Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3231372e3137312e302f32342d3234203d3e20313336373837.roa
File: 3138352e3231372e3137312e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: FThg8psOjEWzMHNEcE4dTg+Lxbc77t0S0s4wub92vHs=
Subject key identifier: 35:FA:E5:B8:11:02:81:22:1D:BF:3C:69:23:DB:C1:49:F8:06:B9:19
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 06B810EFAF92FEFD3DF879B68AE1E9A854BDE307
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3231372e3137312e302f32342d3234203d3e20313336373837.roa
Signing time: Thu 29 Dec 2022 10:36:46 +0000
ROA not before: Thu 29 Dec 2022 10:31:46 +0000
ROA not after: Thu 28 Dec 2023 10:36:46 +0000
asID: 136787
IP address blocks: 185.217.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:b8:10:ef:af:92:fe:fd:3d:f8:79:b6:8a:e1:e9:a8:54:bd:e3:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 29 10:31:46 2022 GMT
Not After : Dec 28 10:36:46 2023 GMT
Subject: CN=35FAE5B8110281221DBF3C6923DBC149F806B919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b2:18:cb:32:03:9b:30:02:39:31:bb:ff:e8:
b2:29:b3:bf:b9:ed:33:2e:ed:c1:9d:0d:6e:5f:95:
42:df:5e:f6:40:ac:af:d3:54:7c:88:f1:32:65:cc:
a2:87:25:06:ec:15:90:57:b4:51:d7:6f:d3:77:60:
37:7f:10:04:16:a2:8d:8f:61:af:6e:cd:a8:e8:83:
c7:11:f1:c1:09:0e:8e:0a:b1:36:28:b0:cb:a0:04:
d4:fc:61:24:a2:2f:e9:d5:06:35:8b:69:55:7b:a4:
be:5a:22:57:65:0b:30:79:44:f6:91:23:ee:66:e9:
eb:93:f1:ac:d8:14:46:a4:42:e4:09:c9:7f:3f:09:
7b:51:2e:4e:00:84:95:64:07:ac:b9:ba:f9:1c:3d:
dc:fa:5d:eb:54:a0:3c:a0:ab:82:92:4a:12:6b:40:
f7:52:8d:49:d4:65:f0:7b:36:06:47:08:f6:ac:b3:
90:2f:63:d9:ef:30:ca:07:08:c7:ae:7b:2c:a6:8a:
58:cc:6d:f8:e7:0a:9e:7f:07:87:6c:1e:1d:c2:97:
d6:18:56:1a:21:86:72:34:60:fa:09:f7:69:af:32:
f0:9f:38:6b:6c:7a:3c:d5:d1:ed:d1:92:2d:80:e6:
51:63:00:e4:3b:22:e9:06:bc:67:57:61:f5:ba:0f:
43:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FA:E5:B8:11:02:81:22:1D:BF:3C:69:23:DB:C1:49:F8:06:B9:19
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3231372e3137312e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.171.0/24
Signature Algorithm: sha256WithRSAEncryption
57:3d:62:4c:f8:c7:b9:68:ab:93:94:43:43:f9:87:78:75:c7:
df:5a:a3:c9:dd:9b:75:ee:3d:0f:8e:93:31:29:15:d8:42:e6:
55:be:63:70:fb:98:20:d1:27:e4:d1:07:a9:6a:60:97:f7:5b:
10:4b:62:e7:a8:2f:5b:d9:b4:a8:da:12:e1:9e:f9:ff:f4:c6:
a7:af:77:92:0f:a2:b5:af:1a:ca:59:69:8d:5a:07:49:b6:96:
f0:7c:fd:b9:c9:3a:6a:15:94:33:37:1b:64:56:9c:a5:2b:e0:
eb:bd:c1:51:7a:db:d6:88:de:fb:9e:9a:cf:f0:94:6d:a3:46:
83:cc:50:56:b7:d2:ac:bc:86:26:75:3f:df:56:e0:c6:79:24:
8d:60:55:28:b9:b8:ec:79:07:91:40:6e:7b:58:0b:9b:55:7a:
f7:ad:16:32:93:8b:d2:0b:49:28:b0:a9:2a:75:c4:dc:b1:f3:
6e:b6:f5:5b:44:f9:8f:92:c9:5d:11:34:20:fd:ec:38:a0:f0:
97:2d:ec:60:9e:c7:6a:91:a7:0c:09:6d:be:b4:0c:9e:fc:88:
42:f2:e4:c5:01:12:13:29:2d:79:00:7d:fe:aa:f5:c7:ce:eb:
43:ef:3a:37:25:5d:7a:88:0b:bb:d0:ee:b4:c8:0b:2a:d3:47:
51:69:be:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net