Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e342e302f32342d3234203d3e203432373038.roa
File: 33312e3232302e342e302f32342d3234203d3e203432373038.roa (raw, json)
Hash identifier: k8fMWX9ixCOQ6b9+uRC2Fg6oONlrYIuMa9IrKBbeN10=
Subject key identifier: 1D:A5:C1:72:A4:B8:2A:16:9F:27:2B:02:7F:08:D6:75:B7:03:C2:05
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 40FAD662F609807C3B48824CA870F14960FCD906
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e342e302f32342d3234203d3e203432373038.roa
Signing time: Sat 22 Oct 2022 04:34:17 +0000
ROA not before: Sat 22 Oct 2022 04:29:17 +0000
ROA not after: Sat 21 Oct 2023 04:34:17 +0000
asID: 42708
IP address blocks: 31.220.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:fa:d6:62:f6:09:80:7c:3b:48:82:4c:a8:70:f1:49:60:fc:d9:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:17 2022 GMT
Not After : Oct 21 04:34:17 2023 GMT
Subject: CN=1DA5C172A4B82A169F272B027F08D675B703C205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:10:ac:07:7e:ee:19:ba:a9:7c:91:6d:68:
7c:96:ef:e2:ef:5a:6d:e3:c3:58:bf:fc:63:0b:93:
16:9c:f2:00:39:f1:5f:ea:09:08:71:fb:ec:d7:a9:
08:70:de:d3:1c:5c:c0:38:61:3f:6b:f8:f2:ad:1c:
7b:8d:fc:64:f2:bb:84:f3:5e:66:48:ab:f1:a2:36:
33:8c:7b:8c:01:ee:9c:dd:c3:f7:e1:df:e1:c8:38:
21:b7:e4:a7:67:b8:d3:a9:0e:ee:1d:92:96:6d:99:
1c:f5:68:84:49:b1:c9:d9:81:e6:ba:34:cb:18:2c:
42:62:d8:dd:b7:f1:4a:23:9d:51:69:e1:7b:55:3b:
be:17:d4:da:b1:fb:97:60:55:b4:52:f5:25:7c:6b:
68:0b:52:c6:eb:6f:12:a2:62:6f:47:9e:16:8e:91:
86:60:75:57:95:69:2f:c7:23:9e:7e:f4:bc:32:8d:
55:b5:a1:1e:fa:79:3e:1d:28:2c:c6:75:9a:d1:bb:
e1:ba:5d:87:e3:88:33:12:91:d0:60:cb:c3:45:22:
0d:7b:4b:36:e1:9d:34:d3:02:97:b4:80:81:5c:81:
60:42:f6:0a:76:a7:98:4e:ee:5a:bf:d1:84:6e:f2:
e2:12:7a:a9:26:36:e2:5b:7e:ae:27:35:c9:59:e9:
18:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A5:C1:72:A4:B8:2A:16:9F:27:2B:02:7F:08:D6:75:B7:03:C2:05
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e342e302f32342d3234203d3e203432373038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.4.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:9a:2a:cd:51:b2:51:c5:d0:45:77:37:4f:a1:44:5b:ee:48:
8a:e6:dc:cd:00:be:6b:c0:ac:fb:2c:df:7b:c6:15:ea:b1:c0:
42:93:2d:49:a2:4b:71:97:91:c4:39:b7:40:91:b6:12:83:1d:
30:80:e0:b0:c4:db:c3:99:76:ea:48:54:92:e5:ec:88:6d:c4:
3c:dc:4f:f0:f3:89:83:41:66:29:33:6e:63:30:51:46:c0:0f:
d3:18:40:c6:2a:59:2c:2e:a0:67:dd:72:ec:f6:7f:a8:e2:84:
ac:e5:ed:06:b4:6f:ff:01:30:53:a4:14:06:8e:d8:b5:1f:52:
6e:2b:0a:e9:12:f7:a0:bf:65:50:c7:a3:8f:19:4b:a9:cd:33:
87:10:27:3d:b3:5a:5f:df:4f:a5:07:46:97:74:10:fe:cf:b7:
29:64:74:2c:1e:d3:82:7a:40:f2:d2:14:e2:86:1f:e1:7b:5c:
2d:44:3a:cc:ba:08:e9:0d:ae:81:94:7f:b1:ec:f0:e6:31:53:
c6:04:5a:29:7d:c0:53:80:e5:a6:4b:b1:3a:df:f2:de:ab:22:
b7:3c:3f:1b:d2:ae:b0:29:d1:80:90:47:d1:69:fe:38:c1:37:
5a:7e:17:f1:9c:27:e8:02:c1:11:0c:34:ce:c1:ff:41:67:4c:
0c:e2:15:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net