Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/210/33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa
File: 33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: 3t5++H/MytQkvyDtKY+ykM2VzLKr6qEyHTTEM9SI0Yg=
Subject key identifier: 80:C3:F8:48:DD:45:F9:2B:C7:79:01:64:E7:4B:9B:A2:BF:1A:20:26
Certificate issuer: /CN=3bf52d0aca9767faaa6151cd7b1622476ffe4b42
Certificate serial: 7B770146BF876BE7B1821529346D41618FA85F33
Authority key identifier: 3B:F5:2D:0A:CA:97:67:FA:AA:61:51:CD:7B:16:22:47:6F:FE:4B:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_UtCsqXZ_qqYVHNexYiR2_-S0I.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/210/33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa
Signing time: Sat 22 Oct 2022 04:34:08 +0000
ROA not before: Sat 22 Oct 2022 04:29:08 +0000
ROA not after: Sat 21 Oct 2023 04:34:08 +0000
asID: 201341
IP address blocks: 37.140.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:77:01:46:bf:87:6b:e7:b1:82:15:29:34:6d:41:61:8f:a8:5f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bf52d0aca9767faaa6151cd7b1622476ffe4b42
Validity
Not Before: Oct 22 04:29:08 2022 GMT
Not After : Oct 21 04:34:08 2023 GMT
Subject: CN=80C3F848DD45F92BC7790164E74B9BA2BF1A2026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a1:51:f6:a7:73:27:88:da:a2:4b:eb:7c:d6:
25:97:3e:9c:50:e0:b2:dc:57:32:34:30:ad:69:d6:
0f:86:70:32:9f:68:ea:c2:63:01:98:eb:4d:1e:72:
c9:bf:b7:4c:4e:21:db:ad:05:a7:b0:4d:e1:09:c8:
bd:55:19:4b:74:b5:ad:3a:6c:6a:28:7c:14:1b:e7:
53:8b:9f:27:75:ed:e6:e3:1a:b2:b1:72:0b:5b:ae:
ec:54:62:bb:d6:2d:9a:33:6e:dc:17:ff:d3:8c:07:
3f:63:4a:c1:f8:d0:40:8b:ac:81:e0:ea:ed:1a:31:
42:4c:a0:f2:1d:d0:1b:51:70:6a:b1:84:0a:c5:a3:
11:88:f2:38:65:af:40:0a:38:31:8b:7f:2f:07:94:
13:a0:3e:80:9c:6d:3b:a8:83:2b:c4:f5:87:a5:4b:
63:8f:cf:5a:15:58:97:44:0f:4f:7f:4c:39:23:cc:
c0:90:e0:d3:ca:1a:6d:b8:20:15:10:70:df:39:2b:
24:73:77:f4:fc:ad:88:1a:0e:e4:e4:1b:7c:c0:8a:
8b:af:5b:af:d5:65:4d:e7:7d:2c:60:9c:96:7f:90:
78:0c:af:92:46:3c:50:17:d4:76:1f:86:57:06:12:
65:e2:9d:93:85:a1:cf:2b:3c:b4:9a:aa:7f:eb:b8:
58:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C3:F8:48:DD:45:F9:2B:C7:79:01:64:E7:4B:9B:A2:BF:1A:20:26
X509v3 Authority Key Identifier:
keyid:3B:F5:2D:0A:CA:97:67:FA:AA:61:51:CD:7B:16:22:47:6F:FE:4B:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/210/3BF52D0ACA9767FAAA6151CD7B1622476FFE4B42.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_UtCsqXZ_qqYVHNexYiR2_-S0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/210/33372e3134302e3234362e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.246.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:a4:55:ea:f8:91:d2:06:36:0a:a9:a4:84:c7:f0:4d:c3:52:
7d:90:6d:b3:ee:5d:0b:7b:2f:f9:8c:77:11:ac:6f:75:0d:22:
d6:37:ca:9d:2d:51:44:65:4d:d2:a6:ea:b3:f3:03:48:85:e8:
e1:bf:f0:e2:45:13:a7:61:4b:e2:66:7f:8b:12:db:db:1d:c2:
40:d5:21:5c:84:f7:e0:f9:47:c1:b3:f1:65:b7:2f:ae:07:f4:
90:b2:3f:f1:7c:a1:f2:79:31:be:e5:ef:b5:1d:60:aa:41:c3:
a3:91:08:94:d2:7c:4d:cb:96:31:87:c5:44:c2:4b:bf:2d:63:
86:74:0c:fc:ee:25:35:62:08:d7:e7:b9:4d:9a:ac:6d:eb:02:
e2:a7:e8:e8:5e:36:a8:aa:0f:c2:f6:fd:23:e8:72:f8:66:1d:
bc:5a:15:10:d2:6e:00:26:37:95:ac:69:99:06:1b:14:6d:da:
1d:4f:f7:cb:85:b6:7c:0e:b8:af:f6:16:34:03:6b:41:fe:5e:
b5:c2:9c:5d:1e:7f:fb:c7:3f:3a:1c:05:66:6f:78:2d:14:b5:
93:36:52:0d:62:81:aa:68:cc:2a:25:49:06:30:ad:c3:bd:1c:
c5:ca:d1:45:1c:f4:4e:82:6e:e3:0b:66:66:2e:03:67:24:ce:
d8:34:12:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net