Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e332e302f32342d3234203d3e203630363935.roa
File: 3135352e3133332e332e302f32342d3234203d3e203630363935.roa (raw, json)
Hash identifier: NvgyiN2TEGlKdGmibtcTgCATbp2wyeyEjl+kbFH7Igs=
Subject key identifier: 2E:A3:30:05:5A:91:60:E2:EF:9D:7A:13:18:02:04:22:E8:2F:A9:EA
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4998288F19A3CE8F59017B69B9FF7FF04CDFB2D5
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e332e302f32342d3234203d3e203630363935.roa
Signing time: Sat 22 Oct 2022 04:34:10 +0000
ROA not before: Sat 22 Oct 2022 04:29:10 +0000
ROA not after: Sat 21 Oct 2023 04:34:10 +0000
asID: 60695
IP address blocks: 155.133.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:98:28:8f:19:a3:ce:8f:59:01:7b:69:b9:ff:7f:f0:4c:df:b2:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:10 2022 GMT
Not After : Oct 21 04:34:10 2023 GMT
Subject: CN=2EA330055A9160E2EF9D7A1318020422E82FA9EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0e:68:c0:fc:60:39:d2:a6:4b:bf:0e:8b:a9:
dd:83:9a:b4:df:5c:85:89:67:cf:1a:ca:a6:90:0c:
f0:81:42:21:40:9a:07:1f:59:1d:f8:51:d9:d7:05:
ee:f2:21:96:1e:83:99:7e:1a:ff:8e:86:b0:bf:d7:
36:78:72:54:14:c8:4c:e4:65:b3:81:7f:f8:22:52:
67:77:b6:22:9b:04:d7:12:e4:56:5c:8b:6a:3a:ad:
a3:c5:21:9a:86:fb:36:54:54:00:bd:4d:01:d2:9f:
69:fa:df:c6:ee:9a:dc:4a:08:6f:3f:bb:5d:e8:69:
cf:45:e6:7e:e6:ce:c4:7c:49:64:be:41:27:05:42:
01:e6:83:49:c3:0c:15:af:03:8d:fd:5c:fa:65:a0:
4e:88:68:62:33:a6:3e:27:aa:64:b4:48:e6:28:c5:
29:b3:e6:7c:0c:84:94:e0:ff:75:4d:1a:37:2f:3a:
51:d9:31:45:b2:76:20:4b:dd:99:85:78:8a:dc:46:
b0:e0:6f:6d:3c:0d:14:4a:54:23:45:58:47:ef:2c:
09:54:00:c4:96:e3:0c:22:24:ca:cb:cd:84:00:e6:
01:52:b6:54:5f:b1:04:3a:75:0c:4e:ac:b4:29:3c:
39:48:c3:a2:cb:36:cd:9d:a5:77:d0:74:3c:8b:aa:
8c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:A3:30:05:5A:91:60:E2:EF:9D:7A:13:18:02:04:22:E8:2F:A9:EA
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e332e302f32342d3234203d3e203630363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.3.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:77:ce:16:ea:a3:ce:ed:94:f7:be:0f:40:9f:13:5d:c6:bc:
b4:86:45:40:e0:9d:85:0c:60:c5:86:03:48:6d:ae:92:b2:58:
a7:0e:96:9e:ed:ef:58:32:5a:41:b8:29:29:d6:0d:e9:12:0e:
b9:56:ee:8b:c9:aa:17:15:e9:a3:37:17:d8:2e:de:7f:85:ea:
ca:cf:7e:82:bb:f8:96:cd:39:fe:fe:56:37:1b:00:f4:38:f4:
81:f6:97:c3:ab:27:2f:13:ad:cb:89:0e:d3:6e:62:11:67:0d:
41:85:03:55:48:f1:f3:95:eb:1a:47:71:db:db:83:65:38:5f:
e8:60:0e:b7:6e:b2:3c:c6:b2:75:68:5e:58:36:15:f4:8c:d8:
3c:31:a6:93:5f:d9:1a:02:e6:da:00:a6:dd:d3:80:1b:90:a4:
28:f8:93:ae:a8:8b:78:00:08:50:74:ef:db:b1:52:e5:a4:8c:
48:6c:89:7b:5e:c2:e5:e2:cf:67:a9:15:82:89:77:df:bd:f9:
0b:d2:21:10:73:aa:9a:5d:5d:69:f8:bb:ad:9a:b7:ee:65:72:
00:74:a7:2e:23:f5:65:d1:41:b0:39:de:3f:4c:2b:3d:4c:b5:
f9:6e:63:be:b4:21:32:47:4d:ba:99:0e:51:66:92:b4:7e:48:
88:91:b5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net