Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/3/3138352e3232382e342e302f32322d3232203d3e20323030303634.roa
File: 3138352e3232382e342e302f32322d3232203d3e20323030303634.roa (raw, json)
Hash identifier: wdmRKrlHlzuLw0yuGe8JqMWW4VNCVr2T16Iqyvu/Mhs=
Subject key identifier: C9:CA:99:F3:87:54:24:18:8A:96:F2:DA:B7:58:B7:71:09:75:24:2D
Certificate issuer: /CN=22d29c996abcc72c72279ef78987951b825ae400
Certificate serial: 301A99EFA9C5042EA864AC7E7F873E75F6C7A0B0
Authority key identifier: 22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3232382e342e302f32322d3232203d3e20323030303634.roa
Signing time: Tue 28 Jun 2022 04:40:58 +0000
ROA not before: Tue 28 Jun 2022 04:35:58 +0000
ROA not after: Tue 27 Jun 2023 04:40:58 +0000
asID: 200064
IP address blocks: 185.228.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:1a:99:ef:a9:c5:04:2e:a8:64:ac:7e:7f:87:3e:75:f6:c7:a0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d29c996abcc72c72279ef78987951b825ae400
Validity
Not Before: Jun 28 04:35:58 2022 GMT
Not After : Jun 27 04:40:58 2023 GMT
Subject: CN=C9CA99F3875424188A96F2DAB758B7710975242D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f8:aa:1e:be:b1:88:ab:8c:a4:09:72:5f:a2:
82:70:94:ee:1c:e8:32:82:45:1d:9a:79:89:50:44:
31:7b:5b:39:ce:38:09:29:43:b9:6f:4b:6a:8e:6c:
7c:14:3d:9e:9e:e3:d2:21:3a:8c:fc:24:99:0f:2f:
8d:94:2c:5b:c3:81:5b:66:57:ec:e2:d4:ab:46:56:
43:d2:47:10:48:dd:77:5b:a9:ca:cf:25:d3:10:30:
b7:27:59:8d:a7:8b:39:d1:65:a3:ae:dd:6f:6f:73:
55:99:d1:7a:c6:70:e8:6c:31:83:6b:fb:ae:f0:b7:
8b:5d:79:90:7a:4e:67:fc:1f:4d:cb:7e:c8:73:e9:
de:13:2f:bc:bf:0b:a4:9b:79:f7:d1:3d:9b:0f:67:
b9:ff:ea:18:98:00:7e:97:2b:d1:08:97:42:9e:f7:
1d:ac:30:88:59:cc:45:bf:93:a0:8a:5c:39:ce:d5:
02:84:ce:c4:14:0b:b3:d3:a3:79:8b:d9:ce:7e:2d:
e4:27:3f:aa:e0:78:c1:55:cb:81:2e:0d:ca:74:9d:
ff:a3:45:65:b2:d8:9a:af:26:16:25:fb:ad:ed:96:
37:a8:da:97:95:be:e3:0b:cf:58:db:f0:25:9e:1f:
3a:40:34:5b:97:f2:bc:dc:32:e3:cc:12:fc:1e:b3:
b0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:CA:99:F3:87:54:24:18:8A:96:F2:DA:B7:58:B7:71:09:75:24:2D
X509v3 Authority Key Identifier:
keyid:22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/22D29C996ABCC72C72279EF78987951B825AE400.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3232382e342e302f32322d3232203d3e20323030303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.4.0/22
Signature Algorithm: sha256WithRSAEncryption
91:9b:9d:ce:86:cf:09:6a:be:34:52:32:d7:a2:05:47:99:4a:
71:fb:d2:f6:cd:a1:8f:6a:83:da:b0:2a:a3:54:a3:07:e7:bd:
ed:ed:73:d6:6b:53:60:5f:30:06:c3:c3:7d:9e:84:ac:f7:6e:
46:fe:26:fe:fd:68:f2:cf:5e:05:61:64:00:87:9e:5c:07:f8:
96:8c:50:3e:3b:38:3c:3f:00:7a:df:a0:50:68:22:8a:38:da:
d1:f8:5c:63:06:c8:6f:e2:2b:fa:35:e6:59:09:0a:f7:49:84:
ec:1e:09:76:c3:fd:85:7d:76:6b:c7:5f:18:f7:9a:bf:ea:d5:
cb:ce:3d:e7:1a:2b:ec:81:bb:9c:3d:79:37:2a:96:b9:c1:af:
b0:52:bf:45:fb:19:22:d0:a1:bb:0b:6a:37:7d:50:53:3f:12:
aa:76:11:ef:b2:20:19:67:58:42:6d:41:da:ab:9b:9f:b2:55:
b8:ef:c2:8d:59:40:12:d2:0e:f3:00:cf:2d:78:bb:fd:01:bf:
97:40:96:5a:fa:b3:a1:7a:bc:9f:99:d1:8a:c4:77:37:18:8e:
76:32:f2:b4:e5:46:ff:be:f6:1f:4c:75:2d:4c:17:94:a8:b9:
0e:91:4e:07:49:07:94:86:8d:8f:62:51:7c:fd:b6:ab:b9:1b:
20:b4:51:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net