Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3135392e34382e35332e302f32342d3332203d3e203632323430.roa
File: 3135392e34382e35332e302f32342d3332203d3e203632323430.roa (raw, json)
Hash identifier: LyOqx/javJnNAaWzxDw8iLvy8gMmihntLFsvQe05F88=
Subject key identifier: 58:E0:44:AC:BC:F4:36:A4:DE:EF:1B:60:C3:FD:69:99:F3:AE:90:EF
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4388D77A981FB231C69C6DBAE11A298277D911B4
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135392e34382e35332e302f32342d3332203d3e203632323430.roa
Signing time: Wed 28 Dec 2022 09:28:12 +0000
ROA not before: Wed 28 Dec 2022 09:23:12 +0000
ROA not after: Wed 27 Dec 2023 09:28:12 +0000
asID: 62240
IP address blocks: 159.48.53.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:88:d7:7a:98:1f:b2:31:c6:9c:6d:ba:e1:1a:29:82:77:d9:11:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 28 09:23:12 2022 GMT
Not After : Dec 27 09:28:12 2023 GMT
Subject: CN=58E044ACBCF436A4DEEF1B60C3FD6999F3AE90EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1b:21:ed:61:46:4c:ef:9b:d8:ee:eb:70:bb:
2a:31:24:21:0c:41:06:bd:3f:75:e4:d6:c1:4d:94:
01:c4:3d:88:52:2c:ea:44:c9:c0:76:a0:a0:25:f0:
6f:98:46:73:5c:4f:76:46:d2:a6:3f:0a:e0:a1:33:
89:39:1c:39:78:3a:0a:19:3c:82:ab:38:5a:89:a4:
52:be:35:da:dd:b1:ed:ab:f0:24:84:22:d0:6d:a9:
93:31:9c:ec:7c:af:83:9c:01:ad:d9:dc:f4:fa:2f:
c2:46:12:bc:a1:eb:57:a1:e6:7d:fb:26:b5:70:e5:
93:4c:29:5c:a0:ac:b6:9b:b6:bd:40:fc:a1:87:5b:
e2:10:d6:87:92:a7:70:10:dd:2c:f4:ff:b4:45:9d:
8a:6c:a3:a3:64:e5:ef:d5:ad:6a:6c:bb:38:65:89:
13:58:31:62:9d:61:d2:af:41:7c:51:5e:43:c7:27:
d5:b1:09:48:6a:a5:d4:e9:24:b2:1f:d0:41:f3:0c:
7b:6b:4b:d7:77:6c:53:12:cf:f3:c7:84:23:16:63:
66:8d:c7:e0:5b:6e:24:df:46:ba:4d:32:60:d9:6f:
ac:85:2f:1b:a1:a3:1f:e8:ed:8e:8d:8e:1a:03:44:
61:8f:8a:38:61:65:ff:41:35:7e:c5:17:a2:1d:c7:
90:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E0:44:AC:BC:F4:36:A4:DE:EF:1B:60:C3:FD:69:99:F3:AE:90:EF
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3135392e34382e35332e302f32342d3332203d3e203632323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.48.53.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:fd:c9:65:98:b9:8a:d2:a7:3e:a4:6b:46:22:02:2e:c1:73:
b5:b1:af:61:aa:9c:ca:5d:bd:fc:af:ed:27:b4:69:3d:49:43:
47:fb:2c:34:9d:73:d6:f1:1b:ef:17:00:83:31:4a:f1:8c:1b:
de:33:4e:10:be:f2:61:e5:57:f8:91:07:1f:6c:95:c7:81:b6:
5c:4f:6f:11:17:3c:95:10:1c:21:1e:91:06:f1:f0:45:3b:ec:
5a:a7:5c:f3:c8:84:b2:9d:f9:a5:fd:ce:d5:7e:19:a6:f6:84:
96:c4:a4:bd:f5:6a:32:b8:0a:90:57:db:70:39:a0:92:b4:c7:
b9:83:d7:22:e7:25:38:9e:30:89:91:84:8f:f4:4b:16:8f:f3:
35:08:ab:1b:3b:d6:98:45:94:9c:dc:d9:0a:52:5b:74:72:44:
c9:70:a7:27:30:36:0c:0e:45:5b:ef:4d:a6:f8:bb:3f:8f:30:
c3:19:69:93:4c:e2:24:a0:57:e6:1a:a5:05:d9:bd:74:fc:6b:
a4:3e:14:94:84:62:6a:0c:70:1c:d8:15:0d:b5:72:44:99:42:
a0:e4:e9:70:d8:87:fc:d0:1a:79:ae:8c:da:42:a5:a7:d2:a9:
25:b4:ae:4e:57:34:80:44:69:00:6d:5a:6c:89:a6:14:56:48:
49:b7:60:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net