Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e352e302f32342d3234203d3e203632323430.roa
File: 3135352e3133332e352e302f32342d3234203d3e203632323430.roa (raw, json)
Hash identifier: VMeHscTVJaeEVn4ea91hWgMqeKLo8dGZA/31WXI9QY8=
Subject key identifier: 89:71:7D:FF:A5:6B:AE:CF:BF:0C:DD:94:06:7B:87:A8:A4:0E:62:FC
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 099CE482E4231BD8D75A4012DC338C8D677614AA
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e352e302f32342d3234203d3e203632323430.roa
Signing time: Fri 17 Mar 2023 09:23:02 +0000
ROA not before: Fri 17 Mar 2023 09:18:02 +0000
ROA not after: Fri 15 Mar 2024 09:23:02 +0000
asID: 62240
IP address blocks: 155.133.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:9c:e4:82:e4:23:1b:d8:d7:5a:40:12:dc:33:8c:8d:67:76:14:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Mar 17 09:18:02 2023 GMT
Not After : Mar 15 09:23:02 2024 GMT
Subject: CN=89717DFFA56BAECFBF0CDD94067B87A8A40E62FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:aa:0a:d8:87:4d:e1:26:7e:3e:8c:56:27:ef:
5a:79:9b:d8:a7:76:5a:08:cf:95:25:9c:1c:12:f7:
9d:44:11:e3:1f:15:36:7a:2f:1e:46:3f:9e:4c:54:
6a:e7:f4:b2:a5:44:b4:88:d8:c1:0f:51:8f:6f:30:
17:e1:b6:ba:ca:6c:7c:55:72:2c:17:7d:d6:ef:68:
c3:07:b5:f1:0d:b0:b1:72:32:7d:1c:2b:69:ac:d5:
cf:51:03:49:70:b3:27:92:33:10:cb:8f:ed:d4:f3:
49:2c:7e:86:95:c2:ed:72:db:07:b6:a4:a6:d4:23:
ad:f4:37:7b:f7:2e:dc:44:a6:f5:60:2a:63:6f:49:
01:17:bb:d7:34:87:ed:99:9d:85:20:b4:bf:18:ad:
40:11:30:32:da:50:c0:d7:b1:41:44:65:f1:0d:a5:
0e:2e:6c:7e:eb:e0:62:0b:ae:56:a7:ea:d5:93:50:
8a:80:07:f2:4b:30:b6:45:76:9c:23:27:69:04:42:
8e:70:02:82:7d:52:41:16:c1:d9:7d:d6:5e:ef:b7:
da:29:04:2c:78:c8:b0:ab:1a:cb:e5:e8:cc:a5:c0:
5b:2f:b7:66:df:8f:a3:20:9f:6b:8a:d0:6b:15:9f:
7e:6b:b2:93:58:6a:b8:b8:50:83:b3:cb:78:49:76:
a0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:71:7D:FF:A5:6B:AE:CF:BF:0C:DD:94:06:7B:87:A8:A4:0E:62:FC
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135352e3133332e352e302f32342d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.5.0/24
Signature Algorithm: sha256WithRSAEncryption
66:c8:b0:ef:0d:75:ef:ca:fe:ca:3f:b9:2e:ff:54:96:6e:41:
bd:94:09:bc:ce:94:2f:01:e7:a9:8b:08:6e:b1:40:70:2f:de:
03:76:e3:9d:cb:6b:bf:4a:67:df:0e:4f:02:12:fd:6e:f1:02:
27:74:6a:4c:27:6b:88:dd:d6:23:91:13:b1:ae:98:14:b3:30:
d7:d6:12:00:9f:6f:f5:39:06:ca:4f:5b:11:79:00:12:f3:97:
ad:f6:3e:d3:34:22:e2:c2:5a:46:12:31:ca:c1:ba:8b:12:71:
35:35:d3:48:1f:31:aa:a5:01:ee:ad:61:2f:fc:0d:0c:b1:f1:
82:88:3f:99:05:b1:c2:96:82:01:63:5f:3d:3a:4d:7b:a0:eb:
c3:c4:ec:1b:45:4e:45:7f:e2:f2:42:e0:8c:59:f8:9b:48:d4:
96:29:c7:26:12:6b:03:e2:e1:05:ff:5c:f8:56:68:73:1b:2a:
05:70:09:97:df:76:c9:05:19:78:1c:2c:a3:38:23:d8:b1:0f:
7c:83:78:f3:8c:e6:58:99:89:88:87:59:6b:30:62:02:08:87:
f9:42:49:26:20:8b:4b:78:85:a7:43:a1:78:ad:7b:b3:10:b0:
83:3a:e4:fa:0b:92:2c:7d:b7:dc:88:15:ff:6d:63:b8:45:d7:
c3:de:78:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net