Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34332e302f32342d3234203d3e203633343733.roa
File: 33312e3232302e34332e302f32342d3234203d3e203633343733.roa (raw, json)
Hash identifier: q4Z/17KA6Fjb4rm+QxfOKOnoQ+4KZzcwg1tQXLqSkMY=
Subject key identifier: E7:97:E1:26:AF:C2:BC:28:2B:63:EE:0D:FB:FA:6F:19:EC:9E:0B:DE
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 2B39DB5A0B367820438197BA6F5616160A415A6C
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34332e302f32342d3234203d3e203633343733.roa
Signing time: Sat 22 Oct 2022 04:34:14 +0000
ROA not before: Sat 22 Oct 2022 04:29:14 +0000
ROA not after: Sat 21 Oct 2023 04:34:14 +0000
asID: 63473
IP address blocks: 31.220.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:39:db:5a:0b:36:78:20:43:81:97:ba:6f:56:16:16:0a:41:5a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:14 2022 GMT
Not After : Oct 21 04:34:14 2023 GMT
Subject: CN=E797E126AFC2BC282B63EE0DFBFA6F19EC9E0BDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:10:b5:4f:d5:a8:9e:a1:b5:d4:23:34:35:07:
7e:48:f9:ae:ef:8f:de:71:9e:3d:c8:35:ac:ea:45:
56:b8:90:19:99:e1:65:2c:fe:60:f5:80:9c:7c:c5:
f3:1b:88:74:f2:e9:2e:39:eb:cd:79:f7:4a:12:c7:
a5:08:64:20:68:6c:14:f2:1c:86:3b:11:1a:e5:59:
e2:1e:53:3c:66:42:cf:35:23:16:d2:ad:4a:24:b8:
da:93:d0:0d:0f:c0:52:5d:b5:d2:58:b5:b3:f0:6a:
8f:54:40:fa:c6:bb:81:bc:0c:12:bb:94:9a:9d:5f:
36:c1:e2:e0:07:db:41:4e:51:d6:eb:32:58:e2:e0:
74:68:ad:4c:cd:a1:4e:a8:ff:fe:ad:d3:8b:ab:3b:
9f:6a:3e:6a:02:92:d8:a4:c9:d0:34:27:92:3c:c6:
c1:fe:eb:4a:10:ed:eb:96:ab:2c:fd:d6:1c:f6:9f:
a8:b0:04:1f:97:43:b7:e3:03:c8:c3:24:b8:8a:94:
35:51:cc:76:90:63:c7:8c:6f:91:d1:2e:c5:eb:dd:
cf:ef:25:de:ca:1d:72:c7:18:45:8d:c2:8b:d0:f6:
b6:81:22:a6:65:5e:1f:af:4a:02:3d:a4:a9:46:2a:
c4:4f:0e:05:06:7e:aa:2c:60:bb:be:a0:3f:0f:d2:
46:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:97:E1:26:AF:C2:BC:28:2B:63:EE:0D:FB:FA:6F:19:EC:9E:0B:DE
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34332e302f32342d3234203d3e203633343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.43.0/24
Signature Algorithm: sha256WithRSAEncryption
90:5a:5c:1f:b5:d9:51:d2:56:2f:8b:b6:40:ce:17:62:5f:66:
7a:6d:5b:1f:78:11:54:1c:96:ea:b7:d7:e7:9e:ad:ce:c8:95:
17:1e:5e:b2:cc:93:1e:16:e3:ec:ac:50:e1:2e:17:35:f6:20:
64:04:07:8c:17:87:79:20:62:e0:3a:35:f7:0f:ab:8d:b1:76:
eb:16:13:e1:5c:d2:9a:95:08:58:11:af:d9:0d:46:87:7e:d2:
90:d1:70:94:23:52:d0:09:49:29:ab:ea:de:79:cf:10:45:66:
05:89:36:57:ed:43:0e:09:6c:3c:68:08:1d:43:53:bc:46:d0:
70:ea:7c:54:66:e9:a6:57:43:10:c9:bd:7f:9f:54:2d:72:02:
3f:d9:70:4a:4d:64:68:06:8e:3d:2f:31:bc:06:fd:da:ef:8b:
1e:e8:7f:a2:c5:85:5e:40:8a:12:da:49:d2:35:3e:d2:00:cb:
76:2f:d7:c8:16:10:d8:2a:19:06:a2:75:4e:d3:90:4f:00:77:
0a:06:d8:11:be:96:c1:7d:e4:d2:99:48:7b:7d:8a:e2:07:71:
3f:73:5c:45:12:0b:f4:9f:02:f0:8c:63:da:a8:e6:ed:47:07:
09:ad:cb:f8:4b:dc:4b:60:be:a8:0c:dc:4f:73:38:59:9d:a9:
6c:56:42:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net