Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3136312e3230332e302f32342d3234203d3e20323031333431.roa
File: 3138352e3136312e3230332e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: DdM8andYz0czCJhbyiqurVI2VfBPgO9PDW/Y4vUctzs=
Subject key identifier: AD:F1:06:AD:98:D8:6D:93:82:69:10:3E:61:DF:D3:EA:C6:26:EC:64
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4C821CF1F917070A30779BFB06D8043C6EDBA3D3
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3136312e3230332e302f32342d3234203d3e20323031333431.roa
Signing time: Sat 22 Oct 2022 04:34:20 +0000
ROA not before: Sat 22 Oct 2022 04:29:20 +0000
ROA not after: Sat 21 Oct 2023 04:34:20 +0000
asID: 201341
IP address blocks: 185.161.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:82:1c:f1:f9:17:07:0a:30:77:9b:fb:06:d8:04:3c:6e:db:a3:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:20 2022 GMT
Not After : Oct 21 04:34:20 2023 GMT
Subject: CN=ADF106AD98D86D938269103E61DFD3EAC626EC64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c7:7e:09:84:f2:a1:52:14:7f:ac:3a:ea:28:
61:62:d7:6d:6e:ea:55:64:e1:51:f9:54:5b:d3:14:
7b:c1:6f:23:23:c9:b5:64:df:29:5a:03:b0:7f:5a:
55:03:99:91:19:24:54:36:98:09:5a:af:67:c4:2c:
5e:4d:c9:ef:ff:2b:50:bd:fc:6d:fd:8d:af:d9:b9:
7e:87:3b:27:eb:a3:09:55:39:ad:f5:d0:dc:f7:3a:
bf:ff:d8:a1:f9:1b:f4:0b:ce:3d:1d:03:ba:c9:5b:
1a:2b:4f:6a:6f:82:a0:f7:07:2f:ff:f9:27:03:9c:
67:79:b9:0c:ae:7a:f2:31:0a:80:2e:9d:c3:8c:1e:
fe:d8:ce:65:0e:fd:03:26:5f:33:56:b7:27:ba:03:
5a:8f:b8:78:4f:3d:56:d4:b0:ca:42:59:fd:50:f2:
09:79:e8:3b:23:c6:34:58:dd:5b:a3:73:3c:51:2a:
32:de:c3:71:5a:8b:ec:4e:3d:a3:4a:1a:4a:66:31:
39:e0:b3:84:76:ee:11:61:cc:e4:07:84:c5:60:74:
e2:49:a7:cd:ac:01:86:99:d7:03:8d:06:25:23:75:
9c:69:72:37:53:33:cf:0d:04:b1:20:5e:de:d7:0a:
d3:32:02:7d:22:cb:08:ff:7d:79:cc:27:5b:3b:1a:
b2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F1:06:AD:98:D8:6D:93:82:69:10:3E:61:DF:D3:EA:C6:26:EC:64
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3136312e3230332e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.203.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:c0:89:ca:82:50:54:32:ba:70:a5:47:94:3c:f3:ce:39:e8:
84:4d:27:cf:e8:e9:43:23:9f:a9:c5:2d:ad:c2:d6:dc:3c:20:
30:0b:e3:da:ab:fe:2f:6e:53:15:6b:cb:39:fc:0a:c2:30:ff:
5e:6a:cb:11:be:ab:5c:cc:98:a9:91:7b:97:e9:25:f9:c1:21:
98:fc:7f:da:36:0c:fc:0e:3f:60:bc:33:35:6c:b4:91:9b:62:
dc:eb:b3:5c:ef:d2:ca:09:b4:66:05:b9:30:37:9a:97:5b:69:
e1:78:28:6c:a0:f5:84:bd:9f:b3:6a:51:09:d7:ba:2d:e6:43:
36:a2:80:e1:c8:90:5c:22:58:04:63:10:50:e4:7a:db:7b:26:
4e:1b:d2:2c:03:d9:22:29:5b:0f:78:74:13:f5:e0:6c:92:57:
c6:11:44:00:f2:8c:aa:54:1a:02:8b:d1:d0:46:46:f9:f6:e7:
73:89:7d:93:ad:11:f7:2e:b7:9b:6e:c7:49:ae:0e:df:71:49:
0a:8b:c9:b3:ad:3c:5c:b1:6a:a8:76:d0:bf:00:55:06:96:69:
05:c9:ab:f9:82:e2:bf:61:68:37:29:01:fe:16:6f:04:42:fd:
b8:ef:5a:c2:4f:5b:91:7d:11:e1:19:09:0d:6a:0a:a9:01:06:
65:b5:52:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net