Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3231372e37362e34382e302f32302d3332203d3e203531313637.roa
File: 3231372e37362e34382e302f32302d3332203d3e203531313637.roa (raw, json)
Hash identifier: 1Obu8N4KFkTTtbgBhVhGjsHjI6kgxlSnnE6WzX2rdmE=
Subject key identifier: DD:0C:CD:AB:3A:72:97:70:68:1D:B2:9B:49:09:6D:5B:26:7A:9F:B3
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 5F4313B6201F42214061C16CF2E8AC99B2DC1727
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3231372e37362e34382e302f32302d3332203d3e203531313637.roa
Signing time: Tue 22 Nov 2022 11:21:09 +0000
ROA not before: Tue 22 Nov 2022 11:16:09 +0000
ROA not after: Tue 21 Nov 2023 11:21:09 +0000
asID: 51167
IP address blocks: 217.76.48.0/20 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:43:13:b6:20:1f:42:21:40:61:c1:6c:f2:e8:ac:99:b2:dc:17:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 22 11:16:09 2022 GMT
Not After : Nov 21 11:21:09 2023 GMT
Subject: CN=DD0CCDAB3A729770681DB29B49096D5B267A9FB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:20:41:fd:a3:e2:4b:28:7f:1c:f2:57:7b:c0:
43:f5:59:b8:9c:fc:69:cc:24:f5:7e:4f:b9:cf:78:
97:5c:09:c0:bd:00:7d:0c:26:51:2a:53:f5:71:42:
b2:bf:58:04:25:1d:6b:3c:b8:4c:ae:8a:ce:70:c3:
16:8f:28:61:2e:5e:d1:7a:fa:03:29:8b:4c:96:c3:
4b:68:93:09:54:28:5e:2c:41:36:d7:e9:45:d2:51:
9e:16:5e:eb:56:8b:2e:58:23:e4:f5:19:3a:2d:f6:
f4:76:68:51:57:01:f8:3c:80:1b:fe:a9:80:79:58:
d7:23:27:a4:19:64:03:53:14:19:df:af:46:14:6b:
8f:bc:d4:0e:45:81:be:00:49:c7:c8:dc:ee:a2:c9:
55:69:e1:46:86:55:d2:e3:a1:36:59:2c:04:57:ae:
b9:32:ff:18:26:31:1e:ee:4e:8a:cc:bc:45:ad:7b:
67:fd:a3:f1:e5:e3:b0:9b:8e:8b:ac:53:84:97:06:
9d:f9:04:a9:c3:d4:13:5c:8b:93:58:a5:69:f8:ec:
4e:4e:28:26:f3:00:13:71:91:f1:ea:98:8a:89:62:
d4:c2:c9:83:ea:1b:df:96:b1:1e:a2:b4:88:07:eb:
ad:a1:85:89:32:f7:97:ac:ce:a4:1b:f6:b8:f3:90:
cb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0C:CD:AB:3A:72:97:70:68:1D:B2:9B:49:09:6D:5B:26:7A:9F:B3
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3231372e37362e34382e302f32302d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.76.48.0/20
Signature Algorithm: sha256WithRSAEncryption
17:ed:ce:3e:c3:fb:c3:3f:81:1c:0c:86:01:07:f1:da:56:d3:
c3:f4:39:ec:60:e2:7d:77:47:a9:7a:37:2a:ea:84:e5:ca:68:
1a:4a:d3:c6:d4:86:24:cc:93:f6:fc:3c:cb:fd:c3:7f:84:f6:
8c:ac:f6:4a:e7:6d:5b:b3:e0:88:d3:81:c5:a4:c3:93:8f:06:
4a:ee:ab:53:ed:70:c2:37:d8:3b:f3:69:21:3a:65:14:ea:b0:
3c:e6:8d:a0:79:25:f6:e6:45:30:7f:23:f5:b6:42:c4:b1:94:
50:79:cf:40:70:77:19:15:9f:cb:38:c3:4a:6f:14:c5:58:7a:
8e:6c:01:e7:71:47:2d:46:21:fe:25:47:79:ec:a6:bf:ff:8f:
c3:1a:61:7a:bf:d4:25:fc:f3:85:ba:d3:bd:86:b4:4d:d7:4d:
e1:75:be:c8:36:3f:0b:82:6c:e8:6a:e9:13:78:80:53:cd:80:
82:5f:32:8b:06:80:36:95:b6:d0:a3:6f:e7:9d:18:24:d6:f7:
ff:b6:7a:01:df:9f:00:0c:da:4a:bc:e6:51:32:9f:2b:4b:a9:
80:58:49:50:ef:f2:bd:41:39:70:9a:d2:a0:28:13:15:2d:59:
8d:c6:59:bb:0f:b1:c3:2c:1b:fb:d1:73:5c:8d:61:27:9f:81:
eb:34:d5:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net