Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3232392e35362e302f32332d3234203d3e2030.roa
File: 3138352e3232392e35362e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: CxuLtthLssVglgeMd2O5micLf0RzlMPhzUBZkZrccoI=
Subject key identifier: 90:17:2E:C9:23:C8:D3:AD:B2:CE:9F:E1:28:B7:13:82:9C:AA:F1:AE
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 2021AEAB4A0A5D4EBC656499B515E6A300D9B275
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3232392e35362e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:39:58 +0000
ROA not before: Fri 03 Mar 2023 15:34:58 +0000
ROA not after: Fri 01 Mar 2024 15:39:58 +0000
asID: 0
IP address blocks: 185.229.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:21:ae:ab:4a:0a:5d:4e:bc:65:64:99:b5:15:e6:a3:00:d9:b2:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Mar 3 15:34:58 2023 GMT
Not After : Mar 1 15:39:58 2024 GMT
Subject: CN=90172EC923C8D3ADB2CE9FE128B713829CAAF1AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:39:21:0d:30:0a:ca:c9:ff:df:27:e7:b0:f8:
ba:55:a8:53:c9:8e:75:cf:0f:40:25:25:73:4c:8c:
36:3b:ae:43:52:d7:b2:ce:68:8b:ac:bc:1d:9b:cd:
c5:24:7a:6f:ff:ad:2d:79:a9:a4:98:9d:82:5b:57:
6e:c7:52:df:71:3c:37:06:db:5e:43:e7:39:d3:e9:
3a:1c:3c:4f:ee:1a:54:a6:5e:39:80:92:fc:b7:8b:
71:8d:d7:8d:bb:21:8c:cb:7c:74:02:6d:3b:97:1f:
88:36:bf:5c:56:58:e7:79:73:77:41:37:e7:82:8c:
07:92:47:56:94:be:d2:12:18:53:3b:19:a2:d6:d4:
21:b2:1a:b3:5a:5d:72:f8:b6:95:30:d3:8e:62:57:
72:8b:09:cd:ce:26:bf:b4:b9:a1:e4:b4:85:db:3c:
cb:89:b0:33:53:e8:b9:55:48:05:a5:1d:54:35:28:
03:f8:df:df:23:d0:48:3f:f2:25:b0:f9:7e:66:e4:
0d:ac:35:bc:09:0c:72:8b:c8:c6:1d:6b:4c:08:98:
4b:0f:f2:a4:88:48:b9:05:97:d7:ab:72:b6:12:43:
88:f4:c3:bd:3f:6f:94:45:82:70:2a:53:c7:ec:87:
8b:e6:60:1a:8e:9b:25:a2:84:4a:e9:fd:c4:4e:69:
af:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:17:2E:C9:23:C8:D3:AD:B2:CE:9F:E1:28:B7:13:82:9C:AA:F1:AE
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3232392e35362e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.56.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:36:47:aa:55:aa:88:47:b0:79:6f:66:82:68:88:3a:b5:57:
50:1f:df:be:44:4f:39:56:28:43:a2:e1:ab:ce:92:e0:dd:9d:
d0:0d:7c:79:cd:39:7f:fa:73:45:50:cb:c8:bf:96:63:e5:55:
48:3b:2f:a8:e2:e0:e5:ad:7d:56:4b:bc:16:9e:6d:b2:17:f3:
4a:1f:0f:fa:c3:c0:b2:54:62:72:07:b2:d2:88:14:9b:6f:30:
b7:2a:8a:c2:71:0a:47:11:59:bf:67:2b:1a:07:f5:99:0f:13:
0b:f9:93:0b:67:3c:b6:73:15:c4:e9:79:55:7a:a3:c1:dc:c8:
df:50:06:70:45:3b:35:fd:98:20:14:60:10:54:f4:d0:34:26:
bb:94:02:b0:f0:13:1f:23:d3:c0:4b:f9:63:ab:4d:42:b9:ba:
66:41:58:82:2d:96:37:e7:83:99:0b:24:c0:c9:8e:4b:76:a7:
7c:08:17:aa:40:33:43:b2:55:b7:f4:b4:9c:03:01:6a:22:b7:
f1:d9:01:80:05:61:78:a2:1c:f2:45:b4:97:db:a0:e9:7d:75:
13:84:d6:0d:ff:72:82:57:49:2d:1c:c6:8f:e9:96:65:93:b2:
11:54:98:fe:96:f2:05:6b:2c:dc:04:e7:a5:4d:e6:2d:dd:12:
94:9c:53:5b
-----BEGIN CERTIFICATE-----
MIIE3zCCA8egAwIBAgIUICGuq0oKXU68ZWSZtRXmowDZsnUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMzAzMDMxNTM0NThaFw0yNDAzMDExNTM5NThaMDMxMTAvBgNV
BAMTKDkwMTcyRUM5MjNDOEQzQURCMkNFOUZFMTI4QjcxMzgyOUNBQUYxQUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5OSENMArKyf/fJ+ew+LpVqFPJ
jnXPD0AlJXNMjDY7rkNS17LOaIusvB2bzcUkem//rS15qaSYnYJbV27HUt9xPDcG
215D5znT6TocPE/uGlSmXjmAkvy3i3GN1427IYzLfHQCbTuXH4g2v1xWWOd5c3dB
N+eCjAeSR1aUvtISGFM7GaLW1CGyGrNaXXL4tpUw045iV3KLCc3OJr+0uaHktIXb
PMuJsDNT6LlVSAWlHVQ1KAP4398j0Eg/8iWw+X5m5A2sNbwJDHKLyMYda0wImEsP
8qSISLkFl9ercrYSQ4j0w70/b5RFgnAqU8fsh4vmYBqOmyWihErp/cROaa+3AgMB
AAGjggHpMIIB5TAdBgNVHQ4EFgQUkBcuySPI062yzp/hKLcTgpyq8a4wHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4Zk
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zMTM4MzUyZTMyMzIzOTJlMzUzNjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMw
LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQBueU4MA0GCSqGSIb3DQEBCwUAA4IBAQC9NkeqVaqIR7B5b2aC
aIg6tVdQH9++RE85VihDouGrzpLg3Z3QDXx5zTl/+nNFUMvIv5Zj5VVIOy+o4uDl
rX1WS7wWnm2yF/NKHw/6w8CyVGJyB7LSiBSbbzC3KorCcQpHEVm/ZysaB/WZDxML
+ZMLZzy2cxXE6XlVeqPB3MjfUAZwRTs1/ZggFGAQVPTQNCa7lAKw8BMfI9PAS/lj
q01CubpmQViCLZY354OZCyTAyY5Ldqd8CBeqQDNDslW39LScAwFqIrfx2QGABWF4
ohzyRbSX26DpfXUThNYN/3KCV0ktHMaP6ZZlk7IRVJj+lvIFayzcBOelTeYt3RKU
nFNb
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net