Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3139352e32382e32312e302f32342d3234203d3e20323031333431.roa
File: 3139352e32382e32312e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: bmYcqLlLq/XwquSAJQ6vzkb1T0/O0xl4Z1+T+H8kWIY=
Subject key identifier: A9:84:4C:05:20:C8:5D:26:1F:B9:D7:B2:57:28:E4:5B:42:AA:14:95
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 35C0706E96F04B5771F6DD333180042BCDB691B4
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3139352e32382e32312e302f32342d3234203d3e20323031333431.roa
Signing time: Sat 22 Oct 2022 04:34:19 +0000
ROA not before: Sat 22 Oct 2022 04:29:19 +0000
ROA not after: Sat 21 Oct 2023 04:34:19 +0000
asID: 201341
IP address blocks: 195.28.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:c0:70:6e:96:f0:4b:57:71:f6:dd:33:31:80:04:2b:cd:b6:91:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:19 2022 GMT
Not After : Oct 21 04:34:19 2023 GMT
Subject: CN=A9844C0520C85D261FB9D7B25728E45B42AA1495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:a0:67:f9:32:89:17:2c:4c:e0:e7:54:ee:
1c:6f:66:47:28:db:fa:cf:b1:63:11:eb:e5:fc:85:
3c:98:b8:53:f8:b3:f5:c4:13:13:92:a0:1b:a4:5e:
f7:04:14:40:8e:65:87:60:92:6b:d4:86:c5:9a:cf:
4d:82:f6:45:85:fe:4a:f0:02:0a:b9:3d:5c:97:d3:
0c:53:71:fb:96:91:d4:76:67:8b:c0:46:ef:14:74:
79:a1:2e:ba:fe:f9:b5:88:1e:e1:ba:20:cf:cd:49:
ce:0a:c0:0d:e6:a9:23:5f:e5:bb:6c:02:29:56:6e:
b8:5d:dd:44:f5:ec:34:e5:3d:4b:20:3c:c8:77:99:
18:8f:a1:b3:62:d9:2a:ef:ad:f0:bc:64:c6:35:4d:
cd:50:3f:87:6c:9b:f6:29:a7:85:88:f0:bd:68:2b:
54:34:61:51:32:12:3f:3a:bf:13:35:61:50:fe:f0:
5f:af:4d:c9:66:ec:08:67:70:e4:52:cd:7d:e0:2b:
2d:75:d5:cc:e5:2d:1e:4c:4a:9a:3b:0b:71:6b:d2:
58:2b:5a:57:f3:33:8e:e9:c5:3a:1f:4a:63:07:f7:
1f:1f:18:b8:0e:50:56:53:e5:01:b4:1a:0a:4c:a4:
fe:18:1e:9d:52:8c:55:e7:f9:1e:78:e2:95:33:ac:
41:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:84:4C:05:20:C8:5D:26:1F:B9:D7:B2:57:28:E4:5B:42:AA:14:95
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3139352e32382e32312e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.28.21.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:09:78:72:10:13:3c:5e:29:12:dd:f4:d3:41:88:53:99:64:
f8:17:8f:ec:a5:8c:96:92:cc:44:f8:13:72:9d:9b:cd:d1:bb:
49:de:ca:bc:68:2c:d2:6a:91:31:f5:cd:f7:7e:d4:53:0c:3f:
8c:7e:4d:fd:d3:52:a4:35:82:4b:46:b9:23:b3:90:91:dd:1b:
2c:0b:40:e6:b5:34:28:2d:0e:c4:8a:7b:9c:73:05:c6:3d:8f:
01:a1:ce:ab:e9:60:78:28:bf:00:b3:85:75:23:40:d0:60:1c:
1b:b0:39:ee:92:cd:96:1f:de:c4:8d:7f:d2:e3:20:0e:0b:aa:
c5:b4:ed:a0:d5:04:2c:ae:9c:7e:6d:9d:d0:66:12:4c:6e:0f:
0a:4e:e4:d4:c0:e2:24:ad:0e:db:f1:a8:17:2f:5d:97:13:47:
9f:cf:b1:93:06:ac:70:31:20:f6:54:a5:91:a6:c9:8f:62:09:
cc:30:a9:fe:c5:37:ad:51:40:0b:9b:22:66:f6:1d:8d:ae:0a:
6d:d7:77:e1:fc:4d:37:cb:78:4b:24:b1:57:6d:ac:c9:5a:9c:
50:0d:7a:9e:78:3f:43:5b:c1:33:92:44:7b:06:7e:43:03:96:
bb:bf:08:24:8a:d0:d5:a4:13:9f:df:fd:b1:e4:13:ee:12:ef:
c7:04:7b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net