Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3232342e302f32342d3234203d3e20313336373837.roa
File: 3130392e3132332e3232342e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: u3WGxwdhUb7l9bHKcQvKNdeACGAWLhNDEso7l9pwasw=
Subject key identifier: 38:78:5C:5B:C5:EE:6F:A8:46:EE:8D:90:88:7C:8A:98:72:49:EF:DE
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 15BA45C23CAB8CF2B497925AF84C46B12F574CAA
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3232342e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Jan 2023 12:29:38 +0000
ROA not before: Fri 20 Jan 2023 12:24:38 +0000
ROA not after: Fri 19 Jan 2024 12:29:38 +0000
asID: 136787
IP address blocks: 109.123.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:ba:45:c2:3c:ab:8c:f2:b4:97:92:5a:f8:4c:46:b1:2f:57:4c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 20 12:24:38 2023 GMT
Not After : Jan 19 12:29:38 2024 GMT
Subject: CN=38785C5BC5EE6FA846EE8D90887C8A987249EFDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c6:4f:71:4f:2a:22:ab:f3:02:2e:65:88:15:
76:91:10:ba:ed:de:69:39:16:7e:7d:b7:46:49:5a:
18:5c:b2:76:8b:2b:fa:8c:0f:e1:db:26:ad:dd:4c:
2d:3f:5b:a2:5d:57:49:7e:29:24:b9:dd:1d:52:fb:
65:9b:95:48:0b:1c:dc:01:60:88:b2:26:54:27:23:
45:02:01:c7:cc:76:59:56:83:0d:41:32:2b:3b:a0:
6f:9d:4e:f4:4a:bd:32:e6:dc:06:f6:59:d9:c9:e4:
48:e3:96:ee:d1:b0:28:cd:68:96:a1:e4:77:01:87:
fe:77:4d:91:42:f4:a0:ba:c9:77:42:cb:9b:54:2f:
3a:5a:82:fc:78:bf:f1:17:c6:ab:42:30:5e:2b:ad:
5e:b3:9e:78:21:58:7d:af:67:a4:0d:e6:94:6b:02:
40:ae:2f:db:56:96:4c:a9:1f:6f:60:bf:9c:90:e3:
fb:ce:4a:ee:4e:d5:1a:33:31:2a:84:e5:44:94:5c:
da:54:d0:e7:4f:9e:35:b9:68:0d:46:5a:6c:b8:a3:
26:5d:3d:e2:35:1c:39:20:83:b6:77:cf:0b:ae:d3:
ed:17:29:ce:99:9f:ad:a7:c2:e7:4f:17:71:57:e7:
0d:4a:e7:d9:c1:31:99:3b:52:75:17:11:b9:3a:ef:
01:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:78:5C:5B:C5:EE:6F:A8:46:EE:8D:90:88:7C:8A:98:72:49:EF:DE
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3232342e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.123.224.0/24
Signature Algorithm: sha256WithRSAEncryption
37:57:69:0f:43:74:ef:5a:b8:0b:8a:64:94:45:7a:14:08:ec:
7d:50:39:d6:23:aa:9f:a2:ff:7f:fb:2e:ca:a1:94:10:dd:50:
4a:c4:99:ff:ce:d5:31:a4:5b:3f:d7:19:ed:28:eb:0f:d1:94:
ff:4c:5d:bb:5c:43:ac:02:8a:49:ae:59:32:14:d5:42:5d:ab:
d8:f0:5c:c6:77:d2:cb:15:d7:f6:d7:35:41:82:d4:32:f3:3c:
a4:6d:44:73:b6:a3:de:74:d1:41:77:d7:3c:59:3a:3e:78:cd:
80:05:20:58:6c:b0:b3:ce:d8:0d:6c:e1:2d:70:f6:44:76:54:
1a:1f:c2:3a:d3:b7:9a:58:c5:30:12:aa:f0:6a:ea:55:2d:20:
45:66:14:2d:9a:cb:7f:e5:74:cf:e9:ed:bb:ae:12:6a:97:70:
dc:97:20:14:13:c4:c7:64:a7:30:77:1b:4a:91:e9:c5:8a:0b:
7b:28:4a:5d:0c:69:8a:5b:88:e5:5b:ae:ea:67:20:f1:89:e7:
3a:e3:55:a2:d9:96:f4:31:82:95:3d:4b:0f:64:ae:17:30:01:
5d:ce:f5:99:d4:c2:c5:65:37:0f:fc:4d:aa:e5:42:14:9d:01:
52:b0:4d:af:d9:e8:df:6e:bc:50:3c:de:92:08:3b:2d:f2:b2:
c0:41:f3:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net