Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34362e302f32332d3233203d3e20323031333431.roa
File: 33312e3232302e34362e302f32332d3233203d3e20323031333431.roa (raw, json)
Hash identifier: 7z40jJ3IhTvnRh31a4n2ACT+KmeSm2GWspjMn0APZuA=
Subject key identifier: 58:21:B9:CD:B1:A4:55:E8:86:45:71:7F:4E:DB:9C:1D:33:6B:A3:04
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 7FCDA41FAD840A7094466C81327ABD77B56BB0D0
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34362e302f32332d3233203d3e20323031333431.roa
Signing time: Sat 22 Oct 2022 04:34:21 +0000
ROA not before: Sat 22 Oct 2022 04:29:21 +0000
ROA not after: Sat 21 Oct 2023 04:34:21 +0000
asID: 201341
IP address blocks: 31.220.46.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:cd:a4:1f:ad:84:0a:70:94:46:6c:81:32:7a:bd:77:b5:6b:b0:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:21 2022 GMT
Not After : Oct 21 04:34:21 2023 GMT
Subject: CN=5821B9CDB1A455E88645717F4EDB9C1D336BA304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e1:cd:85:46:2b:ad:92:93:75:15:c2:1d:78:
25:74:c2:21:d8:44:de:17:0a:4e:28:ee:cb:10:01:
9d:3b:ce:c0:1b:0d:7d:5a:b0:5e:ec:b8:fd:4e:12:
10:86:30:9a:9f:b3:96:1e:7d:e9:03:01:6e:f4:a4:
82:07:cc:d5:44:2e:67:ec:b5:ec:de:7f:65:54:ef:
2c:4f:ba:a3:92:c1:c6:0f:97:74:63:a8:f9:ee:f7:
a1:e9:fe:4d:5b:11:19:47:81:30:f9:1f:0f:43:e2:
60:84:3c:41:d7:fd:68:2c:ae:fd:5f:c8:c2:67:8e:
44:08:d5:83:8b:1f:5f:df:76:e5:62:d3:7d:d7:81:
20:25:92:44:5d:91:d9:60:41:eb:32:61:02:e9:c3:
3a:d2:25:06:ce:bb:cf:0c:ee:24:d8:15:a6:00:b7:
ce:79:6c:02:0b:0a:c7:56:a0:8a:4d:94:9b:7c:0d:
cd:dd:95:81:9b:23:3a:65:d4:75:47:8d:76:d1:97:
dd:27:1e:cf:11:0c:de:e7:96:16:07:b6:43:cf:6a:
71:51:9f:30:42:49:3f:b6:aa:af:fa:69:3c:f0:7d:
a4:47:df:f1:2c:e9:94:4a:cd:29:55:4e:56:ba:35:
49:07:de:a3:44:d3:ba:6b:2c:ce:49:9d:9f:ac:f9:
58:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:21:B9:CD:B1:A4:55:E8:86:45:71:7F:4E:DB:9C:1D:33:6B:A3:04
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34362e302f32332d3233203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.46.0/23
Signature Algorithm: sha256WithRSAEncryption
92:76:9b:56:3b:cb:66:f0:e4:30:9e:f1:d7:01:d4:54:67:da:
3f:83:0d:f5:fa:8b:f8:8c:2b:e9:a5:96:71:e4:c2:52:bb:ea:
bb:b9:f8:d5:a7:b7:2b:84:47:98:10:bd:4b:2f:f5:29:9c:bf:
47:bc:76:d4:6e:53:c1:d0:2e:3b:c0:f7:c5:cc:1e:0e:40:12:
4e:e5:8e:cd:ae:27:e0:09:86:d0:2e:ac:d7:d0:e2:98:45:34:
f1:54:94:0c:49:30:f9:ec:be:4c:8b:dc:d9:b3:fa:99:ae:3b:
3e:5f:df:a0:41:69:74:90:de:e5:fd:69:5b:88:81:16:c8:b7:
37:9e:0e:05:32:18:9b:20:ac:d1:e8:c2:69:f7:d6:ce:c3:33:
72:29:11:4e:f4:b2:ed:66:1d:cd:11:44:79:09:69:93:2c:5f:
c6:e3:a6:05:32:fa:09:a7:68:36:98:d9:e5:bd:fc:55:da:94:
6f:06:51:a5:13:7a:20:81:b0:9b:71:6d:ab:9a:cb:e3:21:32:
7a:23:4b:89:64:a0:62:43:c3:89:31:53:66:3e:d6:65:ee:ba:
08:e8:01:21:06:2a:8a:80:11:4d:72:0d:3f:a5:5c:5c:c3:97:
fb:3f:e4:ad:7b:f5:5a:26:6c:42:80:41:c8:f9:3b:1b:13:6a:
52:5e:6f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net