Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/37372e3234332e38352e302f32342d3234203d3e203235303938.roa
File: 37372e3234332e38352e302f32342d3234203d3e203235303938.roa (raw, json)
Hash identifier: MqSKAXc6MBl5IU+kj0wxVyjYiOg9ejEKi79w0+u+L1o=
Subject key identifier: B7:84:6F:F2:88:15:09:84:EA:70:D9:13:1E:A6:02:FF:67:FF:1B:93
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 223CE50AACAEC5DACE85DE0DF73E01C2A855367B
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/37372e3234332e38352e302f32342d3234203d3e203235303938.roa
Signing time: Wed 09 Dec 2020 13:05:13 +0000
ROA not before: Wed 09 Dec 2020 13:00:13 +0000
ROA not after: Wed 08 Dec 2021 13:05:13 +0000
asID: 25098
IP address blocks: 77.243.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:3c:e5:0a:ac:ae:c5:da:ce:85:de:0d:f7:3e:01:c2:a8:55:36:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Dec 9 13:00:13 2020 GMT
Not After : Dec 8 13:05:13 2021 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:35:60:54:e7:9a:e9:c6:5a:48:c3:21:b4:
2c:9f:25:87:4d:d1:54:50:ec:30:bc:56:62:21:4b:
07:0a:26:7a:2e:0a:b1:88:7e:e6:d3:32:ea:a9:b8:
33:6b:13:1b:ef:e1:e4:e9:15:85:13:69:f2:a5:b6:
4b:6d:4b:77:53:b2:00:e2:45:87:e0:4f:36:bc:7f:
c8:a9:5e:5e:23:ca:70:ee:6f:f8:74:17:8c:9b:ed:
ff:f9:11:5d:86:30:4b:ce:75:55:2a:81:2a:a5:a6:
ac:32:63:9c:71:62:ff:7b:2c:09:99:cf:11:04:d8:
36:94:85:a6:3a:92:f6:f4:cf:81:f2:a0:05:ad:86:
03:b2:21:02:b4:1b:c9:43:57:b8:6e:40:fc:aa:b6:
80:17:83:0f:05:99:ed:8d:1c:8f:5f:bb:c1:bf:a8:
26:9c:54:1d:59:c7:eb:53:a3:83:dc:f6:75:6d:68:
f6:13:04:5c:80:88:71:75:0b:32:f6:2a:81:8f:e2:
9d:2b:b4:70:f4:f8:c8:86:b1:5d:14:83:c2:53:f6:
1e:3a:14:6c:a1:03:5e:e2:23:56:3b:54:e2:14:29:
89:1c:ee:a1:17:01:a9:7d:d6:b8:ac:1d:b0:eb:ef:
b5:02:3b:a1:48:1a:c4:04:a1:1f:a0:00:9d:27:67:
64:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:84:6F:F2:88:15:09:84:EA:70:D9:13:1E:A6:02:FF:67:FF:1B:93
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/37372e3234332e38352e302f32342d3234203d3e203235303938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.85.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:0b:2b:92:49:89:61:52:20:2a:15:ff:ee:d4:c0:83:92:41:
0e:01:ca:ac:b4:1e:93:e3:ba:8c:b4:23:e6:fe:cf:46:12:6f:
f6:80:7c:74:4f:53:72:2b:5f:4f:a5:31:fc:2d:a0:7a:33:e6:
d9:cc:a1:05:e8:62:87:a9:ce:35:14:ff:0a:bd:f5:79:65:a3:
6e:af:08:ef:db:5e:6c:4e:76:5a:bd:cf:20:8a:68:ab:d3:2d:
b2:fe:2f:e2:90:51:8f:d6:f4:a2:1f:11:97:a9:49:8d:ff:1b:
25:83:cb:53:2d:78:be:0f:0b:ee:96:f0:e0:a1:f9:b7:9f:b2:
00:3f:fc:67:45:81:26:1c:e8:b2:8e:23:70:24:bb:21:3d:48:
18:9a:e6:3b:3e:12:c2:a5:1e:1a:a4:de:2f:73:d9:85:ac:1c:
2f:2c:a7:eb:fc:2d:ce:82:62:fa:00:fa:46:16:a6:23:5e:51:
a1:f0:15:f6:85:85:8a:29:4f:4f:94:fe:8e:14:c5:f6:02:a8:
55:8f:4a:48:63:31:88:c0:eb:13:aa:7d:51:3d:45:c2:5b:5a:
78:1b:b7:89:47:e7:fd:b3:5d:72:c1:83:4a:84:e7:15:97:38:
40:aa:11:c8:1a:84:8e:5c:b0:3d:c4:69:2c:09:1d:e3:5d:18:
54:3b:7d:e1
-----BEGIN CERTIFICATE-----
MIIG4TCCBcmgAwIBAgIUIjzlCqyuxdrOhd4N9z4BwqhVNnswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMDEyMDkxMzAwMTNaFw0yMTEyMDgxMzA1MTNaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQ0Q2RjM1NjA1NEU3OUFFOUM2
NUE0OEMzMjFCNDJDOUYyNTg3NEREMTU0NTBFQzMwQkM1NjYyMjE0QjA3MEEyNjdB
MkUwQUIxODg3RUU2RDMzMkVBQTlCODMzNkIxMzFCRUZFMUU0RTkxNTg1MTM2OUYy
QTVCNjRCNkQ0Qjc3NTNCMjAwRTI0NTg3RTA0RjM2QkM3RkM4QTk1RTVFMjNDQTcw
RUU2RkY4NzQxNzhDOUJFREZGRjkxMTVEODYzMDRCQ0U3NTU1MkE4MTJBQTVBNkFD
MzI2MzlDNzE2MkZGN0IyQzA5OTlDRjExMDREODM2OTQ4NUE2M0E5MkY2RjRDRjgx
RjJBMDA1QUQ4NjAzQjIyMTAyQjQxQkM5NDM1N0I4NkU0MEZDQUFCNjgwMTc4MzBG
MDU5OUVEOEQxQzhGNUZCQkMxQkZBODI2OUM1NDFENTlDN0VCNTNBMzgzRENGNjc1
NkQ2OEY2MTMwNDVDODA4ODcxNzUwQjMyRjYyQTgxOEZFMjlEMkJCNDcwRjRGOEM4
ODZCMTVEMTQ4M0MyNTNGNjFFM0ExNDZDQTEwMzVFRTIyMzU2M0I1NEUyMTQyOTg5
MUNFRUExMTcwMUE5N0RENkI4QUMxREIwRUJFRkI1MDIzQkExNDgxQUM0MDRBMTFG
QTAwMDlEMjc2NzY0REYwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAzW81YFTnmunGWkjDIbQsnyWHTdFUUOwwvFZiIUsHCiZ6LgqxiH7m
0zLqqbgzaxMb7+Hk6RWFE2nypbZLbUt3U7IA4kWH4E82vH/IqV5eI8pw7m/4dBeM
m+3/+RFdhjBLznVVKoEqpaasMmOccWL/eywJmc8RBNg2lIWmOpL29M+B8qAFrYYD
siECtBvJQ1e4bkD8qraAF4MPBZntjRyPX7vBv6gmnFQdWcfrU6OD3PZ1bWj2EwRc
gIhxdQsy9iqBj+KdK7Rw9PjIhrFdFIPCU/YeOhRsoQNe4iNWO1TiFCmJHO6hFwGp
fda4rB2w6++1AjuhSBrEBKEfoACdJ2dk3wIDAQABo4IB7zCCAeswHQYDVR0OBBYE
FLeEb/KIFQmE6nDZEx6mAv9n/xuTMB8GA1UdIwQYMBaAFAeorytf6DH/WJ6ziuPA
Jc6HHyPnMA4GA1UdDwEB/wQEAwIHgDBvBgNVHR8EaDBmMGSgYqBghl5yc3luYzov
L3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC8yLzA3QThB
RjJCNUZFODMxRkY1ODlFQjM4QUUzQzAyNUNFODcxRjIzRTcuY3JsMGQGCCsGAQUF
BwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9z
aXRvcnkvREVGQVVMVC9CNml2SzFfb01mOVluck9LNDhBbHpvY2ZJLWMuY2VyMIGG
BggrBgEFBQcBCwR6MHgwdgYIKwYBBQUHMAuGanJzeW5jOi8vcnBraTEudGVycmF0
cmFuc2l0LmRlL3JlcG8vVGVycmFUcmFuc2l0LzIvMzczNzJlMzIzNDMzMmUzODM1
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNTMwMzkzOC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE3z
VTANBgkqhkiG9w0BAQsFAAOCAQEALQsrkkmJYVIgKhX/7tTAg5JBDgHKrLQek+O6
jLQj5v7PRhJv9oB8dE9TcitfT6Ux/C2gejPm2cyhBehih6nONRT/Cr31eWWjbq8I
79tebE52Wr3PIIpoq9Mtsv4v4pBRj9b0oh8Rl6lJjf8bJYPLUy14vg8L7pbw4KH5
t5+yAD/8Z0WBJhzoso4jcCS7IT1IGJrmOz4SwqUeGqTeL3PZhawcLyyn6/wtzoJi
+gD6RhamI15RofAV9oWFiilPT5T+jhTF9gKoVY9KSGMxiMDrE6p9UT1FwltaeBu3
iUfn/bNdcsGDSoTnFZc4QKoRyBqEjlywPcRpLAkd410YVDt94Q==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net