Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3232342e302f32332d3234203d3e20313336373837.roa
File: 3130392e3132332e3232342e302f32332d3234203d3e20313336373837.roa (raw, json)
Hash identifier: HG/1n4v335BYYRGjWvybRH3U1SbRbYGkCt9YRFIQEyY=
Subject key identifier: 71:65:2D:B4:05:A2:DA:9F:28:6F:19:9A:6D:BB:A4:F4:01:D2:DF:3C
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 580EE4448FC64F1515EFBAAA7339D52393B0DC37
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3232342e302f32332d3234203d3e20313336373837.roa
Signing time: Wed 07 Dec 2022 21:44:44 +0000
ROA not before: Wed 07 Dec 2022 21:39:44 +0000
ROA not after: Wed 06 Dec 2023 21:44:44 +0000
asID: 136787
IP address blocks: 109.123.224.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:0e:e4:44:8f:c6:4f:15:15:ef:ba:aa:73:39:d5:23:93:b0:dc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 7 21:39:44 2022 GMT
Not After : Dec 6 21:44:44 2023 GMT
Subject: CN=71652DB405A2DA9F286F199A6DBBA4F401D2DF3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ff:f2:89:9f:6c:8a:e2:95:fc:44:fd:91:57:
46:c6:9e:40:21:cd:45:27:67:b7:ab:c4:80:41:32:
8a:82:e9:5b:0f:22:33:5e:28:30:ec:cb:d1:13:5b:
0e:8c:a0:40:64:39:24:43:aa:66:b9:e7:5a:c1:5f:
80:9d:f5:c6:8c:af:6a:f9:df:07:15:03:b7:64:3d:
8e:34:8a:9f:20:17:3b:ef:bb:7f:b7:00:3b:61:66:
54:e9:a5:09:28:25:fc:42:f4:6f:ef:a2:b7:65:1b:
02:c0:4d:9b:7e:b7:2f:e7:46:b6:53:a8:ba:a2:27:
52:60:4b:ca:4c:74:cb:e4:78:11:15:5d:85:0f:9e:
84:af:48:92:db:39:11:10:95:e9:69:29:72:e1:ac:
90:72:09:de:8a:92:0a:ed:75:1f:74:35:5a:3f:ef:
12:69:75:9a:39:ed:1e:44:3c:c2:ce:d6:d3:34:ae:
be:e1:bd:87:05:5a:1b:2c:7b:96:4a:98:c1:0c:3b:
ba:fd:ed:bb:35:66:23:99:0f:2c:f8:6c:be:6c:da:
07:47:81:46:23:5d:e0:5c:41:91:66:e3:77:a2:9a:
fe:73:d4:c9:1e:70:4b:4c:5b:17:df:e7:2f:e7:6e:
b0:b8:36:88:17:35:23:d8:60:51:99:43:ba:03:e4:
da:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:65:2D:B4:05:A2:DA:9F:28:6F:19:9A:6D:BB:A4:F4:01:D2:DF:3C
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3232342e302f32332d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.123.224.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:79:15:38:11:43:8e:4a:00:db:2f:44:bf:5f:d4:ab:d9:49:
b2:f9:52:32:5e:2e:cd:d6:d8:1e:66:03:3a:2f:43:a2:8f:66:
f6:3f:02:5e:a3:91:22:9d:d2:6d:f1:67:bf:33:5a:e4:f7:db:
69:51:84:b5:36:b1:3c:ac:79:e8:67:ac:fa:b4:e6:c7:20:8d:
f3:00:b7:6b:ba:8d:10:bf:d7:7e:cd:19:65:56:18:38:20:2e:
c2:ce:43:be:03:36:35:26:a0:39:cc:f0:2e:87:c0:4b:75:bc:
fe:1e:97:90:74:72:bb:bc:11:b6:1d:c8:17:49:a5:7c:98:6e:
be:70:3d:f4:2f:29:9e:e1:13:4a:e3:91:cc:da:d2:d7:8d:c4:
0b:26:42:cf:46:f2:c8:ba:58:f2:21:3f:9a:45:70:bd:f4:9a:
52:ac:33:a8:a7:4c:02:69:a7:9a:40:79:89:06:e4:7f:d5:38:
1f:f6:06:49:c3:65:34:b2:c9:64:9a:a0:5a:8d:b4:5c:25:fa:
1f:5c:49:16:e0:c7:1e:8c:00:5b:28:b5:b3:fe:a5:f5:3a:1d:
7e:34:6d:c0:dd:aa:40:a0:02:8e:19:60:3a:f9:a3:6c:bb:46:
b3:44:55:9d:6f:cc:a0:09:76:09:c7:5d:85:c4:9f:f2:a0:c3:
3b:88:1a:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net