Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3231372e32312e37322e302f32322d3234203d3e203437353833.roa
File: 3231372e32312e37322e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 32iNSWyRqcjlRhM9ljKeLM0/gtzcNf+sW2Es7rV6OTw=
Subject key identifier: 09:F8:E8:1D:2D:2C:A8:A3:1C:9A:AD:58:24:3E:33:4E:F8:54:5A:58
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 090CBEA7958B3EE07B4CFA8C69D180D428DEC3D7
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3231372e32312e37322e302f32322d3234203d3e203437353833.roa
Signing time: Sat 22 Oct 2022 04:34:27 +0000
ROA not before: Sat 22 Oct 2022 04:29:27 +0000
ROA not after: Sat 21 Oct 2023 04:34:27 +0000
asID: 47583
IP address blocks: 217.21.72.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:0c:be:a7:95:8b:3e:e0:7b:4c:fa:8c:69:d1:80:d4:28:de:c3:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:27 2022 GMT
Not After : Oct 21 04:34:27 2023 GMT
Subject: CN=09F8E81D2D2CA8A31C9AAD58243E334EF8545A58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:10:9f:bf:d3:f3:46:b0:80:2f:fd:2a:bf:8e:
10:c2:5b:93:9e:b1:ab:00:af:9a:46:f9:e8:29:5b:
da:e7:89:b6:db:77:59:55:e3:6a:87:f7:7b:9e:7e:
ea:16:3e:8f:c2:2c:05:6d:26:8f:b3:3d:ff:5f:d9:
b3:27:cb:69:f6:0c:9b:0e:47:58:e3:b7:42:0d:54:
c8:e7:18:7f:d6:c2:67:b2:e1:e9:ad:59:72:f5:79:
24:c9:34:b6:c3:db:fe:92:5a:29:16:23:17:9b:e3:
16:ec:a9:c0:7f:48:f2:2f:92:a6:35:95:16:01:8b:
f2:83:c1:f4:e3:d4:1f:3b:24:bd:a1:77:f3:26:b4:
f6:7f:f2:e4:9d:a7:6a:3f:49:63:58:70:08:67:96:
18:57:f0:f1:6c:a6:b8:c7:88:3a:2a:b3:91:64:a2:
d7:e0:84:85:a4:eb:7f:52:a5:36:36:3c:79:4c:5a:
6f:5a:ff:45:6a:ee:d0:9a:9c:83:2b:9d:01:e1:44:
ff:43:8d:17:fb:32:bd:f4:80:b5:95:0a:46:9f:d0:
6c:fe:72:8f:18:37:c3:1c:88:8a:52:56:bc:57:b7:
c9:7f:a6:5f:76:5d:34:b4:23:28:f0:a3:c6:54:c5:
26:d7:c3:87:6c:77:07:eb:a2:8e:13:c6:34:03:d3:
5d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F8:E8:1D:2D:2C:A8:A3:1C:9A:AD:58:24:3E:33:4E:F8:54:5A:58
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3231372e32312e37322e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.21.72.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:4f:70:a1:90:c8:86:cf:5f:9d:b7:4a:ec:80:4d:8e:9b:76:
67:c1:71:58:91:13:a0:f4:c0:44:33:01:a4:2d:b2:30:2a:70:
93:37:ac:af:9c:14:5a:88:6a:ff:1f:c3:62:52:b2:e1:86:b4:
45:56:30:c7:49:49:63:26:55:fe:08:25:5a:e2:1b:c9:4e:22:
8b:93:aa:57:77:4c:31:c5:a9:c4:89:19:ca:19:fc:fa:2c:f4:
55:aa:0b:0c:94:48:72:62:56:8c:72:56:04:bf:7b:3e:84:aa:
d0:8d:00:87:68:4d:a5:ff:3c:cf:e4:4b:22:68:59:9b:46:8d:
7b:a4:53:3a:02:4c:d6:11:72:22:c1:4f:0c:03:85:9b:a2:5e:
48:a6:c6:41:c6:91:71:cc:48:e2:81:b1:0c:43:c5:cb:d4:d5:
7e:2b:fc:43:64:b3:fc:25:49:dd:1f:8b:f8:04:db:3d:8d:b7:
1e:0d:02:76:71:eb:0b:3f:fb:60:b0:47:d6:4b:8b:38:65:25:
66:4d:51:72:66:22:10:95:6a:54:c8:76:06:4b:9a:33:7f:81:
b5:ae:58:01:b8:95:33:45:3a:30:d3:52:b3:3c:21:57:a4:ed:
a0:e6:c9:55:19:5b:2a:ac:a6:ad:48:58:c8:96:36:f4:36:af:
e5:9d:8e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net