Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e302e302f32342d3332203d3e203531313637.roa
File: 3135352e3133332e302e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: h2LWPaI8SF4e5EYZ9r3d0SpwFdYDxJiMoIrzkD5qyNU=
Subject key identifier: FC:36:16:39:24:A9:57:42:84:CD:72:5A:99:3D:16:C6:EF:15:45:14
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 6DF6DFCB8B2CBB59637C3890D28B98E6FB24A6F3
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e302e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:34:31 +0000
ROA not before: Sat 22 Oct 2022 04:29:31 +0000
ROA not after: Sat 21 Oct 2023 04:34:31 +0000
asID: 51167
IP address blocks: 155.133.0.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:f6:df:cb:8b:2c:bb:59:63:7c:38:90:d2:8b:98:e6:fb:24:a6:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:31 2022 GMT
Not After : Oct 21 04:34:31 2023 GMT
Subject: CN=FC36163924A9574284CD725A993D16C6EF154514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a3:85:4b:a4:19:93:06:7a:09:97:03:e4:ac:
1a:2e:48:07:ab:33:96:fe:10:ab:e1:e7:c7:da:1c:
43:bd:07:a9:7c:78:34:51:7d:c3:f4:ff:35:5b:c9:
1c:e1:6f:7c:a0:3a:8b:0f:e3:18:be:7f:4c:be:02:
e7:3b:bd:f8:77:f7:e5:a7:3f:54:95:43:4b:8c:c9:
69:7f:2a:4e:95:08:05:2c:66:c7:a8:23:c9:b1:15:
31:02:5b:3e:ea:1e:85:5a:f8:b5:e0:05:36:a4:16:
67:3c:64:d2:93:90:16:36:f2:cc:03:f8:e4:96:05:
83:a6:2e:3c:d6:84:9a:bd:cf:a9:66:3e:e9:76:cb:
55:20:21:0b:2b:7a:4e:06:41:76:b4:35:10:b7:5f:
b6:51:70:b2:67:9d:83:19:4a:d1:27:1d:dd:3d:db:
41:ee:ef:ee:48:6b:06:1c:ed:ba:6c:2d:ad:08:bf:
48:7b:60:18:b5:58:93:9a:d8:7d:9e:c2:30:13:20:
64:8d:42:de:f5:f1:d7:6e:31:1d:cd:35:88:83:b0:
f5:5c:fe:88:74:c4:7e:5d:8a:d3:a6:9b:83:71:f1:
ed:dc:01:41:b1:a3:67:ef:03:45:17:6d:6b:88:8a:
ff:48:9c:98:03:86:3b:da:04:8e:13:4e:e3:cf:0e:
6a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:36:16:39:24:A9:57:42:84:CD:72:5A:99:3D:16:C6:EF:15:45:14
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e302e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.0.0/24
Signature Algorithm: sha256WithRSAEncryption
78:24:2c:ed:84:11:54:68:8b:31:6f:81:68:60:3d:2d:94:67:
09:8d:7d:86:3d:7b:20:00:fe:5f:7e:7d:1d:2f:b0:8c:c9:f5:
9b:5d:40:25:31:e1:19:1a:0c:c3:6b:d0:51:2a:e5:48:8b:1d:
06:a0:04:65:b7:b2:aa:da:8a:94:5c:de:e0:09:01:c0:1e:34:
52:c7:f2:27:ef:a7:13:98:dd:3d:d6:cf:5f:ce:2b:d8:36:b6:
0e:c5:cb:00:e3:72:42:29:68:d8:7d:66:d0:cb:90:29:e0:6c:
11:c4:47:44:ea:1c:25:07:22:5a:c4:99:aa:82:72:36:97:39:
f8:e0:91:1d:fb:2e:64:2a:a3:56:8f:00:84:29:e4:1b:28:9e:
21:31:00:be:be:f5:9e:c8:d8:ef:b7:ab:cc:d9:58:2b:b3:e7:
10:f3:a1:c7:6b:ba:90:d2:ca:39:9a:31:1e:45:80:e9:64:c5:
cd:3e:65:27:a2:90:78:9b:ec:4f:f1:6e:d9:63:6c:64:05:a2:
84:95:10:6a:69:0e:db:99:44:e5:30:0a:76:a3:ad:69:27:62:
85:40:b5:5a:9c:b9:86:35:7a:27:6f:68:65:fa:c3:19:ea:5b:
ff:5f:a6:bf:56:fa:64:02:8e:b6:4f:c4:ae:76:ac:99:32:0c:
07:21:58:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net