Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3138372e37332e302f32342d3234203d3e20333939373436.roa
File: 33312e3138372e37332e302f32342d3234203d3e20333939373436.roa (raw, json)
Hash identifier: SUAPpymIcMvoQgwsvD2rrpRnvt7h+Xb/87sGlJj7xac=
Subject key identifier: 55:08:E6:BB:BC:57:68:D2:FE:83:39:56:7A:2E:7D:14:52:40:5A:02
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 5CF7F344529945CAD2B164C72D1697796CA802EF
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3138372e37332e302f32342d3234203d3e20333939373436.roa
Signing time: Wed 20 Oct 2021 11:42:50 +0000
ROA not before: Wed 20 Oct 2021 11:37:50 +0000
ROA not after: Wed 19 Oct 2022 11:42:50 +0000
asID: 399746
IP address blocks: 31.187.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:f7:f3:44:52:99:45:ca:d2:b1:64:c7:2d:16:97:79:6c:a8:02:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 20 11:37:50 2021 GMT
Not After : Oct 19 11:42:50 2022 GMT
Subject: CN=3082010A0282010100A10381267B94AB2D11AFD8E1B816D04318935CFDC28945E194995DFBF462FF25548AEAE71B6EAFB9EA73857353F64BE5A9469A210056380718C7D99176D00FEF7FE296CAA9E89940A4908AFDAAD5E410F9EE1C6FB84520BF038ADA405B3BA4C8241D616217B990E2737E2BC9A3E76FAA368DCFF9B8CEF3CFCF4A20A9E6CF3703D28C71DBE539FD8FAD97635355CDC7352C6A0917FA4DB441A2455A3DFCC2AC1C5F072E1E53D75F5EF2043B6F686A89D3AD762AF6E74316E0CDC3EA67AF117C81DB9F161D04EB8CEC3ABE32C3481919881A5F809A7C3D3FFE56CB4B45FAB929A7C82ADAC0137AE4644271EEE814E9B3934649B308C8205F9F3D30DE37ABE1E9A30203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:03:81:26:7b:94:ab:2d:11:af:d8:e1:b8:16:
d0:43:18:93:5c:fd:c2:89:45:e1:94:99:5d:fb:f4:
62:ff:25:54:8a:ea:e7:1b:6e:af:b9:ea:73:85:73:
53:f6:4b:e5:a9:46:9a:21:00:56:38:07:18:c7:d9:
91:76:d0:0f:ef:7f:e2:96:ca:a9:e8:99:40:a4:90:
8a:fd:aa:d5:e4:10:f9:ee:1c:6f:b8:45:20:bf:03:
8a:da:40:5b:3b:a4:c8:24:1d:61:62:17:b9:90:e2:
73:7e:2b:c9:a3:e7:6f:aa:36:8d:cf:f9:b8:ce:f3:
cf:cf:4a:20:a9:e6:cf:37:03:d2:8c:71:db:e5:39:
fd:8f:ad:97:63:53:55:cd:c7:35:2c:6a:09:17:fa:
4d:b4:41:a2:45:5a:3d:fc:c2:ac:1c:5f:07:2e:1e:
53:d7:5f:5e:f2:04:3b:6f:68:6a:89:d3:ad:76:2a:
f6:e7:43:16:e0:cd:c3:ea:67:af:11:7c:81:db:9f:
16:1d:04:eb:8c:ec:3a:be:32:c3:48:19:19:88:1a:
5f:80:9a:7c:3d:3f:fe:56:cb:4b:45:fa:b9:29:a7:
c8:2a:da:c0:13:7a:e4:64:42:71:ee:e8:14:e9:b3:
93:46:49:b3:08:c8:20:5f:9f:3d:30:de:37:ab:e1:
e9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:08:E6:BB:BC:57:68:D2:FE:83:39:56:7A:2E:7D:14:52:40:5A:02
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3138372e37332e302f32342d3234203d3e20333939373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.73.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:c1:5a:06:ab:25:8b:d1:14:9b:b7:45:7c:2b:5e:82:93:58:
0e:48:86:05:ed:d2:ba:96:a9:4d:2d:2e:fd:17:bb:76:28:2b:
a1:f1:43:5a:6e:10:fe:ad:56:5b:87:81:20:44:39:57:e8:1c:
5f:f0:04:92:fc:35:84:b4:0e:d8:e0:0d:6e:98:50:87:ab:07:
e2:c0:47:c2:30:13:da:2e:d9:3c:de:ca:62:06:2a:5a:74:c4:
c3:6b:15:4d:71:ac:bb:2d:e0:bc:71:4e:b8:05:dc:ba:4c:a5:
4c:cf:d0:5d:3f:82:f8:04:f8:97:55:df:b8:29:7e:97:8c:d4:
47:b3:cb:82:f8:a1:cb:49:67:6d:5f:d3:d3:53:3d:37:3d:11:
40:73:73:d8:83:a1:e0:27:17:c5:ba:e4:a2:93:be:e9:44:f3:
85:b7:5e:89:55:cb:42:50:f5:94:41:97:ac:c7:2f:d0:a3:4c:
f6:4b:75:56:19:f8:a5:a4:87:c3:04:aa:40:8a:d2:4b:35:00:
21:fe:8c:6f:69:55:9e:c2:e7:9b:54:ed:2b:bb:56:b8:65:c7:
ab:d1:d1:d3:ba:56:bb:f2:3f:b4:d2:ba:2b:78:92:33:9d:b3:
6c:bb:8e:ba:4a:3d:29:6a:41:4b:bb:fd:c0:32:07:88:fc:52:
cc:3f:1c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net