Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3231372e3137302e302f32342d3332203d3e20313336373837.roa
File: 3138352e3231372e3137302e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: dq4ZqR7Q4f04t0AD2plUrX9dISByf+lrWpqU96BBbOw=
Subject key identifier: 1D:10:3D:56:EB:11:60:AB:34:DD:67:54:7E:AB:5B:B3:EB:ED:2A:03
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 09534C5471F2E494F48A5B2A70933175C26D72EB
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3231372e3137302e302f32342d3332203d3e20313336373837.roa
Signing time: Thu 29 Dec 2022 11:25:29 +0000
ROA not before: Thu 29 Dec 2022 11:20:29 +0000
ROA not after: Thu 28 Dec 2023 11:25:29 +0000
asID: 136787
IP address blocks: 185.217.170.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:53:4c:54:71:f2:e4:94:f4:8a:5b:2a:70:93:31:75:c2:6d:72:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 29 11:20:29 2022 GMT
Not After : Dec 28 11:25:29 2023 GMT
Subject: CN=1D103D56EB1160AB34DD67547EAB5BB3EBED2A03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:75:de:a4:e6:95:5c:be:b8:9b:72:f6:b9:05:
39:19:91:67:0d:0b:c5:12:3c:0e:a1:8a:5a:bc:63:
6b:ab:8b:e6:02:a9:77:33:20:41:b4:a3:a1:0a:19:
1c:42:6d:dc:03:75:23:ae:b3:0b:9d:82:53:0e:8a:
f6:f1:f5:fc:43:13:a8:46:1b:ec:ab:39:98:63:bb:
00:e9:d6:7c:46:f8:cc:51:38:e6:69:3a:c4:9c:dc:
43:93:c7:84:04:f6:15:51:9c:01:75:d6:29:14:2f:
e6:87:d5:af:e1:6e:84:4f:33:41:16:4c:e0:82:27:
12:e6:df:d0:b6:d7:37:42:0a:bb:02:fa:18:12:4a:
44:18:34:2e:b2:46:95:e8:b5:72:60:2d:26:c5:b0:
0d:84:06:31:9b:dd:59:fa:94:17:92:1e:35:c0:80:
20:a6:6e:55:3e:f2:31:9e:d5:72:08:4c:f2:3f:e5:
ff:c5:5c:65:3d:d3:60:45:5c:03:8a:7f:3e:d4:fc:
c7:be:06:35:a2:4f:97:c2:66:93:4e:14:70:3d:90:
ce:a4:db:7b:72:cc:82:78:dd:b8:dc:38:b1:50:cb:
78:06:9b:fe:ab:09:8d:e1:8c:e3:6c:81:8c:9d:78:
81:f7:3a:96:79:8d:bd:de:04:fa:71:e3:89:e9:c6:
ca:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:10:3D:56:EB:11:60:AB:34:DD:67:54:7E:AB:5B:B3:EB:ED:2A:03
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3231372e3137302e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.170.0/24
Signature Algorithm: sha256WithRSAEncryption
88:a1:fa:cc:20:17:f8:89:a9:a8:f1:1f:c5:9a:34:22:1e:92:
be:e9:9d:64:25:a6:be:a7:f0:de:f3:2f:ed:ef:ee:b3:84:a1:
8e:a3:00:fa:a9:73:96:98:05:64:7c:cb:4a:5f:15:a6:57:85:
aa:f5:88:61:e0:6b:2d:39:b8:91:0d:38:3a:da:64:44:0d:66:
7c:3a:a4:7f:50:c5:e1:f7:07:8c:93:d5:10:ae:72:dd:1a:3c:
a7:2d:ca:4c:c5:c1:d2:f9:c9:d3:0a:07:27:49:2b:88:81:6f:
f5:83:33:61:28:f7:b0:d1:8d:6a:3b:7b:99:2d:5b:2f:87:23:
31:21:3b:0e:45:c1:40:9f:11:89:27:d7:8f:4f:5c:28:dd:77:
29:98:3e:d5:ce:34:17:2c:22:d6:37:d6:06:53:68:f9:e6:3b:
90:2e:ed:b2:aa:ce:32:5b:69:c9:0c:f4:e0:22:41:bd:c3:04:
88:bb:87:12:0c:c7:50:85:01:64:40:fa:ae:e1:6d:ba:5a:ac:
56:95:3e:4b:49:82:71:0d:26:d1:48:7f:bc:24:59:ce:6b:2f:
25:89:cc:14:0b:66:21:60:f4:86:e4:d9:93:ba:3a:61:3d:f7:
28:5c:f9:bd:72:b4:67:70:2e:43:37:63:89:0a:ee:54:9f:f9:
3a:8c:eb:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net