Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3137372e3131392e302f32342d3234203d3e2030.roa
File: 3138352e3137372e3131392e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: n4UQsK0I49zDwCxJ/RNRaz6rveKYr1Z+FdSrmpS9Nas=
Subject key identifier: B9:17:5F:22:4F:4B:93:B0:82:38:9F:C1:49:E3:87:7D:5A:97:2F:F4
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 1874564405695DB3833E0CDA6CD36E676E781206
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3137372e3131392e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:33:21 +0000
ROA not before: Fri 03 Mar 2023 15:28:21 +0000
ROA not after: Fri 01 Mar 2024 15:33:21 +0000
asID: 0
IP address blocks: 185.177.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:74:56:44:05:69:5d:b3:83:3e:0c:da:6c:d3:6e:67:6e:78:12:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Mar 3 15:28:21 2023 GMT
Not After : Mar 1 15:33:21 2024 GMT
Subject: CN=B9175F224F4B93B082389FC149E3877D5A972FF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:9e:44:ca:43:23:0e:58:ff:d1:47:6a:c1:
0b:81:3e:3e:7d:f2:7a:f2:93:37:19:73:fc:a7:cb:
b6:79:30:bc:96:82:97:ac:bd:22:56:74:7f:30:6b:
94:07:e9:87:68:60:8d:5e:92:aa:ce:ce:35:31:53:
3f:a3:9c:31:22:48:86:06:d5:e6:42:ca:75:4f:4f:
30:29:5e:f0:02:43:3b:43:c5:67:25:c5:a3:3e:22:
46:28:de:42:be:68:6d:60:3a:58:eb:27:fb:77:68:
2f:3a:31:55:10:17:e0:f3:84:d6:66:b6:3c:0f:bd:
5d:ff:38:a9:a7:fc:49:43:a5:a3:3d:a3:6c:c0:1b:
0c:21:5c:dd:cd:68:23:0d:97:47:d4:dc:f2:3c:9d:
15:74:ee:a0:f3:6c:8c:77:59:32:7b:a1:c4:8f:af:
8a:ac:d5:5e:08:9f:93:e7:e0:fb:48:2e:39:e9:db:
8c:fe:e9:a9:65:86:0b:57:02:2f:d0:a3:09:56:76:
1b:0b:ea:8f:6d:6e:19:77:3c:74:31:87:02:df:d3:
63:4f:0d:0e:9d:b8:10:cf:e1:b9:81:70:e6:3b:73:
e8:51:0b:82:11:59:83:ab:9e:5f:9e:d1:02:58:43:
22:96:48:12:56:18:0d:2c:83:33:a0:06:fa:d6:f0:
b8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:17:5F:22:4F:4B:93:B0:82:38:9F:C1:49:E3:87:7D:5A:97:2F:F4
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3137372e3131392e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.119.0/24
Signature Algorithm: sha256WithRSAEncryption
be:32:2f:68:89:53:e1:66:84:31:21:6a:04:6f:9c:ce:2e:b2:
29:26:51:4a:73:9b:36:b1:da:bb:42:ab:76:fc:d2:79:4d:70:
47:9f:2f:f4:13:b2:45:95:1d:70:b3:3d:d0:a4:8b:99:e5:f1:
0f:5e:84:3c:14:4c:2b:76:ad:eb:85:bc:82:d0:1e:14:10:c2:
3a:39:8d:1d:67:b9:3e:16:b7:5a:98:1e:6a:1c:8c:d3:ab:de:
d9:d6:d7:45:5e:8f:a9:da:89:6d:67:2e:6d:6c:c2:7e:c1:91:
18:a9:89:7a:10:4b:0a:99:d1:c0:01:c9:f8:05:f7:6f:0f:36:
79:9b:94:21:6d:2f:60:1d:df:7f:b0:a4:8d:1f:d7:90:75:47:
09:85:66:eb:5a:82:8a:e6:ba:b0:b5:34:3c:55:99:1f:17:33:
e3:62:48:30:9b:5b:24:71:35:2a:5e:1a:0d:d4:b0:7c:2f:da:
bd:45:ea:8c:51:f0:22:84:b9:c7:66:e7:0e:72:00:62:5f:81:
8f:2d:7d:99:d8:31:5a:76:18:b0:5f:73:82:6d:9f:91:7f:b4:
9e:29:c3:78:39:29:ce:be:f9:d7:66:a7:9a:c1:40:64:9d:84:
77:fa:8b:44:51:40:7d:0e:92:f2:93:17:56:c5:a9:9d:32:93:
0e:77:66:44
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgIUGHRWRAVpXbODPgzabNNuZ254EgYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMzAzMDMxNTI4MjFaFw0yNDAzMDExNTMzMjFaMDMxMTAvBgNV
BAMTKEI5MTc1RjIyNEY0QjkzQjA4MjM4OUZDMTQ5RTM4NzdENUE5NzJGRjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Vp5EykMjDlj/0UdqwQuBPj59
8nrykzcZc/yny7Z5MLyWgpesvSJWdH8wa5QH6YdoYI1ekqrOzjUxUz+jnDEiSIYG
1eZCynVPTzApXvACQztDxWclxaM+IkYo3kK+aG1gOljrJ/t3aC86MVUQF+DzhNZm
tjwPvV3/OKmn/ElDpaM9o2zAGwwhXN3NaCMNl0fU3PI8nRV07qDzbIx3WTJ7ocSP
r4qs1V4In5Pn4PtILjnp24z+6allhgtXAi/QowlWdhsL6o9tbhl3PHQxhwLf02NP
DQ6duBDP4bmBcOY7c+hRC4IRWYOrnl+e0QJYQyKWSBJWGA0sgzOgBvrW8LifAgMB
AAGjggHrMIIB5zAdBgNVHQ4EFgQUuRdfIk9Lk7CCOJ/BSeOHfVqXL/QwHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4Zm
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zMTM4MzUyZTMxMzczNzJlMzEzMTM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIw
MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAC5sXcwDQYJKoZIhvcNAQELBQADggEBAL4yL2iJU+FmhDEh
agRvnM4usikmUUpzmzax2rtCq3b80nlNcEefL/QTskWVHXCzPdCki5nl8Q9ehDwU
TCt2reuFvILQHhQQwjo5jR1nuT4Wt1qYHmocjNOr3tnW10Vej6naiW1nLm1swn7B
kRipiXoQSwqZ0cAByfgF928PNnmblCFtL2Ad33+wpI0f15B1RwmFZutagormurC1
NDxVmR8XM+NiSDCbWyRxNSpeGg3UsHwv2r1F6oxR8CKEucdm5w5yAGJfgY8tfZnY
MVp2GLBfc4Jtn5F/tJ4pw3g5Kc6++ddmp5rBQGSdhHf6i0RRQH0OkvKTF1bFqZ0y
kw53ZkQ=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net