:
a1:4f:60:e7:17:24:5a:91:90:bf:86:37:11:ce:c3:d3:3e:0f:
dd:d7:46:d9:a4:87:f6:d6:4a:9a:50:d8:47:57:83:5c:4f:eb:
15:13:ab:03:c8:59:a2:7a:56:1d:da:c4:a1:33:6a:5e:4e:92:
97:91:cb:af:fb:c1:96:98:58:17:2b:04:82:0a:d8:af:c0:a4:
92:5c:2a:f4:bf:3a:4f:c6:39:81:a8:8e:fa:4c:c2:a9:ee:22:
30:9d:19:ce:3e:1b:ac:6f:c6:3f:37:fd:0e:93:a6:dc:db:d0:
a3:6b:f3:b9:6f:c7:ee:5d:b2:c4:5c:e4:a1:1f:39:2d:ca:ec:
77:91:f2:ff:cf:f5:21:a4:3e:8f:11:48:e0:aa:0b:a1:c7:76:
d0:aa:8f:99:96:93:8d:ef:6c:8e:aa:4a:01:10:2a:16:dd:a6:
ae:b9:62:5f:9c:15:bb:4b:ee:29:76:a3:97:a5:81:0d:f6:88:
81:7e:0e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net