Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3231372e32312e37362e302f32322d3234203d3e203437353833.roa
File: 3231372e32312e37362e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: uIYsXc9rGMd6UH5TJcoqJMQ6SROhsnuQ5UDQiQ2X8mo=
Subject key identifier: 28:0A:96:CD:79:7D:86:4D:96:FC:53:C7:CF:3C:46:8B:FC:D3:C9:B8
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 3801C71591D4455BE0B9AD5478995161FC26E788
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3231372e32312e37362e302f32322d3234203d3e203437353833.roa
Signing time: Sat 22 Oct 2022 04:34:14 +0000
ROA not before: Sat 22 Oct 2022 04:29:14 +0000
ROA not after: Sat 21 Oct 2023 04:34:14 +0000
asID: 47583
IP address blocks: 217.21.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:01:c7:15:91:d4:45:5b:e0:b9:ad:54:78:99:51:61:fc:26:e7:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:14 2022 GMT
Not After : Oct 21 04:34:14 2023 GMT
Subject: CN=280A96CD797D864D96FC53C7CF3C468BFCD3C9B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:77:32:9a:0c:97:3a:63:7d:4f:cf:4f:43:b1:
59:ce:a5:79:4c:b5:05:b6:0f:4e:e6:66:c5:29:78:
1b:0a:6a:29:7e:1f:50:02:df:1d:41:9f:5d:c3:66:
4b:90:01:10:63:7c:27:de:4b:cd:75:03:91:c6:e9:
71:75:b7:7c:12:a3:42:8d:c0:03:06:81:d7:93:69:
63:00:b6:48:e4:d6:bd:7d:83:93:28:79:33:88:c5:
7f:87:65:33:52:d1:e4:9c:9f:75:3b:bf:18:6a:9e:
e6:3b:18:33:e0:4b:5d:df:60:c4:d7:56:08:3a:8e:
dc:4b:aa:ef:12:21:66:ed:23:e5:49:87:84:42:41:
05:12:33:c1:03:e5:53:09:c4:ef:47:16:2d:ab:62:
7f:22:35:2c:a7:ba:48:06:fc:46:4d:fb:97:60:95:
62:7c:ba:90:9f:39:9d:62:b3:e7:03:e5:31:52:12:
b0:32:6d:fa:89:e5:44:ef:60:05:95:ca:c5:85:90:
69:f0:96:b8:63:9a:b4:3a:a5:9e:96:ec:fb:7c:45:
0c:ef:06:b9:e3:78:1b:df:0f:7b:4a:01:1a:e9:bc:
70:f4:f0:3d:73:3f:58:6f:de:42:b8:1b:b3:e3:e5:
65:79:ef:8d:02:87:48:75:c2:e6:e7:0b:c5:ce:59:
4b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0A:96:CD:79:7D:86:4D:96:FC:53:C7:CF:3C:46:8B:FC:D3:C9:B8
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3231372e32312e37362e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.21.76.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:09:71:8c:4c:90:e5:b5:86:bd:a0:35:30:8d:1e:8b:61:55:
56:7e:29:78:46:8b:d0:4a:62:58:9e:ff:52:61:45:2b:5c:04:
b0:51:91:a2:c9:db:28:8b:c8:fc:8f:37:0d:3e:07:cb:53:90:
c8:2d:48:d3:ef:72:59:10:05:98:91:35:c0:58:cb:41:13:a1:
84:8d:e8:41:7e:f7:d8:ab:6f:00:0e:01:1e:5a:c1:48:b6:2b:
7b:7e:ed:4b:ff:af:8c:ac:9c:ac:be:be:b2:f2:20:e3:10:63:
1d:a2:37:aa:ee:67:2d:d2:c0:9a:f8:63:31:37:94:06:58:36:
da:17:d4:c5:81:55:e9:75:30:1e:36:ff:ba:c5:ad:6e:2f:66:
8c:8c:13:f3:80:0b:20:3c:ea:05:71:6f:15:b4:b6:25:15:fa:
48:b6:fc:c7:54:2b:5b:e1:54:9c:78:93:d1:3c:95:cc:b8:67:
20:f1:0c:e9:8c:39:12:35:77:2e:f0:fb:5b:77:99:4c:b1:86:
55:a1:95:8e:11:1d:14:f2:ec:a5:72:75:75:d4:37:fd:e9:fd:
dd:01:1d:e3:21:af:d3:bb:45:67:d5:f7:fb:f9:f0:2e:4f:41:
f9:8c:62:d1:f5:c8:60:7c:e0:25:e5:d1:ca:55:80:ee:4a:91:
2f:34:b1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net