Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e38352e3134342e302f32342d3234203d3e20323131383337.roa
File: 34352e38352e3134342e302f32342d3234203d3e20323131383337.roa (raw, json)
Hash identifier: CLnTLjDq5tk0QMoQvXoH7sg3+lCL31aTqZEuC6EMrlk=
Subject key identifier: 5E:68:B5:70:29:88:25:5E:9F:7C:95:BC:95:7E:FF:85:40:3F:8D:5B
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 76ECF7D1E53FA2CDD38F90E36FBEEC26D7F3F019
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38352e3134342e302f32342d3234203d3e20323131383337.roa
Signing time: Tue 28 Jun 2022 04:41:14 +0000
ROA not before: Tue 28 Jun 2022 04:36:14 +0000
ROA not after: Tue 27 Jun 2023 04:41:14 +0000
asID: 211837
IP address blocks: 45.85.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:ec:f7:d1:e5:3f:a2:cd:d3:8f:90:e3:6f:be:ec:26:d7:f3:f0:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:14 2022 GMT
Not After : Jun 27 04:41:14 2023 GMT
Subject: CN=5E68B5702988255E9F7C95BC957EFF85403F8D5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ba:c2:4a:bd:ed:c2:13:ed:4f:35:cd:aa:a2:
df:76:83:82:81:3f:6b:d5:07:5a:53:c7:49:0b:0b:
f9:20:93:07:58:83:15:95:89:cd:59:c4:0d:5b:4a:
85:f3:4f:25:a4:1c:ec:21:42:df:6e:26:c1:f4:be:
31:fb:fa:59:12:57:a6:5b:de:5a:85:d1:c2:ea:64:
a2:ed:00:7f:2e:a2:c1:b2:fd:db:aa:dc:a4:13:8f:
f2:d1:62:b0:34:78:32:6a:56:20:c2:65:ac:56:51:
9c:d8:6b:2b:c6:4b:b3:70:ea:02:48:af:64:64:38:
8f:60:2e:26:8e:b1:60:f2:ac:f0:49:7a:0b:44:c6:
14:53:04:de:57:9f:be:90:0d:46:bb:b9:25:b2:b5:
30:60:f8:1f:15:00:25:b1:4c:5d:2e:25:36:74:26:
a2:13:5c:fe:79:f7:e2:95:bb:38:65:7b:b9:4b:7d:
63:44:fd:f0:5c:b9:8c:a2:72:df:51:4b:34:9c:01:
cc:ee:26:ef:01:ae:2a:42:5d:05:27:71:3e:69:f3:
d3:49:2c:67:ac:95:fa:68:c3:5d:49:40:56:a1:86:
a7:55:8c:dd:4b:ba:5d:49:4d:15:9f:0e:fb:3f:37:
84:2a:c2:33:c5:4a:4c:29:9c:4e:4e:70:80:38:ce:
41:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:68:B5:70:29:88:25:5E:9F:7C:95:BC:95:7E:FF:85:40:3F:8D:5B
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38352e3134342e302f32342d3234203d3e20323131383337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.144.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:32:1e:70:66:b2:cf:87:f0:8e:27:75:fc:06:6d:1c:6b:e2:
1a:7e:b0:e1:23:0a:85:37:6c:fb:22:cf:89:71:38:dc:ad:30:
21:31:0f:c1:f0:10:fa:d2:08:f7:11:a9:6c:67:ea:10:e8:c1:
ba:7f:55:ac:ae:71:14:2e:6e:c8:4e:bb:90:7b:49:46:dd:e4:
f1:f5:f6:52:ec:db:46:22:68:c7:0c:ea:9c:4e:de:b5:36:a0:
16:6a:05:62:8f:ab:fd:e1:1a:08:e5:3c:96:c0:d8:e1:42:e2:
f7:eb:fa:c3:c2:56:ee:71:18:b6:b6:8d:bb:a4:d9:4f:52:e0:
76:4a:c4:b6:5a:b7:6b:ba:bf:95:5e:f0:e8:5e:c3:10:ab:4b:
bc:c3:03:85:71:41:37:cd:8e:0b:bb:37:25:62:6a:d8:92:2d:
64:8a:78:e5:d0:aa:0b:91:c8:63:30:a8:46:be:5f:62:ab:3f:
f1:f1:33:cd:cd:9a:0f:ba:6a:cb:48:f7:c9:93:c8:5c:0a:18:
10:3f:93:b2:9f:fb:47:c6:ca:c9:6a:44:05:04:af:dd:e6:86:
76:f7:52:73:2e:05:86:29:e8:88:69:41:5f:5b:0d:c6:55:90:
6c:4c:ba:28:52:34:29:9d:db:57:df:b3:c0:e0:f1:58:49:ee:
0a:3a:4d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net