Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e33302e302f32342d3234203d3e203633343733.roa
File: 33312e3232302e33302e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: uH40HZ1Bk0J7/JViymVZ1eH0QHkl7tWCL/GCsyZsz4I=
Subject key identifier: 4E:A4:38:51:BA:BA:0D:5D:3E:81:9A:6C:68:68:19:0F:0E:33:0C:65
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4D5183BD29B85208419B8637EB673940027D5201
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e33302e302f32342d3234203d3e203633343733.roa
Signing time: Sat 22 Oct 2022 04:34:14 +0000
ROA not before: Sat 22 Oct 2022 04:29:14 +0000
ROA not after: Sat 21 Oct 2023 04:34:14 +0000
asID: 63473
IP address blocks: 31.220.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:51:83:bd:29:b8:52:08:41:9b:86:37:eb:67:39:40:02:7d:52:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:14 2022 GMT
Not After : Oct 21 04:34:14 2023 GMT
Subject: CN=4EA43851BABA0D5D3E819A6C6868190F0E330C65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:99:ee:00:f9:7e:f7:80:0c:79:c8:8b:99:68:
c7:85:07:43:fa:4d:74:6e:1d:36:f8:03:d1:dc:86:
7f:b4:3b:42:03:1f:a6:ff:de:00:d7:42:a9:1a:69:
f3:9f:8c:06:f8:ab:f9:eb:9d:77:13:21:5e:eb:19:
6a:ca:84:cf:33:3c:e0:57:3d:9f:c2:5e:03:93:65:
c5:76:b7:99:20:05:b7:30:ae:55:b4:57:d5:32:df:
e5:60:d6:2c:4c:87:5f:83:ba:07:0a:f6:5c:5b:ba:
ea:4f:5e:ed:bd:a9:bb:7e:c0:d5:d5:3e:28:58:63:
d0:38:8a:a2:a7:72:62:38:c4:a5:ed:bb:1a:91:7c:
35:4b:11:65:c0:2e:6f:28:4f:91:db:4b:b0:12:f0:
56:99:bc:4a:be:d2:46:f6:d2:2b:9e:23:9a:09:73:
72:72:ff:e9:03:65:d0:09:7d:96:c3:02:e5:40:56:
4f:e6:1b:c4:28:40:e9:31:7b:c1:1d:94:6e:58:b9:
dc:c6:b5:83:e2:06:0f:42:5c:c4:25:a5:35:fd:56:
ca:28:39:0e:fa:33:da:e4:07:64:0a:61:d9:77:6f:
b2:34:03:5e:30:10:c5:65:fd:ca:7b:b5:da:dc:22:
56:a8:d2:cb:51:2d:2a:50:1d:e2:96:35:0e:2f:01:
ee:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A4:38:51:BA:BA:0D:5D:3E:81:9A:6C:68:68:19:0F:0E:33:0C:65
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e33302e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.30.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:90:b1:84:6e:3e:d4:f9:e6:f9:fb:f6:51:28:94:ee:d5:e8:
f1:89:41:7f:88:1b:58:63:99:3b:69:f0:8c:39:01:02:69:36:
60:0b:b2:d6:5c:73:30:e5:b0:d6:f0:c0:f8:af:a8:e0:e8:3c:
27:e4:78:23:ee:93:59:13:4e:88:44:02:b9:28:c4:01:ca:21:
0d:83:84:57:5b:ff:0a:9c:2c:63:9b:14:c8:42:14:1c:a9:a2:
ff:77:da:f8:b2:62:ff:0c:76:db:0c:b1:99:6c:7b:05:9e:ed:
cb:d3:61:54:7a:42:0d:2d:e4:39:07:f3:d2:b0:57:69:ab:b7:
6f:26:f6:eb:50:05:00:76:82:8d:8b:91:cf:80:49:33:fa:cb:
ca:11:8c:7e:11:5e:ac:9d:17:22:13:82:c0:ff:92:dd:8a:f0:
66:1a:02:61:ea:19:40:2d:74:e7:f5:43:8e:af:4f:5f:2e:cf:
10:10:d8:e0:e3:f2:dc:12:5c:ef:a9:53:03:a3:3c:b1:0f:62:
fb:2f:3a:fc:f0:9e:aa:e5:6d:8b:3c:36:f2:40:8e:1b:47:1a:
ca:fd:93:b4:ea:a0:2e:f9:01:ac:66:50:64:38:09:ae:77:e5:
d3:4c:a5:e0:f8:60:f7:3a:f4:3c:b4:e5:01:0c:50:16:83:d6:
e8:9f:e3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net