Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34332e302f32342d3234203d3e203432373038.roa
File: 33312e3232302e34332e302f32342d3234203d3e203432373038.roa (raw, json)
Hash identifier: AgaqRMRRyuskiquEcnUaZDloIZ433tH9yjCjkdYD2wo=
Subject key identifier: 77:6F:97:04:DF:F5:B4:BF:0C:12:EC:E3:ED:65:AE:3C:80:34:E8:AA
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 5B9180A2ECECE1BC9CD2134BEA1162F9F9515F27
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34332e302f32342d3234203d3e203432373038.roa
Signing time: Sat 22 Oct 2022 04:34:22 +0000
ROA not before: Sat 22 Oct 2022 04:29:22 +0000
ROA not after: Sat 21 Oct 2023 04:34:22 +0000
asID: 42708
IP address blocks: 31.220.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:91:80:a2:ec:ec:e1:bc:9c:d2:13:4b:ea:11:62:f9:f9:51:5f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:22 2022 GMT
Not After : Oct 21 04:34:22 2023 GMT
Subject: CN=776F9704DFF5B4BF0C12ECE3ED65AE3C8034E8AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d5:b1:71:26:3e:a9:d9:dc:63:77:2c:09:ab:
7d:48:3c:2f:d3:25:fb:27:59:73:03:29:a1:82:d7:
16:11:68:40:17:3f:fb:e5:81:bc:c7:2d:fc:f9:27:
ce:a8:3c:ff:e9:bb:90:55:0a:4c:57:77:9b:36:1d:
05:1e:03:ba:31:24:82:34:1e:ce:85:80:01:de:1d:
87:7a:31:53:03:cd:80:19:3c:01:fd:f4:2a:4b:a6:
cc:2e:e8:af:9e:fa:20:ce:57:92:dd:f5:08:ba:7f:
5e:7b:2c:77:fb:2b:32:c2:fc:12:0c:f4:bb:d1:7c:
69:e3:8d:2d:5b:58:74:b7:bd:34:81:b2:0d:71:06:
06:1d:03:58:f3:96:10:f9:13:81:dd:71:4b:df:ca:
40:e5:48:64:41:30:7b:07:43:35:31:36:1e:7a:4c:
16:77:59:1c:7c:b0:db:95:f8:a5:06:97:dd:01:70:
c0:54:4e:02:4a:bc:a5:d0:9e:17:d1:dd:5b:8a:43:
e2:6f:40:21:ab:60:00:a2:45:10:04:c3:45:e2:3d:
6a:47:72:84:0b:8e:26:7f:9f:b2:6f:a5:92:b4:25:
a9:03:c7:35:bf:6f:25:e6:93:3a:24:af:84:d9:b8:
d3:c5:ec:ab:d2:86:cb:52:17:39:9c:5f:35:3b:08:
88:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6F:97:04:DF:F5:B4:BF:0C:12:EC:E3:ED:65:AE:3C:80:34:E8:AA
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34332e302f32342d3234203d3e203432373038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.43.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bf:f7:e7:b1:16:1a:cb:93:40:ca:ce:a4:18:a3:e4:2a:59:
29:38:db:2b:08:7b:1e:2e:4d:15:3b:34:3d:6c:76:e2:bd:e5:
48:ab:54:df:e0:53:0b:95:75:1f:08:89:f9:28:2d:cf:e5:36:
ed:1e:a5:1d:a9:61:71:6a:8f:37:0d:02:36:04:0f:ab:f3:c8:
63:bd:cd:e3:0a:eb:57:46:f5:4a:2e:73:dd:37:e2:b8:9a:2a:
03:d0:00:81:ea:ee:7f:50:ae:b7:fd:cd:71:08:5f:d2:df:d6:
4d:95:c8:81:61:89:b2:00:5b:37:6e:23:51:76:b8:4c:5b:68:
54:b7:ca:1b:89:9c:0b:24:fd:19:b8:44:ce:ad:6f:c5:57:d9:
f3:51:bd:42:d0:91:d4:e9:df:3b:f6:ed:24:1b:9c:e9:ab:38:
54:c3:f2:44:a7:a7:e7:74:d4:4d:74:d4:0f:82:ad:ec:44:20:
97:70:4f:7d:d4:e2:d2:6b:fe:44:51:75:89:58:d8:55:bd:99:
09:41:87:c1:7d:04:35:b6:95:8f:b0:2d:7e:8e:10:b3:9b:8a:
2a:45:d4:b6:8c:66:48:58:db:b3:c8:ac:9a:48:ae:52:c2:ae:
e6:06:71:8d:fa:e2:66:22:c4:27:81:67:cc:14:73:e6:94:59:
77:2f:28:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net