Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e302e302f32322d3232203d3e20323031333431.roa
File: 3135362e36372e302e302f32322d3232203d3e20323031333431.roa (raw, json)
Hash identifier: HmKHoUvo6sFi0O6362+2ErV3+tUyJgyZDFnzGCoRdzQ=
Subject key identifier: A6:A0:15:EB:22:C8:32:F3:10:02:9D:13:69:38:17:4F:EE:EB:4C:57
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 7B571E32FB70D76B215A0ADC850A696C38C4122E
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e302e302f32322d3232203d3e20323031333431.roa
Signing time: Sat 22 Oct 2022 04:34:29 +0000
ROA not before: Sat 22 Oct 2022 04:29:29 +0000
ROA not after: Sat 21 Oct 2023 04:34:29 +0000
asID: 201341
IP address blocks: 156.67.0.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:57:1e:32:fb:70:d7:6b:21:5a:0a:dc:85:0a:69:6c:38:c4:12:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:29 2022 GMT
Not After : Oct 21 04:34:29 2023 GMT
Subject: CN=A6A015EB22C832F310029D136938174FEEEB4C57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:42:87:db:fd:5c:ed:45:62:b7:52:c9:16:06:
2a:b9:8e:3b:7c:13:1f:61:0b:e3:6a:db:35:56:c2:
3c:b4:b6:d8:af:50:9e:6a:be:7d:a1:7f:70:df:8a:
87:05:a3:5f:3b:b1:42:d4:66:6f:19:f0:9b:6b:64:
03:a1:59:38:d2:c6:ee:80:98:54:41:79:a2:60:33:
eb:ec:0d:8c:4c:25:f6:a4:4b:6b:5c:25:c6:a1:3b:
57:42:f6:68:04:c2:de:02:65:82:74:11:93:fc:c8:
04:8f:dd:45:5c:b4:49:ef:b8:75:1d:d5:5a:db:52:
b2:29:39:a0:15:a5:07:6b:eb:34:35:06:87:df:42:
af:af:d7:fd:96:b7:b3:40:b0:34:a6:b7:25:d4:9a:
e9:e8:7d:ca:03:43:d1:36:d7:4f:8d:bc:2b:98:1e:
3e:38:1d:ab:54:50:70:03:fc:af:9f:09:dd:26:d6:
d5:bd:1a:0c:d9:0b:2c:ab:ee:88:6e:bc:e0:0e:8a:
57:e9:60:3c:14:a1:d4:cc:2b:3a:6b:a8:88:5a:13:
96:d8:57:90:50:c5:e5:e3:25:65:d5:61:c7:19:6b:
fc:30:c7:e1:70:13:3d:28:c3:63:34:5a:f0:bd:ee:
39:5d:28:3d:a8:16:1a:88:94:f7:76:02:fa:18:35:
93:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A0:15:EB:22:C8:32:F3:10:02:9D:13:69:38:17:4F:EE:EB:4C:57
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e302e302f32322d3232203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:83:7b:ae:fd:b5:3c:cc:b5:9d:8c:53:9a:a7:5e:81:ec:84:
5b:bd:2e:e0:30:42:da:52:8e:b4:fc:3c:52:7b:d5:81:71:5e:
48:87:07:6e:6f:47:d2:e2:38:3c:78:5b:66:ee:2a:c2:58:01:
e0:3f:c4:b4:b4:9d:f0:f2:96:ec:8b:56:46:2f:0e:84:a6:cf:
43:dd:69:9d:6d:32:9e:ae:d2:be:87:4e:7e:3a:0a:89:3c:cb:
54:21:df:d6:08:0c:9b:d9:ba:31:37:af:26:fd:61:c3:25:53:
5a:f0:eb:af:18:71:5e:47:f3:27:23:d1:bd:74:53:32:d7:76:
92:18:3e:b1:66:8a:b0:57:be:54:a5:e7:bd:36:e7:cc:64:aa:
4b:05:09:58:bc:e3:29:f5:ed:4c:33:7d:84:46:3f:79:c2:9a:
6a:21:0c:b1:cb:34:cf:44:67:b0:36:5a:0d:c8:4d:44:cb:99:
d3:5e:1b:a5:16:71:99:a0:22:89:f1:11:14:fe:50:f3:aa:7f:
93:99:1f:85:60:37:cf:c3:c2:10:9d:2e:e3:f4:02:61:c5:6b:
05:00:d4:68:ba:65:53:49:1e:71:5a:1b:f0:9e:d9:d9:20:32:
54:3c:0c:d7:70:09:13:10:b6:2e:db:1d:b4:af:74:c7:68:fa:
28:a8:b6:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net