Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e33302e302f32342d3234203d3e203432373038.roa
File: 33312e3232302e33302e302f32342d3234203d3e203432373038.roa (raw, json)
Hash identifier: kiz1fST2yRxUUUNT/GruQkvE95anMmabqrFWW0thfFA=
Subject key identifier: 24:4F:DD:C2:00:F9:6A:AF:C2:79:3D:25:9E:A0:16:92:1C:1C:9F:88
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 226A319F631A1587391BF4A394B43D3A3AD13669
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e33302e302f32342d3234203d3e203432373038.roa
Signing time: Sat 22 Oct 2022 04:34:24 +0000
ROA not before: Sat 22 Oct 2022 04:29:24 +0000
ROA not after: Sat 21 Oct 2023 04:34:24 +0000
asID: 42708
IP address blocks: 31.220.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:6a:31:9f:63:1a:15:87:39:1b:f4:a3:94:b4:3d:3a:3a:d1:36:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:24 2022 GMT
Not After : Oct 21 04:34:24 2023 GMT
Subject: CN=244FDDC200F96AAFC2793D259EA016921C1C9F88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:64:a6:05:d6:b1:ed:d6:6f:69:da:29:ec:73:
74:15:66:bd:1c:aa:56:49:f6:7c:aa:40:e9:2a:9b:
8a:da:92:e5:58:69:d8:dc:00:2a:a3:67:bb:38:a2:
d4:54:94:4f:c7:c1:e2:36:70:17:22:db:71:e1:43:
8c:00:86:40:77:0f:e0:9c:a9:72:8c:a1:76:67:d3:
5a:99:80:6a:57:27:1c:f5:14:ea:0b:8a:25:3b:4d:
1f:5c:d3:08:77:35:84:95:4b:a6:21:d4:ed:6c:f3:
ae:33:6a:a4:1d:9a:7e:25:c0:53:7b:a5:b1:4c:08:
db:c7:21:40:30:d6:92:d2:fb:11:55:11:db:d6:12:
01:ba:90:17:51:5b:74:d4:c6:83:ea:b5:4d:90:a3:
5c:0d:84:92:e1:50:6c:1a:e8:b0:a5:1a:06:3e:20:
0c:15:fb:02:81:ea:0d:78:76:2e:3f:bc:91:9f:e1:
69:29:a7:4b:39:e6:4a:48:eb:13:5c:5d:a8:e0:9c:
02:57:a0:8f:c4:56:aa:9d:6c:f5:3b:5e:77:70:5b:
90:8a:16:65:1b:95:37:0b:4f:9d:2c:5b:51:5d:94:
5e:16:27:46:6e:95:71:9e:83:59:f4:3f:69:44:bd:
b7:e8:8f:db:40:9b:f9:67:13:6d:65:bd:21:75:b6:
d5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:4F:DD:C2:00:F9:6A:AF:C2:79:3D:25:9E:A0:16:92:1C:1C:9F:88
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e33302e302f32342d3234203d3e203432373038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.30.0/24
Signature Algorithm: sha256WithRSAEncryption
68:c6:f8:0c:e6:07:52:2d:c8:5c:15:52:d8:33:8a:fe:87:25:
97:ee:18:64:71:07:44:91:a3:8d:42:22:c6:2c:fa:96:cb:07:
32:9c:f4:b6:86:82:b0:81:04:94:a5:3c:59:32:28:41:c8:c8:
db:b2:6c:6d:9a:64:b4:5d:4a:29:86:03:bf:9a:de:ed:77:de:
dd:64:92:dc:47:fd:22:d9:50:9c:7f:94:ea:d8:0a:e4:25:60:
95:37:f7:5c:b2:9c:eb:d4:a4:ef:a5:5a:1e:7c:2c:9d:7c:ea:
3b:eb:09:a1:ad:d7:2b:bc:da:2c:c4:ec:13:70:14:1a:e6:58:
4c:ba:14:63:b3:35:f9:89:3e:d5:4f:c3:cb:92:46:69:79:7b:
bb:6c:b0:4b:3a:35:ab:25:e9:7f:04:f7:17:50:a5:90:25:86:
ec:82:d6:19:10:16:6b:4f:f8:c1:e2:a1:be:c5:1b:52:fb:28:
4a:99:a9:1d:25:63:15:da:87:9d:b5:3d:08:42:8e:a7:5f:e4:
43:25:45:8b:34:52:fd:97:3f:73:11:2d:ce:02:ec:1f:35:0b:
6b:31:a7:ce:60:d6:89:1e:84:3f:12:eb:89:b1:a9:bb:40:92:
9d:07:e0:06:8e:e6:b9:d7:f6:42:e1:d7:c9:35:27:14:bc:3b:
33:0f:b0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net