Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e38392e302f32342d3234203d3e203630363935.roa
File: 3135362e36372e38392e302f32342d3234203d3e203630363935.roa (raw, json)
Hash identifier: l/tBjktYSMs0fyspuCNpfkNkDzq32D6b3uft2L7nDKA=
Subject key identifier: 17:C2:7E:82:FF:18:F6:3A:23:F7:1E:C0:46:62:1A:10:BB:96:70:AD
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 53DB57DE6EF6BA9F91795A36A5EE061A0442777E
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e38392e302f32342d3234203d3e203630363935.roa
Signing time: Wed 23 Nov 2022 12:32:54 +0000
ROA not before: Wed 23 Nov 2022 12:27:54 +0000
ROA not after: Wed 22 Nov 2023 12:32:54 +0000
asID: 60695
IP address blocks: 156.67.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:db:57:de:6e:f6:ba:9f:91:79:5a:36:a5:ee:06:1a:04:42:77:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 23 12:27:54 2022 GMT
Not After : Nov 22 12:32:54 2023 GMT
Subject: CN=17C27E82FF18F63A23F71EC046621A10BB9670AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:ec:c5:81:0d:7d:08:92:ed:1a:45:ce:e6:
0f:84:d7:8c:95:37:eb:b8:f4:92:d4:a6:a8:e6:e5:
c5:ac:9f:07:87:ed:1b:c9:98:ea:50:6e:a6:f0:88:
ee:57:43:9f:c1:18:b3:41:cc:01:cc:34:00:28:91:
bd:b5:dd:47:2c:ad:3c:8e:dd:64:11:7d:23:67:10:
b0:e2:b9:f4:ea:06:13:dd:75:03:96:b9:4f:1c:90:
cc:34:8c:bf:5c:42:18:df:17:ad:48:33:ec:21:17:
4f:23:08:e7:30:dc:6d:8f:63:92:2b:e8:e9:d2:3b:
2d:89:cb:4e:5c:4f:c3:04:8f:6d:8a:6f:ef:83:17:
1a:91:bb:08:91:75:f2:d7:42:81:01:89:a1:15:ff:
b6:1c:55:21:53:c0:d8:12:dd:22:76:e5:c0:b0:56:
87:5d:68:81:81:8a:8a:57:56:1e:98:14:be:6e:c7:
2d:39:2e:67:5c:3e:3d:fd:c3:be:1e:de:af:8e:6e:
0a:cf:43:2f:bd:54:0c:26:65:40:ba:42:4f:4b:1c:
c3:f4:cd:f2:3e:66:85:02:f2:57:2a:b7:d3:6a:74:
72:0c:8d:14:c9:08:23:99:a6:68:80:ba:f3:8d:0d:
63:ed:0c:69:7e:b1:ca:c0:78:b6:ca:58:85:31:5c:
cc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C2:7E:82:FF:18:F6:3A:23:F7:1E:C0:46:62:1A:10:BB:96:70:AD
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135362e36372e38392e302f32342d3234203d3e203630363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.89.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:24:e8:14:f5:ae:df:6c:94:d6:29:12:8b:8d:9e:e4:3a:40:
bf:b0:49:aa:21:82:45:4f:ea:48:84:f6:0c:bb:10:5b:e5:49:
f9:e5:42:cc:56:51:64:67:99:76:a4:65:6b:92:d6:49:9e:aa:
49:a5:b0:1a:86:d3:18:b4:ac:7d:40:a7:79:e0:44:19:17:c3:
c0:93:7d:e6:02:61:92:fb:9e:47:ba:6c:eb:f9:e1:59:9d:0c:
3c:ff:88:a2:fb:67:61:82:7e:5d:af:83:fa:ff:8a:68:b7:0d:
ae:6b:12:07:30:69:f4:dd:40:29:65:b7:bc:ec:7a:04:8b:14:
9d:db:c2:8e:c6:63:90:2b:92:b4:c1:37:a1:9b:43:45:89:1e:
19:64:c2:e5:d5:8f:36:ff:e8:bb:17:2d:cc:de:1a:ba:b3:d2:
50:65:9f:b7:92:bb:ee:74:17:b8:13:7b:af:3f:23:34:cf:c2:
75:54:5d:48:51:ad:95:a7:6a:79:d3:44:c6:0a:62:0e:1c:70:
f9:68:85:4f:dd:d1:cb:e5:ba:6d:70:61:e6:46:34:15:1c:2a:
50:13:51:81:fc:07:e5:8d:df:c5:26:04:cf:1a:13:56:98:d1:
97:87:25:b2:ca:df:98:d3:bf:67:06:c1:22:18:47:85:bc:07:
c4:56:63:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net