Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e38352e302f32342d3234203d3e203632323430.roa
File: 3135362e36372e38352e302f32342d3234203d3e203632323430.roa (raw, json)
Hash identifier: TdXPgD8t5sbNS+u9IeaXLOA8v7niyZzI2aduhhm5GdA=
Subject key identifier: 46:65:07:78:B8:0E:66:B3:71:AE:89:57:BC:D4:C2:CE:0B:FA:FF:9C
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 197F59E90F016C669976160F54FF2F2162EFD285
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e38352e302f32342d3234203d3e203632323430.roa
Signing time: Thu 23 Feb 2023 16:56:11 +0000
ROA not before: Thu 23 Feb 2023 16:51:11 +0000
ROA not after: Thu 22 Feb 2024 16:56:11 +0000
asID: 62240
IP address blocks: 156.67.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:7f:59:e9:0f:01:6c:66:99:76:16:0f:54:ff:2f:21:62:ef:d2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Feb 23 16:51:11 2023 GMT
Not After : Feb 22 16:56:11 2024 GMT
Subject: CN=46650778B80E66B371AE8957BCD4C2CE0BFAFF9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f9:5b:28:0c:9f:9a:cd:a0:0a:53:2c:94:36:
02:6b:bc:1f:1a:51:cd:63:71:31:13:66:f7:06:4a:
10:0b:7c:83:ce:b8:05:66:2d:71:ba:91:19:fa:21:
4d:e1:91:24:d9:d3:ad:f7:10:75:69:0e:7e:4c:6a:
ef:1e:24:df:a9:b9:f4:dd:71:3d:f6:0e:46:0d:4d:
21:7c:1a:95:32:6e:11:24:fd:fc:43:63:9c:7d:e6:
19:08:72:a4:83:af:bd:28:b8:14:a3:69:28:b0:99:
77:1c:30:18:d4:61:5a:d2:87:00:78:f9:fc:f7:f6:
e4:7c:14:11:da:e9:93:a3:96:0f:7b:ab:88:7c:13:
e4:3f:db:23:e1:38:f2:bf:b1:30:27:0e:c8:bb:9b:
76:38:f3:5c:2b:b1:d6:42:e3:9c:69:46:a2:c9:f5:
ca:ad:a7:46:a4:4e:e3:5e:0b:f0:93:1c:2e:84:d7:
6d:48:29:b8:3e:0d:87:3d:96:1b:6e:eb:95:cc:3f:
11:da:9d:c0:3a:7f:29:85:8e:92:40:a0:e0:2b:f4:
fc:7e:d7:fb:29:80:12:c6:bd:05:9c:57:f6:64:50:
1a:5e:35:2b:16:d1:fa:19:a6:b9:72:62:4d:9c:e9:
54:24:cc:25:94:92:ff:e3:e8:e6:18:a5:a1:75:50:
f9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:65:07:78:B8:0E:66:B3:71:AE:89:57:BC:D4:C2:CE:0B:FA:FF:9C
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e38352e302f32342d3234203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.85.0/24
Signature Algorithm: sha256WithRSAEncryption
01:33:de:7d:a4:8c:61:f9:90:7d:4f:22:75:8a:36:18:63:66:
a0:ab:8f:65:61:41:8d:97:78:64:fa:a3:9a:99:72:8a:bc:67:
8b:55:9c:a0:71:19:b6:cb:10:ad:c2:e8:88:ee:88:00:e9:bb:
97:2f:9f:28:b0:cd:4e:0c:74:17:05:01:5c:09:74:40:78:92:
71:58:2a:e4:21:fe:46:b8:2f:96:69:52:91:76:c0:6a:53:c9:
f7:9b:76:73:d0:fa:64:8f:cf:c5:13:cb:4b:8e:51:4e:6d:4d:
83:9c:88:06:39:7c:7f:e8:09:a1:69:ec:e7:0a:90:9f:1e:5d:
10:95:d6:d6:1a:f0:59:4c:dd:1d:a6:1a:50:d3:8c:1b:72:8c:
e3:2f:86:6c:81:77:67:6b:9a:35:2c:5b:30:a3:27:69:a4:ef:
ee:28:ac:70:37:75:e9:44:8d:53:8d:49:cc:f9:67:50:da:8e:
e7:d4:8f:06:bf:d4:03:90:87:e4:18:4b:49:f3:04:6d:1b:1e:
8a:e3:ba:c2:41:2b:5a:9d:0d:ce:a3:28:97:17:b8:37:02:bf:
a5:04:bc:63:48:0d:e8:15:91:57:93:93:76:bf:7b:a4:97:c2:
b2:95:ff:d5:41:9a:91:b5:1f:1e:70:f8:e5:d1:f7:31:55:cc:
14:78:24:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net