Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/3/3138352e3139362e32302e302f32342d3332203d3e203531313637.roa
File: 3138352e3139362e32302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: WCgMnsD/LFdqeRjR377Qa1UXtjRi6l+arKD+a3eMsWw=
Subject key identifier: 8E:EB:22:EE:AD:B1:3D:1B:FD:E6:5D:43:65:0E:54:71:1F:D6:9F:00
Certificate issuer: /CN=22d29c996abcc72c72279ef78987951b825ae400
Certificate serial: 07E5DEF44D27C76FBD6809051A2142F0A303F8FE
Authority key identifier: 22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3139362e32302e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:34:06 +0000
ROA not before: Sat 22 Oct 2022 04:29:06 +0000
ROA not after: Sat 21 Oct 2023 04:34:06 +0000
asID: 51167
IP address blocks: 185.196.20.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:e5:de:f4:4d:27:c7:6f:bd:68:09:05:1a:21:42:f0:a3:03:f8:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d29c996abcc72c72279ef78987951b825ae400
Validity
Not Before: Oct 22 04:29:06 2022 GMT
Not After : Oct 21 04:34:06 2023 GMT
Subject: CN=8EEB22EEADB13D1BFDE65D43650E54711FD69F00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:e9:f2:b3:bf:63:a3:c2:b6:0a:36:ea:e8:65:
02:e3:a6:d2:3f:67:ac:14:db:8d:87:bb:26:8a:d8:
53:61:0b:08:f5:60:b9:3a:06:0b:8a:2c:1e:a0:41:
c8:41:51:20:b9:14:da:e7:e2:7a:c7:b9:63:e2:4c:
64:4e:45:65:f8:f2:01:62:0b:1b:50:5f:44:73:2d:
da:89:be:60:c5:4f:6e:4e:05:e7:ae:12:ac:d3:59:
01:37:fe:32:1a:67:f0:af:74:68:3a:91:95:de:bb:
9d:ff:b5:e2:1b:6e:a0:c5:f3:60:e8:57:18:9b:d5:
fe:f2:96:f0:6b:9a:6b:04:e5:3a:ff:f4:85:ef:83:
74:87:2b:5f:6a:b2:f0:53:e1:3c:c7:73:3b:b4:44:
ed:6d:74:8a:af:c9:54:e9:21:e5:28:bf:3b:15:14:
21:3b:01:ad:ce:01:d2:3f:e7:d7:0d:ff:1b:1e:c2:
6b:ae:94:7d:d1:a2:21:bb:e0:f8:c1:22:fa:40:28:
bd:cc:2b:a0:f3:38:9f:bf:70:74:48:fc:d6:9c:f9:
ab:0c:4b:e8:b2:aa:7c:77:47:4b:09:d9:76:e2:3a:
85:da:22:e7:76:84:a4:54:9b:6d:40:1d:ad:cc:d4:
68:5f:26:66:e9:46:e8:fd:da:7c:bf:ce:4f:45:35:
4a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EB:22:EE:AD:B1:3D:1B:FD:E6:5D:43:65:0E:54:71:1F:D6:9F:00
X509v3 Authority Key Identifier:
keyid:22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/22D29C996ABCC72C72279EF78987951B825AE400.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3139362e32302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.20.0/24
Signature Algorithm: sha256WithRSAEncryption
61:30:72:21:88:69:4c:b3:4a:5f:69:78:71:05:34:83:49:28:
0b:57:f6:cf:71:24:e3:8e:c8:af:25:ae:56:51:0f:a4:3d:8a:
e1:26:e9:a1:40:9b:f1:f8:f6:95:a1:a2:1e:e3:da:29:75:2c:
b2:32:e3:85:18:41:e5:d2:9c:56:06:6d:8a:a6:86:a8:46:2b:
ce:72:02:e4:50:f2:bd:17:1d:f0:51:69:40:de:ae:28:52:4d:
99:6c:f5:5d:dc:ad:3f:0e:83:d5:7f:03:4d:81:26:1d:53:4a:
09:fa:fd:07:53:e7:b0:85:4e:86:d3:c4:6a:8c:00:ba:6b:d3:
cd:90:a0:67:57:df:96:4a:6a:02:89:3b:7c:0d:9a:bf:32:73:
f6:5e:c3:f4:f1:5c:5b:37:dc:c5:8f:26:16:5b:72:11:69:95:
76:00:e6:58:40:ef:92:88:cd:40:45:c0:ca:09:17:81:bc:71:
60:18:9e:94:73:15:58:c3:bf:4e:c5:12:9a:11:4a:de:2b:ab:
88:30:72:90:6a:7c:2d:b0:d0:ee:5f:eb:39:6b:40:3d:66:d6:
38:ba:9b:02:93:63:fb:00:81:35:93:38:1a:02:3b:34:63:b3:
51:63:15:20:9c:8e:7c:40:26:30:72:af:f8:6b:07:a9:94:aa:
91:35:b5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net