Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e37322e302f32312d3332203d3e203531313637.roa
File: 33312e3232302e37322e302f32312d3332203d3e203531313637.roa (raw, json)
Hash identifier: g1Sgbgk+Y9SzXHVjjzvjYanF5x32hupebwex5kubgmc=
Subject key identifier: 14:48:28:78:B1:BA:91:9C:E0:BF:B5:E6:28:FF:93:08:44:32:74:C5
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4C9D97D20A2D18F045902CA7CD56EBDD5031004B
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e37322e302f32312d3332203d3e203531313637.roa
Signing time: Fri 17 Feb 2023 16:16:18 +0000
ROA not before: Fri 17 Feb 2023 16:11:18 +0000
ROA not after: Fri 16 Feb 2024 16:16:18 +0000
asID: 51167
IP address blocks: 31.220.72.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:9d:97:d2:0a:2d:18:f0:45:90:2c:a7:cd:56:eb:dd:50:31:00:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Feb 17 16:11:18 2023 GMT
Not After : Feb 16 16:16:18 2024 GMT
Subject: CN=14482878B1BA919CE0BFB5E628FF9308443274C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:92:1a:1a:3b:bb:2c:b2:95:89:ef:6a:f0:d4:
23:98:96:0d:86:14:1a:c0:9a:02:7f:8c:a7:2b:13:
19:8b:c2:61:e9:ad:e5:79:33:61:db:10:1a:bc:9e:
c9:33:f6:84:8d:b1:31:fc:f0:9c:c3:78:fe:50:f3:
a5:f7:5f:8d:32:02:37:66:7d:13:fb:0a:d8:b8:76:
24:80:a8:78:49:3a:a5:07:0d:f8:63:8e:06:53:b9:
f8:b7:69:03:7d:f9:66:16:b7:5a:a1:f1:83:17:fd:
3b:69:36:24:ee:04:b1:d5:89:39:65:fd:72:1a:1f:
c2:f6:d8:3a:08:b3:49:a2:55:12:4f:70:d0:81:fd:
2b:db:0d:9b:b8:56:f1:ba:a4:58:72:46:be:e3:b7:
4b:07:8a:99:cb:29:6a:35:31:85:41:bf:0f:ad:d6:
42:9b:2a:da:37:05:db:ce:0f:d7:62:f8:55:39:ce:
83:80:3f:84:53:10:31:5d:55:f5:f1:f2:f5:b7:85:
32:e1:81:c4:9a:ae:03:d7:5a:9a:d4:ff:be:ca:76:
98:16:37:5b:f3:c1:c0:8d:bc:72:7c:6b:c1:52:b9:
f8:cd:45:4f:14:f4:65:a4:50:ab:73:07:c7:06:a4:
8f:84:a5:97:1b:c9:a2:9b:f1:14:a2:b7:2c:83:41:
15:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:48:28:78:B1:BA:91:9C:E0:BF:B5:E6:28:FF:93:08:44:32:74:C5
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e37322e302f32312d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.72.0/21
Signature Algorithm: sha256WithRSAEncryption
6a:73:d9:0a:64:2a:b5:48:a6:4e:c0:0a:f0:6f:0a:cc:e8:d1:
65:21:73:89:f2:47:a3:72:8c:17:6e:02:fc:bc:79:40:b8:c0:
67:e0:d0:51:31:a4:fa:0e:ae:68:9c:cb:89:88:d8:0c:4f:98:
ab:9f:f8:7b:06:c3:e3:87:2a:96:10:1a:14:92:8e:90:ef:a8:
d3:54:f2:ea:0f:7b:78:9a:c4:5a:22:e7:47:23:fc:42:42:c0:
58:71:3f:95:94:6e:0f:38:72:dd:2f:78:30:11:93:ce:00:89:
a8:43:6f:40:66:78:2c:78:89:a2:2a:8d:7c:3f:d4:76:f0:76:
69:73:b2:c5:60:c0:e3:12:a7:c0:5e:da:d2:a2:c5:fc:e4:94:
12:c6:8f:e5:9e:10:d7:97:28:44:13:53:9b:fe:8a:ed:b8:02:
b0:44:0a:9f:69:38:19:fb:4d:71:9d:93:de:a2:e9:ca:2f:8b:
a6:45:90:d0:c5:01:78:49:1b:d8:cf:5f:f5:16:b5:f4:79:e9:
a2:03:46:c0:b3:dc:bc:2b:f6:9d:a7:55:0d:47:3f:72:98:f0:
9b:11:df:4b:c1:96:5e:91:94:20:4a:5d:4b:aa:1a:2c:1c:02:
00:74:e2:8b:2d:47:0e:70:7a:55:ed:f6:04:0d:eb:2a:ed:a6:
34:dc:85:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net