Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3138372e36362e302f32342d3234203d3e2030.roa
File: 33312e3138372e36362e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: 0l4jYmRSQWBqTQnqmfF4Fl4dOr+dUzkvIuxvfWgBkdY=
Subject key identifier: E7:52:77:F1:FE:2A:C4:98:C9:01:E6:02:00:3C:EC:53:29:4E:4F:CD
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 512F44B15BB609980342BF4DC7434744A31A9AB2
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3138372e36362e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 17:52:12 +0000
ROA not before: Fri 03 Mar 2023 17:47:12 +0000
ROA not after: Fri 01 Mar 2024 17:52:12 +0000
asID: 0
IP address blocks: 31.187.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:2f:44:b1:5b:b6:09:98:03:42:bf:4d:c7:43:47:44:a3:1a:9a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Mar 3 17:47:12 2023 GMT
Not After : Mar 1 17:52:12 2024 GMT
Subject: CN=E75277F1FE2AC498C901E602003CEC53294E4FCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a6:42:ee:09:05:75:c8:8c:16:c8:89:69:a8:
ad:d7:74:94:fb:e2:f6:e6:2a:41:80:32:5a:bd:8a:
f1:b5:43:e4:5c:7f:17:15:f7:83:c5:8f:b8:76:c4:
f7:4f:30:85:99:51:2d:ec:5f:f8:90:53:de:53:f5:
ad:a9:dc:1d:e4:4d:14:11:d7:85:af:c2:f2:5e:2d:
92:57:8b:ac:55:f1:1a:99:d9:3d:e4:98:e4:24:bc:
ca:79:bf:80:65:4f:66:63:e1:b5:61:3f:3b:32:99:
6d:f3:f9:8c:7d:a1:c9:6d:d2:ab:e5:90:0c:d6:68:
b2:fb:60:de:92:e2:4b:d2:81:1d:67:1e:a2:fa:d1:
d3:fa:27:b6:58:36:22:74:c0:f4:64:c5:33:8e:2e:
9e:dd:15:aa:d8:15:c5:fc:28:58:7b:04:3e:2d:60:
78:44:db:b3:4a:b7:90:7c:0f:90:90:1f:8e:fc:f4:
76:9e:06:19:b9:f9:fa:d9:27:9f:91:05:e2:b3:cc:
ca:0e:88:2b:73:5c:55:66:6d:99:cf:5b:06:70:7e:
b6:28:cd:9b:af:61:d0:14:9f:f4:b2:f6:5c:ef:b0:
09:9e:ea:71:78:93:14:21:c6:e6:48:b3:0a:bf:f1:
fa:b3:d9:ae:e7:3c:42:0b:6d:01:7c:25:33:9b:ff:
d6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:52:77:F1:FE:2A:C4:98:C9:01:E6:02:00:3C:EC:53:29:4E:4F:CD
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3138372e36362e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.66.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:ae:77:a1:fc:97:57:b8:a9:e4:fb:22:96:0c:26:88:26:16:
80:20:1b:9b:8c:88:b6:02:85:ab:a2:08:bf:3a:b1:96:ed:e3:
cb:a6:5b:a3:a8:07:d5:6c:8e:9f:4f:f5:28:ee:be:a9:b9:a4:
db:31:f1:cb:a7:47:27:98:57:14:f6:6d:4c:05:a2:a7:0a:66:
bc:e2:40:e1:e3:04:34:b3:6f:5b:53:a5:88:2e:2f:d9:98:b7:
8f:87:93:5a:a6:93:04:43:81:48:2a:aa:91:21:6d:0d:c2:43:
38:e8:e2:02:72:9a:82:97:1a:91:d4:fa:06:16:fc:50:75:11:
c1:6b:e6:a6:b7:bf:fd:94:31:d8:86:f4:3a:cb:b5:a4:36:67:
71:d9:0d:b4:4a:86:43:02:05:60:85:25:01:6e:2d:99:99:8d:
1c:dc:79:b5:bb:a3:08:8c:c1:ce:65:2c:1e:0d:79:8f:f6:5a:
a0:7c:4c:3d:88:9b:ac:39:d1:ad:c2:b6:da:31:33:24:6a:1d:
b3:ac:94:cb:91:2f:04:b8:f4:6b:73:b3:73:91:e4:5a:60:de:
56:18:bc:53:e3:a5:39:32:59:09:d4:c4:42:6a:3f:37:c6:fb:
2f:33:b5:1e:ec:46:de:52:ec:a4:5a:da:12:7c:cb:47:b0:de:
0f:1d:bd:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net