Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3139352e38382e38362e302f32342d3234203d3e20313336373837.roa
File: 3139352e38382e38362e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 9nklZdgpsSCfb7BpzogyXBa+H/FYWyGU1TqDsA5whC8=
Subject key identifier: 36:E0:05:6C:11:E1:B1:DE:18:D7:97:5D:DE:13:D5:0D:3B:29:55:DB
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 14DB3F07D2B134B61CDBEFC346A1A526947DFFD0
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3139352e38382e38362e302f32342d3234203d3e20313336373837.roa
Signing time: Mon 07 Nov 2022 10:58:42 +0000
ROA not before: Mon 07 Nov 2022 10:53:42 +0000
ROA not after: Mon 06 Nov 2023 10:58:42 +0000
asID: 136787
IP address blocks: 195.88.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:db:3f:07:d2:b1:34:b6:1c:db:ef:c3:46:a1:a5:26:94:7d:ff:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 7 10:53:42 2022 GMT
Not After : Nov 6 10:58:42 2023 GMT
Subject: CN=36E0056C11E1B1DE18D7975DDE13D50D3B2955DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:41:87:f7:2f:e1:6e:31:04:2a:34:64:e5:37:
7a:d2:ed:6c:d1:50:02:4c:d4:17:33:ce:21:a9:ac:
a3:b0:e7:5f:84:2f:3e:93:1b:14:c1:3d:e8:a9:db:
09:ce:21:9d:a0:39:59:e0:d6:ad:ae:33:0a:7d:0c:
fc:93:5e:49:8f:02:ef:e5:e5:1d:f4:d4:f2:c0:e0:
71:bb:79:e3:d1:fe:71:7c:02:f1:81:7c:a9:b4:0a:
f1:72:b8:92:0c:bb:65:b8:56:35:f8:3f:cc:4f:6d:
23:40:b4:93:2f:d7:a5:3f:96:7a:51:1f:af:b6:54:
85:9c:53:33:60:f1:32:12:cd:e7:96:8f:f4:03:fd:
cd:5d:c6:f9:1c:a9:19:23:f1:1b:90:11:8b:48:41:
e6:03:55:46:63:e2:eb:8b:df:b0:10:0a:9d:d6:40:
f7:8a:a4:13:ef:d7:4e:2d:b9:b5:9f:95:4b:05:f1:
a3:62:78:67:2f:5f:e5:02:67:5f:4f:3d:53:ca:fc:
23:69:03:ad:77:0f:19:49:d1:da:86:92:a0:47:ce:
7c:a8:09:eb:c6:4f:44:9f:cd:ad:4c:d3:85:7c:90:
8e:e3:9d:e6:a6:41:7e:da:c5:5d:2c:c9:cf:91:c0:
f4:83:09:a1:d7:a5:d1:01:2b:57:01:b6:10:af:5b:
5d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E0:05:6C:11:E1:B1:DE:18:D7:97:5D:DE:13:D5:0D:3B:29:55:DB
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3139352e38382e38362e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a6:a1:de:5c:d6:51:1d:87:b7:bd:9c:54:86:de:eb:23:f3:
88:9a:50:ae:04:65:9e:75:9a:0c:9f:10:af:89:d0:05:79:3e:
dd:c0:8a:31:d8:4a:db:62:49:6d:4f:de:e6:41:d6:64:9a:6f:
ac:3f:59:0e:6a:97:33:98:54:c0:85:9f:d6:af:9c:da:d6:4d:
84:36:20:46:f8:7b:90:51:04:b7:91:55:af:11:94:69:3f:67:
67:7b:2a:6b:45:bb:47:52:b8:6f:5a:69:91:b0:7c:c2:cf:9b:
bd:63:53:5f:ed:e0:9e:bd:f0:ca:0b:01:6f:3a:f9:04:ac:ca:
03:da:d1:1b:26:18:22:2a:85:bc:de:6b:6b:1b:60:d6:b9:9f:
94:64:67:1d:3a:95:46:61:fe:3e:65:fe:1f:58:6d:21:26:6c:
8d:ac:b1:c7:00:6a:57:7d:c7:d6:02:16:0e:57:ef:c5:e3:4f:
fc:42:6b:62:48:78:b4:00:c7:f1:ef:51:56:f1:62:eb:37:ad:
28:60:50:c9:2c:85:0e:d0:a8:b1:1e:20:83:01:5b:41:0e:13:
0b:9d:1b:7d:98:88:a2:a0:80:21:eb:d9:61:04:8e:ba:cb:d1:
84:17:36:ce:5f:88:89:f5:d2:84:a1:9d:42:e3:87:93:03:ed:
1c:a8:f3:16
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIUFNs/B9KxNLYc2+/DRqGlJpR9/9AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMjExMDcxMDUzNDJaFw0yMzExMDYxMDU4NDJaMDMxMTAvBgNV
BAMTKDM2RTAwNTZDMTFFMUIxREUxOEQ3OTc1RERFMTNENTBEM0IyOTU1REIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8QYf3L+FuMQQqNGTlN3rS7WzR
UAJM1BczziGprKOw51+ELz6TGxTBPeip2wnOIZ2gOVng1q2uMwp9DPyTXkmPAu/l
5R301PLA4HG7eePR/nF8AvGBfKm0CvFyuJIMu2W4VjX4P8xPbSNAtJMv16U/lnpR
H6+2VIWcUzNg8TISzeeWj/QD/c1dxvkcqRkj8RuQEYtIQeYDVUZj4uuL37AQCp3W
QPeKpBPv104tubWflUsF8aNieGcvX+UCZ19PPVPK/CNpA613DxlJ0dqGkqBHznyo
CevGT0Sfza1M04V8kI7jneamQX7axV0syc+RwPSDCaHXpdEBK1cBthCvW121AgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQUNuAFbBHhsd4Y15dd3hPVDTspVdswHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4Zs
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zMTM5MzUyZTM4MzgyZTM4MzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMz
MzYzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBADDWFYwDQYJKoZIhvcNAQELBQADggEBABqmod5c
1lEdh7e9nFSG3usj84iaUK4EZZ51mgyfEK+J0AV5Pt3AijHYSttiSW1P3uZB1mSa
b6w/WQ5qlzOYVMCFn9avnNrWTYQ2IEb4e5BRBLeRVa8RlGk/Z2d7KmtFu0dSuG9a
aZGwfMLPm71jU1/t4J698MoLAW86+QSsygPa0RsmGCIqhbzea2sbYNa5n5RkZx06
lUZh/j5l/h9YbSEmbI2ssccAald9x9YCFg5X78XjT/xCa2JIeLQAx/HvUVbxYus3
rShgUMkshQ7QqLEeIIMBW0EOEwudG32YiKKggCHr2WEEjrrL0YQXNs5fiIn10oSh
nULjh5MD7Ryo8xY=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net