Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3137372e3131372e302f32342d3234203d3e2030.roa
File: 3138352e3137372e3131372e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: F576TUhrj6a2NoGiMwUkTU9oTvwBtvvW2EBCkMvreyc=
Subject key identifier: E2:45:37:0B:CB:D3:E0:84:46:B2:FE:2B:AE:E7:C0:A6:20:25:3D:B2
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 3F1941B65F87B4960C999D3726C62CAC888C2260
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3137372e3131372e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:32:54 +0000
ROA not before: Fri 03 Mar 2023 15:27:54 +0000
ROA not after: Fri 01 Mar 2024 15:32:54 +0000
asID: 0
IP address blocks: 185.177.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:19:41:b6:5f:87:b4:96:0c:99:9d:37:26:c6:2c:ac:88:8c:22:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Mar 3 15:27:54 2023 GMT
Not After : Mar 1 15:32:54 2024 GMT
Subject: CN=E245370BCBD3E08446B2FE2BAEE7C0A620253DB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f1:f1:57:55:4b:db:d2:7a:7c:c1:30:aa:4c:
eb:12:02:83:ed:83:fd:50:49:df:ee:5c:81:c4:0a:
24:24:a2:db:ac:51:1d:5b:58:14:a5:a1:99:9e:fb:
81:90:15:bd:5c:60:a1:e4:eb:9a:2d:f0:3f:9a:49:
dd:8d:e8:5d:8b:42:c5:b7:87:37:be:09:88:0b:0a:
29:a2:5e:54:8b:c5:a0:f5:9e:5f:da:8b:ad:9c:5b:
f8:bf:a3:64:51:3e:31:24:66:c6:03:93:69:df:82:
4c:e0:5b:ed:1c:8b:91:6c:44:16:94:9d:a6:b8:62:
3f:0e:3f:23:40:e8:b5:f4:34:4d:d2:b8:3c:7f:c1:
c3:52:59:c0:4b:1c:cf:d0:50:7d:cf:bb:a6:de:40:
ad:65:8b:ce:43:4b:ea:df:5a:de:a6:5e:13:ce:9d:
1c:c4:df:d0:96:0e:bd:c1:4b:18:99:53:eb:29:ae:
86:50:91:7a:9d:e5:0d:5e:29:ac:2c:34:c0:10:20:
62:91:81:d6:c3:1a:fe:4f:1d:53:6a:8e:1d:02:a5:
a4:7c:e6:f1:b2:70:d6:fe:6b:c6:51:b7:28:63:85:
0f:40:7c:07:34:18:05:6d:2d:03:e9:71:d5:51:92:
6d:4d:01:3c:4d:71:05:c0:43:05:5d:ea:f1:91:15:
aa:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:45:37:0B:CB:D3:E0:84:46:B2:FE:2B:AE:E7:C0:A6:20:25:3D:B2
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3137372e3131372e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.117.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:5a:23:b7:88:82:ae:c2:3f:4f:f2:ed:73:48:81:bf:40:91:
38:15:35:7d:d9:c3:f7:46:8c:16:4e:67:87:14:f0:4d:1e:ff:
0c:19:61:ec:53:7b:51:b6:06:e7:2c:4f:6b:b2:0a:9b:96:68:
4b:c5:08:36:0b:1b:83:71:b8:26:71:15:2d:fd:cc:70:de:ab:
d6:5b:d2:06:6c:c3:64:f0:7f:d4:03:15:ba:94:5a:fb:cd:18:
be:da:bc:a8:9b:92:33:f7:82:4d:58:80:39:3d:b8:6b:54:ef:
48:12:60:d5:74:c3:d8:35:5f:db:57:24:1b:0b:ed:29:0c:07:
dd:9e:fc:dc:d2:4b:00:7e:c5:17:88:cb:b9:88:fc:85:f9:d0:
03:b9:49:43:12:a3:a2:39:50:9f:93:4d:e6:50:de:35:34:27:
27:ed:3e:0a:ab:ef:c9:e6:40:5c:13:cb:cc:6c:63:6b:eb:47:
42:da:83:bb:be:ba:a2:f6:08:4d:c1:de:de:e6:75:6a:25:32:
58:4d:94:83:c9:1e:65:ad:79:e7:61:a7:40:e2:2a:63:b1:91:
fd:3a:7d:76:f6:c1:9c:c8:93:d6:94:cb:1a:3e:c0:14:80:71:
0e:a3:99:b4:c3:63:70:a3:86:7c:28:1f:a6:b0:0b:b4:f2:51:
86:0e:1c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net