Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/352e3138302e3135302e302f32332d3234203d3e203631333137.roa
File: 352e3138302e3135302e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: Ccxw0LSOrQWvwGFrvMiCn3crbs0SwG046nS1oMIoxK4=
Subject key identifier: F3:00:64:2E:11:50:E8:3A:1A:C6:F2:E1:60:1B:70:08:3D:8D:34:7B
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 7DF5AF7BEECCE341FF8AB0B7B9189FE1DBE71ABE
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3138302e3135302e302f32332d3234203d3e203631333137.roa
Signing time: Wed 11 May 2022 09:21:12 +0000
ROA not before: Wed 11 May 2022 09:16:12 +0000
ROA not after: Wed 10 May 2023 09:21:12 +0000
asID: 61317
IP address blocks: 5.180.150.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:f5:af:7b:ee:cc:e3:41:ff:8a:b0:b7:b9:18:9f:e1:db:e7:1a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: May 11 09:16:12 2022 GMT
Not After : May 10 09:21:12 2023 GMT
Subject: CN=F300642E1150E83A1AC6F2E1601B70083D8D347B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0f:ea:64:ac:0d:ba:95:90:48:83:dd:55:db:
a2:65:d4:63:9a:d4:a8:4e:0a:34:03:e3:f6:9e:c0:
5f:51:94:0d:19:1b:08:cf:18:84:53:9d:ff:15:cd:
fa:fd:53:79:f6:a2:5e:6a:f8:09:73:05:e4:3c:fe:
92:12:55:0f:0f:af:42:f4:31:ed:af:fc:e8:8a:39:
59:5f:db:71:e7:c0:d5:84:94:4c:93:66:78:44:cf:
d1:58:ec:0a:c1:1c:b3:0f:12:d3:fb:60:7f:36:a8:
e0:08:58:8f:f8:b6:14:4a:87:d5:cd:ec:26:c4:a0:
25:74:67:1a:c7:c9:43:d7:d1:eb:3c:80:86:bf:f7:
9e:41:c2:cf:39:5a:96:1b:58:a2:32:6b:c2:b2:19:
a7:79:7f:aa:a8:9a:a8:c2:36:c5:87:6a:b9:c4:7b:
2e:98:a9:2f:7c:b6:4e:93:d4:e9:fe:74:6e:05:c9:
fb:b1:3a:0e:c4:e9:dc:4f:d5:26:3c:d0:0b:6f:3b:
f7:e6:09:2f:be:7b:13:1f:ee:26:fc:30:76:59:46:
99:34:c0:5e:0d:6c:b0:38:a9:7a:09:33:7f:60:34:
20:cf:82:86:36:d7:2a:da:9e:9c:1f:fd:c0:ea:ff:
19:0d:1a:42:26:1a:3d:e8:cd:0a:b6:26:91:d6:9d:
90:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:00:64:2E:11:50:E8:3A:1A:C6:F2:E1:60:1B:70:08:3D:8D:34:7B
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3138302e3135302e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.150.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:d5:ba:04:34:44:fb:a9:8c:18:23:82:1d:a0:d2:af:6d:4f:
eb:49:0a:4c:d3:40:c8:78:f4:27:50:f5:ec:2e:a5:0e:12:58:
84:7d:5f:a1:b7:c6:91:c4:eb:40:b6:d9:c6:46:83:3b:a1:95:
43:f2:77:3d:e4:a5:4f:b1:64:f9:97:8c:06:32:ac:b6:ef:95:
f8:39:39:a8:b9:c5:bd:1b:56:c1:09:87:a4:ab:79:cf:83:95:
91:d9:0e:ae:10:e9:60:86:7d:48:24:a9:62:89:6f:30:37:7a:
e3:39:06:a9:92:61:93:b7:d6:c3:6d:38:9f:04:0a:1e:1f:77:
30:fe:06:73:ba:cd:fc:ee:0a:1a:6b:1a:bc:d7:36:b7:40:24:
4d:89:3a:da:c2:7a:a5:99:64:67:57:80:74:de:ba:d7:0b:a3:
77:00:31:f7:38:44:17:f8:16:37:c5:1e:19:ea:d9:d2:64:78:
84:5d:3c:d6:ec:f8:83:ca:c0:01:dc:f2:ae:98:61:a1:aa:ac:
fa:cd:b5:19:14:a4:78:d8:06:05:2e:4c:76:9d:e9:af:ff:52:
cf:f2:d7:ff:ae:cd:b0:e7:ad:3a:b0:48:42:3d:81:79:d9:03:
0d:cf:f3:da:f5:ee:d3:c7:87:e6:ca:a1:d3:e7:38:c8:3d:4b:
6f:1d:19:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net