Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/352e3138302e3135312e302f32342d3234203d3e2032383536.roa
File: 352e3138302e3135312e302f32342d3234203d3e2032383536.roa (raw, json)
Hash identifier: pRLCwMe05/0ociMdgFuC9rCyN6q4KtCuV5D0B5JjXsU=
Subject key identifier: 70:46:62:F7:CA:1E:B0:96:DD:3B:91:ED:F5:62:14:40:51:FC:01:7E
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 2A5B7C15CA7AD2803577CC7C756B6B47D7B04801
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3138302e3135312e302f32342d3234203d3e2032383536.roa
Signing time: Wed 11 May 2022 09:21:07 +0000
ROA not before: Wed 11 May 2022 09:16:07 +0000
ROA not after: Wed 10 May 2023 09:21:07 +0000
asID: 2856
IP address blocks: 5.180.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:5b:7c:15:ca:7a:d2:80:35:77:cc:7c:75:6b:6b:47:d7:b0:48:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: May 11 09:16:07 2022 GMT
Not After : May 10 09:21:07 2023 GMT
Subject: CN=704662F7CA1EB096DD3B91EDF562144051FC017E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f5:d8:70:f4:1c:27:a3:b0:60:ff:34:64:21:
b5:f9:17:aa:72:10:0b:fe:05:3a:1f:7c:55:0e:14:
28:d5:1d:4c:83:b8:45:97:7e:f7:7d:c5:f3:86:0b:
c3:ac:89:f9:f5:4c:28:34:47:08:99:20:a6:83:20:
83:15:ef:35:50:33:c3:f7:4c:3d:78:22:46:2c:01:
32:8b:12:35:43:b9:56:60:f3:2a:22:94:0a:8d:76:
93:f9:57:71:19:87:b7:a6:48:94:62:a2:61:b4:40:
d2:ae:07:0a:6b:29:1f:74:20:cd:83:72:fc:2d:8b:
c2:cf:a2:89:1b:ba:95:3a:ad:69:88:1c:fd:f1:71:
ab:6f:14:1f:f0:d5:a4:a3:cb:57:f7:a5:fd:70:f8:
b6:29:99:90:42:96:17:fe:3a:8c:ca:d2:5a:c0:bf:
8f:93:d1:a9:8e:6f:11:9e:bc:a7:22:a9:46:25:d1:
2e:8c:50:5e:0f:e1:d7:e4:f0:4a:f3:86:5d:6c:10:
6d:78:64:bf:0e:b9:a7:4f:75:f2:17:fb:ff:12:31:
13:81:3b:82:ac:31:78:ff:87:1a:46:b6:9c:66:93:
8b:e0:33:07:2b:f7:0d:0a:7c:ef:e6:d8:73:d7:a9:
a7:56:9d:b4:d4:31:b0:2e:24:64:5e:9c:b4:f4:58:
90:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:46:62:F7:CA:1E:B0:96:DD:3B:91:ED:F5:62:14:40:51:FC:01:7E
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3138302e3135312e302f32342d3234203d3e2032383536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.151.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:4f:54:50:85:49:59:40:08:21:94:bb:74:57:7f:60:0b:57:
e6:68:65:19:8a:3e:44:41:14:b0:12:97:26:cf:bb:09:49:9b:
cc:86:65:d6:10:9b:a6:b4:5c:c6:31:52:24:86:01:55:3e:33:
31:a3:04:64:d7:37:56:bf:d3:11:fc:fe:1e:b9:0d:3c:ca:f3:
39:55:b7:2c:04:4c:f2:2a:8f:59:67:f8:19:ab:68:d0:ac:db:
1c:ec:4b:e7:3d:df:0b:9d:42:54:90:42:40:b5:ce:b8:70:13:
78:9c:53:97:f6:9f:6d:d7:ed:54:74:4d:94:fa:ce:93:7c:f9:
af:8f:75:c0:1a:3f:79:aa:51:a7:c1:9f:54:37:b4:53:8c:a6:
39:75:85:c8:3d:cd:86:d8:60:53:18:c1:a5:ea:75:78:4c:c5:
5c:ac:ab:0b:cb:18:13:98:6e:67:72:71:75:76:07:69:d9:37:
e6:e1:cc:7a:de:17:6c:87:08:48:56:0f:12:c3:8d:a6:a8:71:
aa:c3:d6:9c:41:70:14:ed:5b:2d:f2:1a:24:f9:e6:a5:8f:53:
6a:ca:ae:ff:aa:bc:bc:8b:a5:7f:ca:d4:46:7b:0e:c2:ef:20:
5f:77:d0:3d:85:53:e6:6b:55:27:5e:ff:55:cf:3a:6e:c8:9d:
29:05:9c:ff
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIUKlt8Fcp60oA1d8x8dWtrR9ewSAEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjA1MTEwOTE2MDdaFw0yMzA1MTAwOTIxMDdaMDMxMTAvBgNV
BAMTKDcwNDY2MkY3Q0ExRUIwOTZERDNCOTFFREY1NjIxNDQwNTFGQzAxN0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV9dhw9Bwno7Bg/zRkIbX5F6py
EAv+BToffFUOFCjVHUyDuEWXfvd9xfOGC8Osifn1TCg0RwiZIKaDIIMV7zVQM8P3
TD14IkYsATKLEjVDuVZg8yoilAqNdpP5V3EZh7emSJRiomG0QNKuBwprKR90IM2D
cvwti8LPookbupU6rWmIHP3xcatvFB/w1aSjy1f3pf1w+LYpmZBClhf+OozK0lrA
v4+T0amObxGevKciqUYl0S6MUF4P4dfk8Erzhl1sEG14ZL8OuadPdfIX+/8SMROB
O4KsMXj/hxpGtpxmk4vgMwcr9w0KfO/m2HPXqadWnbTUMbAuJGRenLT0WJDtAgMB
AAGjggHtMIIB6TAdBgNVHQ4EFgQUcEZi98oesJbdO5Ht9WIUQFH8AX4wHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4Zo
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNTJlMzEzODMwMmUzMTM1MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM4
MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAAW0lzANBgkqhkiG9w0BAQsFAAOCAQEAKk9UUIVJWUAI
IZS7dFd/YAtX5mhlGYo+REEUsBKXJs+7CUmbzIZl1hCbprRcxjFSJIYBVT4zMaME
ZNc3Vr/TEfz+HrkNPMrzOVW3LARM8iqPWWf4Gato0KzbHOxL5z3fC51CVJBCQLXO
uHATeJxTl/afbdftVHRNlPrOk3z5r491wBo/eapRp8GfVDe0U4ymOXWFyD3Nhthg
UxjBpep1eEzFXKyrC8sYE5huZ3JxdXYHadk35uHMet4XbIcISFYPEsONpqhxqsPW
nEFwFO1bLfIaJPnmpY9Tasqu/6q8vIulf8rURnsOwu8gX3fQPYVT5mtVJ17/Vc86
bsidKQWc/w==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:59 2023 by rpki-client on console.sobornost.net