Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e39302e3232312e302f32342d3234203d3e203235303938.roa
File: 34352e39302e3232312e302f32342d3234203d3e203235303938.roa (raw, json)
Hash identifier: UbHX4OKJOFJM0BWoODJYHRWmVNgBmNID2xVZAFM5FK4=
Subject key identifier: 95:63:12:43:81:DB:A5:24:CB:A3:21:7B:E9:DC:21:1A:5F:9D:7B:ED
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 120144A814E827DB88FEB20ADB9D08308FE6155F
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e39302e3232312e302f32342d3234203d3e203235303938.roa
Signing time: Tue 28 Jun 2022 04:41:15 +0000
ROA not before: Tue 28 Jun 2022 04:36:15 +0000
ROA not after: Tue 27 Jun 2023 04:41:15 +0000
asID: 25098
IP address blocks: 45.90.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:01:44:a8:14:e8:27:db:88:fe:b2:0a:db:9d:08:30:8f:e6:15:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:15 2022 GMT
Not After : Jun 27 04:41:15 2023 GMT
Subject: CN=9563124381DBA524CBA3217BE9DC211A5F9D7BED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:46:f7:64:df:f7:8f:62:8a:f6:70:61:6e:e0:
5c:68:13:ea:44:0b:ad:3d:cf:f8:c4:59:4d:be:a9:
03:8f:95:3c:80:17:c1:4f:9d:b9:89:e3:51:da:fb:
de:fd:49:e3:b4:54:44:2d:fd:ac:d0:07:71:79:bb:
18:9c:cd:ad:6b:a7:4d:24:35:32:7e:a4:b1:98:1c:
83:dc:9f:52:63:88:d9:3e:8f:4f:61:1c:14:1d:f7:
ff:6c:42:a0:bd:3d:28:b5:cd:7c:29:25:69:fd:31:
94:e9:db:58:9b:f4:24:d2:72:f2:d1:7f:0c:1d:36:
2b:3f:a5:db:02:d5:76:d1:2d:ac:79:c1:06:94:db:
3e:19:98:6f:43:ff:2d:41:3c:07:10:69:36:3f:26:
c8:ef:af:73:53:dc:ba:2b:a9:ec:21:cc:89:36:24:
98:fe:57:93:59:d7:d9:07:aa:fa:9b:70:8a:69:33:
4a:ce:cb:7b:d5:c9:0e:cb:a6:4a:5f:6a:6e:77:89:
64:dc:fc:77:d2:22:7d:d3:7d:ed:c8:99:40:10:75:
fe:71:3a:dc:c5:e4:3e:ad:41:f5:1d:2a:08:a3:7b:
ce:ec:ba:72:67:20:ad:5b:8e:02:a4:84:3f:69:62:
2c:64:11:de:33:e1:1e:ff:58:dd:01:11:b2:82:22:
21:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:63:12:43:81:DB:A5:24:CB:A3:21:7B:E9:DC:21:1A:5F:9D:7B:ED
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e39302e3232312e302f32342d3234203d3e203235303938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.221.0/24
Signature Algorithm: sha256WithRSAEncryption
68:57:1b:36:76:42:ca:e9:c4:da:8a:27:58:83:44:e1:5a:cc:
17:90:09:8e:7c:0e:06:6f:6d:04:22:05:20:d8:97:8c:bd:2f:
1e:51:1c:d0:ea:6e:c5:cd:c0:94:d8:a3:aa:5f:b9:58:5d:f8:
0e:0b:70:69:4d:86:67:3e:22:11:dd:dc:a1:0e:34:07:f1:8b:
87:94:ca:2d:f4:75:3d:4e:8a:2e:86:64:b1:cf:87:b5:1e:8b:
03:85:d8:99:10:4a:ae:ad:3a:2e:f0:c9:97:3e:ec:8f:db:97:
77:6b:70:d6:8d:48:6e:cc:ae:88:0a:df:51:ca:8a:8f:ba:6a:
5a:5f:95:d7:86:6b:6f:7d:a0:07:f5:1a:fa:ae:ee:f0:3e:61:
44:53:52:5d:5b:0b:3a:ad:70:83:4d:06:cf:cf:d1:90:51:c5:
5f:35:9d:d9:32:a0:6a:7e:3f:03:ee:d7:69:8c:39:df:79:a8:
51:09:6a:f1:e6:3b:18:ff:91:4f:35:b9:09:b8:6c:ed:5e:a7:
12:6b:bc:e0:7b:f2:ef:a2:5e:06:f3:10:39:cf:80:9a:2a:1e:
1d:89:c4:9f:57:b7:63:ba:89:1f:e3:55:c6:82:77:7a:09:4a:
9b:a9:3f:34:14:0a:61:22:8e:20:84:85:d0:f3:a6:e8:4c:82:
46:11:af:e0
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUEgFEqBToJ9uI/rIK250IMI/mFV8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjA2MjgwNDM2MTVaFw0yMzA2MjcwNDQxMTVaMDMxMTAvBgNV
BAMTKDk1NjMxMjQzODFEQkE1MjRDQkEzMjE3QkU5REMyMTFBNUY5RDdCRUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDRvdk3/ePYor2cGFu4FxoE+pE
C609z/jEWU2+qQOPlTyAF8FPnbmJ41Ha+979SeO0VEQt/azQB3F5uxicza1rp00k
NTJ+pLGYHIPcn1JjiNk+j09hHBQd9/9sQqC9PSi1zXwpJWn9MZTp21ib9CTScvLR
fwwdNis/pdsC1XbRLax5wQaU2z4ZmG9D/y1BPAcQaTY/Jsjvr3NT3LorqewhzIk2
JJj+V5NZ19kHqvqbcIppM0rOy3vVyQ7Lpkpfam53iWTc/HfSIn3Tfe3ImUAQdf5x
OtzF5D6tQfUdKgije87sunJnIK1bjgKkhD9pYixkEd4z4R7/WN0BEbKCIiF3AgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUlWMSQ4HbpSTLoyF76dwhGl+de+0wHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNDM1MmUzOTMwMmUzMjMyMzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM1
MzAzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQALVrdMA0GCSqGSIb3DQEBCwUAA4IBAQBoVxs2dkLK
6cTaiidYg0ThWswXkAmOfA4Gb20EIgUg2JeMvS8eURzQ6m7FzcCU2KOqX7lYXfgO
C3BpTYZnPiIR3dyhDjQH8YuHlMot9HU9ToouhmSxz4e1HosDhdiZEEqurTou8MmX
PuyP25d3a3DWjUhuzK6ICt9RyoqPumpaX5XXhmtvfaAH9Rr6ru7wPmFEU1JdWws6
rXCDTQbPz9GQUcVfNZ3ZMqBqfj8D7tdpjDnfeahRCWrx5jsY/5FPNbkJuGztXqcS
a7zge/Lvol4G8xA5z4CaKh4dicSfV7djuokf41XGgnd6CUqbqT80FAphIo4ghIXQ
86boTIJGEa/g
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net