Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3232352e3133372e302f32342d3234203d3e2030.roa
File: 3138352e3232352e3133372e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: SfpbQpamp4fMDVxOCdCB7TfLOl7fZLFqugwOA4z43Pw=
Subject key identifier: 40:32:4B:75:6A:97:0B:24:9A:88:01:30:39:4B:EF:46:85:F3:E9:70
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 0B361EADBED6E55086E2CCCB74D2A7809EEAB9FD
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3232352e3133372e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:37:51 +0000
ROA not before: Fri 03 Mar 2023 15:32:51 +0000
ROA not after: Fri 01 Mar 2024 15:37:51 +0000
asID: 0
IP address blocks: 185.225.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:36:1e:ad:be:d6:e5:50:86:e2:cc:cb:74:d2:a7:80:9e:ea:b9:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Mar 3 15:32:51 2023 GMT
Not After : Mar 1 15:37:51 2024 GMT
Subject: CN=40324B756A970B249A880130394BEF4685F3E970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:eb:61:1e:7f:fe:00:7c:0d:37:db:06:9b:53:
4d:9f:9c:3f:74:46:ca:7f:e5:19:19:19:9c:eb:59:
b9:d1:0e:50:57:7f:21:29:b7:34:43:93:69:33:72:
36:d8:7e:84:62:6f:7b:27:16:ce:74:e3:41:65:09:
a4:10:a6:d7:63:f4:03:d1:d1:4c:f9:17:dc:62:52:
d9:1a:29:b2:24:20:ba:75:7a:07:b5:0f:eb:15:01:
df:7b:26:6e:8c:9f:e5:b5:cf:f0:92:5e:d7:5d:fc:
fe:ed:c4:ed:fc:b8:24:25:a2:e5:81:d9:cd:d6:ea:
48:c8:b3:f0:7b:c2:04:1e:b9:6a:2a:db:75:35:91:
a3:32:71:d9:8c:a7:dc:c0:ce:38:9e:01:43:6d:79:
26:e7:7e:db:6a:cd:5c:89:33:97:42:8c:7e:42:d0:
ac:38:17:61:2a:b2:7f:bd:c1:42:24:20:09:df:c7:
89:45:aa:3c:05:00:86:22:7d:5e:68:e6:3a:5e:ca:
f4:58:65:78:da:9f:f5:02:d1:78:e0:07:67:1d:ef:
76:9b:06:30:85:46:e1:d6:2f:32:86:1f:02:5b:5f:
db:2f:35:73:0a:84:51:86:89:b7:88:1d:32:4e:36:
77:fb:09:c8:b8:63:f4:0d:ef:e0:ff:39:12:fd:34:
7b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:32:4B:75:6A:97:0B:24:9A:88:01:30:39:4B:EF:46:85:F3:E9:70
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3232352e3133372e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.137.0/24
Signature Algorithm: sha256WithRSAEncryption
76:17:6e:e9:ca:a9:33:80:4c:44:6f:a1:f6:80:83:4d:ec:86:
0c:96:e5:b9:31:d6:cd:c6:b2:18:8b:3f:31:65:13:cc:32:7b:
8b:f0:0c:9e:b2:8b:e5:d4:9b:9e:04:db:8d:2d:0e:a4:6f:de:
28:01:34:d1:b0:69:2f:7a:ca:8a:2e:22:da:c3:ee:a2:65:57:
1d:d5:2e:f1:4a:f9:5e:1c:e3:49:65:66:97:ea:c4:f3:20:48:
df:e3:e7:5e:e1:87:0b:0c:9b:0f:76:a1:55:e4:50:5d:36:d4:
63:db:1e:c3:4b:2e:93:c7:1e:dc:80:22:6d:e7:64:80:dc:7d:
9d:54:2f:49:d4:9c:4b:ae:cf:9b:af:1c:44:c1:a6:f7:6f:54:
d8:c2:0f:de:18:dc:b5:81:14:f7:d7:83:b0:5c:96:11:f6:9b:
b2:22:13:24:f4:3c:db:fb:2b:c9:fb:81:c8:21:10:97:63:13:
6f:0d:62:78:16:80:8c:68:cf:da:a9:a6:0f:1e:4f:59:84:26:
5b:0d:40:c4:af:0f:b8:85:5d:06:a0:71:9e:50:ba:41:7f:27:
3e:f9:cf:bc:2a:c8:10:47:68:7e:29:4c:5d:c9:85:fb:2a:56:
9d:42:cc:53:00:09:2f:d6:c1:57:c8:b6:17:bf:27:51:de:2f:
e4:39:e9:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net