Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3234302e302f32302d3332203d3e203531313637.roa
File: 3130392e3132332e3234302e302f32302d3332203d3e203531313637.roa (raw, json)
Hash identifier: tUpSEzlThnRprAYKpO7367W/bZLFdk/FlPahDoQQwbM=
Subject key identifier: 8A:4B:15:0E:2C:73:65:6D:EE:19:DB:13:A3:49:05:A5:76:76:58:CA
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 16E7F68FF7ADA99219AB6E80C4E95279D7186703
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3234302e302f32302d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:34:25 +0000
ROA not before: Sat 22 Oct 2022 04:29:25 +0000
ROA not after: Sat 21 Oct 2023 04:34:25 +0000
asID: 51167
IP address blocks: 109.123.240.0/20 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:e7:f6:8f:f7:ad:a9:92:19:ab:6e:80:c4:e9:52:79:d7:18:67:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:25 2022 GMT
Not After : Oct 21 04:34:25 2023 GMT
Subject: CN=8A4B150E2C73656DEE19DB13A34905A5767658CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:59:f8:ea:92:33:f7:34:56:8e:ce:96:bf:8c:
49:1a:63:73:51:e7:b8:eb:e8:29:64:9a:94:79:50:
37:cc:ee:fd:77:9f:11:c0:12:de:b3:a4:c2:e7:20:
11:03:13:74:12:5d:90:00:32:7b:33:12:51:fb:20:
16:2e:08:30:46:bd:d1:9e:8a:a8:26:1d:c1:24:6d:
02:bc:a2:ea:c8:67:cd:7e:ca:03:66:a1:fd:7e:da:
a5:c6:1b:8c:84:f2:6e:59:d8:33:8a:ed:e8:44:45:
3b:d9:8b:33:f3:c0:2f:d5:cd:e2:48:f6:6c:5f:7e:
3c:8e:5b:66:c4:66:dd:3d:99:e7:1e:ac:0e:54:a0:
ff:cf:97:65:60:ed:b7:0e:ad:40:4b:44:c6:e1:b3:
25:fe:78:57:a9:f4:fe:78:af:2f:f2:e6:9e:9a:c1:
4e:1a:f2:c5:db:90:a3:8d:cf:c1:68:21:fa:d4:85:
ce:d2:c9:b6:a6:9a:fe:da:c6:d0:98:fa:bb:94:ee:
3a:92:e3:4c:20:b8:b0:59:e7:05:01:df:8b:8d:c0:
84:e6:9e:7b:b7:f2:61:ee:2c:cf:7c:f9:a4:4f:bd:
43:4c:66:01:93:1e:96:c9:a0:3b:3f:dc:c4:03:9c:
61:e9:67:ac:7e:e3:87:27:77:d1:88:ba:9f:56:91:
0d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:4B:15:0E:2C:73:65:6D:EE:19:DB:13:A3:49:05:A5:76:76:58:CA
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3130392e3132332e3234302e302f32302d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.123.240.0/20
Signature Algorithm: sha256WithRSAEncryption
c3:96:b3:d7:b7:11:3f:81:e9:a7:bd:22:23:57:a0:69:b9:91:
79:da:c8:39:4c:e6:4e:db:09:71:b8:e8:1a:01:33:e8:de:a4:
c5:67:1a:a6:51:b9:af:61:29:7a:d5:9d:d9:73:55:71:fb:c5:
ef:69:75:bc:5f:8d:f9:18:60:28:15:43:0d:9c:d1:87:6b:8d:
d4:ee:ab:22:51:67:fa:04:ab:a7:73:36:6a:f8:3d:be:88:5c:
b9:16:e4:ba:7d:19:3e:28:12:dc:fa:2e:08:74:c1:b5:7f:db:
9b:8e:b0:05:90:51:87:b6:b0:83:03:5e:e2:ce:c2:b5:2f:7b:
74:8f:74:38:bd:3b:02:06:1b:17:8f:7e:bf:98:b3:52:40:32:
b0:2b:62:1b:b6:9a:5f:d3:07:3b:79:54:a2:84:b6:02:39:95:
2a:a0:98:c7:8b:1d:d9:07:35:67:a8:00:00:fe:e8:f8:78:7f:
2a:7e:71:59:62:39:3f:4d:02:82:e6:67:b1:21:cf:41:f4:29:
15:55:78:65:63:5d:df:d3:47:f2:54:43:62:b1:50:05:18:5b:
7c:48:f5:44:34:45:d5:ab:48:4b:5e:f6:57:71:24:2a:4f:63:
6f:48:fe:97:89:7f:09:5d:b6:d1:9d:26:b0:d1:45:2c:5c:eb:
73:d2:fb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net