Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e302e302f32322d3234203d3e20323036323634.roa
File: 33312e3232302e302e302f32322d3234203d3e20323036323634.roa (raw, json)
Hash identifier: 1nvx5QK+VSwMfaJV7NC7MkfOJnTV2qNzNXtImYR6y70=
Subject key identifier: B2:A0:14:D5:50:CD:EE:42:8E:D0:72:E3:3D:EF:0B:B5:D0:71:A0:CC
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 669B4A69C5309D12FD2D4A075FCFB63DD97D95AF
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e302e302f32322d3234203d3e20323036323634.roa
Signing time: Sat 22 Oct 2022 04:34:29 +0000
ROA not before: Sat 22 Oct 2022 04:29:29 +0000
ROA not after: Sat 21 Oct 2023 04:34:29 +0000
asID: 206264
IP address blocks: 31.220.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:9b:4a:69:c5:30:9d:12:fd:2d:4a:07:5f:cf:b6:3d:d9:7d:95:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:29 2022 GMT
Not After : Oct 21 04:34:29 2023 GMT
Subject: CN=B2A014D550CDEE428ED072E33DEF0BB5D071A0CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:00:6d:17:a0:d1:ff:8f:44:54:4a:de:58:47:
02:b8:23:09:34:9d:ea:1b:4e:2c:e3:61:3d:01:17:
db:e2:dd:92:48:bb:be:de:5c:b9:03:8b:af:e4:e6:
72:1a:bb:28:41:8a:17:34:fe:81:59:1b:c4:e5:ad:
ed:ba:b3:7c:d7:74:f3:e3:54:87:be:a6:66:64:68:
dd:52:bd:5a:09:eb:39:8d:92:9c:65:01:9d:c7:2b:
2b:3b:4a:1f:4a:3f:fd:25:d6:02:3a:a4:29:b5:d1:
bb:75:9f:60:50:cd:8a:a4:a2:07:df:28:c1:9a:94:
2e:d8:79:7a:94:5c:c7:4c:0e:23:66:10:00:2a:fd:
ea:f1:fb:73:41:cd:78:1c:cc:89:46:ec:52:8d:4c:
2f:60:be:21:90:be:bc:ff:46:47:a2:6c:6d:3a:bd:
5d:37:32:ef:87:db:98:ab:fe:c8:36:47:dc:9d:ca:
1c:52:e8:b5:4e:1e:59:d5:6a:cc:db:c1:8a:af:42:
b9:1d:73:54:ff:9f:44:d5:33:d6:bc:60:31:6c:69:
c4:44:03:cc:de:d6:bb:e0:83:f1:b0:00:e4:80:4a:
05:be:09:65:75:f8:d8:20:a0:1a:78:1b:5a:d9:37:
d2:fd:de:c0:c8:50:8d:9a:1a:66:14:f2:aa:4d:6e:
a8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A0:14:D5:50:CD:EE:42:8E:D0:72:E3:3D:EF:0B:B5:D0:71:A0:CC
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e302e302f32322d3234203d3e20323036323634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.0.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:bb:75:72:12:52:2e:aa:94:b0:c7:35:4e:09:c0:ad:02:db:
61:62:7d:bd:7a:2d:5e:7a:a5:54:6b:ab:68:ea:13:1c:b3:84:
4d:a8:81:04:f8:55:ec:65:c8:66:30:91:ac:4e:bb:08:ab:70:
b0:ea:ce:09:7a:42:b1:26:30:06:79:f8:11:2f:3f:ea:0f:b8:
82:79:da:be:de:f4:05:41:0a:0c:88:aa:cb:d4:a5:f4:66:a1:
24:98:81:7f:a1:f9:93:20:c1:16:8a:95:a2:4d:17:fc:eb:c9:
db:6e:cf:4e:1a:fb:08:ae:7f:a9:ac:e8:3e:1d:6e:c7:57:23:
e6:fb:58:14:bd:ac:ca:71:c1:15:42:fc:fc:b6:d2:d5:1b:9b:
a4:65:72:3d:fe:50:29:94:09:ae:ed:b6:22:76:53:dd:ed:83:
22:65:7a:ce:3c:f2:46:d4:f7:75:77:88:ee:27:de:57:6c:69:
07:89:64:92:bc:b5:32:f2:15:3b:15:f2:22:ec:eb:70:96:5c:
66:b0:47:bd:6b:78:9f:ef:a9:47:1b:7b:f5:27:ae:e7:11:bc:
d2:22:2d:56:34:93:5e:dd:74:56:65:5d:cf:9b:e0:6e:1d:03:
28:50:55:6d:4d:a4:42:70:fc:e7:d2:ce:3a:6f:f0:7d:94:38:
b9:1c:92:f8
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUZptKacUwnRL9LUoHX8+2Pdl9la8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMjEwMjIwNDI5MjlaFw0yMzEwMjEwNDM0MjlaMDMxMTAvBgNV
BAMTKEIyQTAxNEQ1NTBDREVFNDI4RUQwNzJFMzNERUYwQkI1RDA3MUEwQ0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4AG0XoNH/j0RUSt5YRwK4Iwk0
neobTizjYT0BF9vi3ZJIu77eXLkDi6/k5nIauyhBihc0/oFZG8Tlre26s3zXdPPj
VIe+pmZkaN1SvVoJ6zmNkpxlAZ3HKys7Sh9KP/0l1gI6pCm10bt1n2BQzYqkogff
KMGalC7YeXqUXMdMDiNmEAAq/erx+3NBzXgczIlG7FKNTC9gviGQvrz/RkeibG06
vV03Mu+H25ir/sg2R9ydyhxS6LVOHlnVaszbwYqvQrkdc1T/n0TVM9a8YDFsacRE
A8ze1rvgg/GwAOSASgW+CWV1+NggoBp4G1rZN9L93sDIUI2aGmYU8qpNbqgVAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUsqAU1VDN7kKO0HLjPe8LtdBxoMwwHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zMzMxMmUzMjMyMzAyZTMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMDM2
MzIzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCH9wAMA0GCSqGSIb3DQEBCwUAA4IBAQA/u3VyElIu
qpSwxzVOCcCtAtthYn29ei1eeqVUa6to6hMcs4RNqIEE+FXsZchmMJGsTrsIq3Cw
6s4JekKxJjAGefgRLz/qD7iCedq+3vQFQQoMiKrL1KX0ZqEkmIF/ofmTIMEWipWi
TRf868nbbs9OGvsIrn+prOg+HW7HVyPm+1gUvazKccEVQvz8ttLVG5ukZXI9/lAp
lAmu7bYidlPd7YMiZXrOPPJG1Pd1d4juJ95XbGkHiWSSvLUy8hU7FfIi7Otwllxm
sEe9a3if76lHG3v1J67nEbzSIi1WNJNe3XRWZV3Pm+BuHQMoUFVtTaRCcPzn0s46
b/B9lDi5HJL4
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net