Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e382e302f32322d3232203d3e2030.roa
File: 33312e3232302e382e302f32322d3232203d3e2030.roa (raw, json)
Hash identifier: 6GsOnhfq3avzQbRg7hco3LrfpDBnVMVU2R2bYng16qI=
Subject key identifier: B9:31:AE:D3:10:3B:FB:49:3B:73:14:E4:CC:3B:0A:B0:BC:E6:28:F0
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 7998AB8AE76720D05A7FE12A89E50DC9A13B325D
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e382e302f32322d3232203d3e2030.roa
Signing time: Fri 03 Mar 2023 17:50:46 +0000
ROA not before: Fri 03 Mar 2023 17:45:46 +0000
ROA not after: Fri 01 Mar 2024 17:50:46 +0000
asID: 0
IP address blocks: 31.220.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:98:ab:8a:e7:67:20:d0:5a:7f:e1:2a:89:e5:0d:c9:a1:3b:32:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Mar 3 17:45:46 2023 GMT
Not After : Mar 1 17:50:46 2024 GMT
Subject: CN=B931AED3103BFB493B7314E4CC3B0AB0BCE628F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:19:11:66:fd:ce:a9:e2:4b:4c:69:f5:53:
b5:ac:ab:de:21:e7:88:1e:d9:8c:28:ea:15:13:da:
d7:ce:99:99:2e:f5:bf:47:8f:03:53:96:b7:14:cd:
8b:43:73:56:6c:4f:e4:21:cb:0d:61:cc:42:20:04:
e6:81:b9:87:4e:a5:d0:fa:f6:1c:38:95:18:07:ee:
99:c3:d3:2c:9f:70:cd:05:60:f9:0f:e8:e3:37:99:
79:a4:ec:65:c2:65:fe:ca:ab:0d:22:2b:a9:d3:1b:
02:4e:db:18:17:f0:e9:89:0c:d6:8f:a5:59:83:24:
04:e4:88:e2:7e:6d:5a:28:16:af:20:6a:b6:bb:2e:
3a:d1:67:04:87:5e:7c:a9:a2:9e:9b:3d:3f:b7:7f:
84:35:a0:7d:6c:3f:c1:62:19:69:3a:cf:4d:5a:68:
df:e6:a8:77:ea:81:7e:25:35:a7:72:98:20:e7:59:
e2:b0:59:ef:35:e2:ad:b0:99:b0:cd:0b:69:f2:0c:
26:19:6a:b3:c0:26:e5:05:b7:fb:7c:fa:21:72:ba:
09:d6:f5:8e:58:d9:19:1a:22:35:78:39:74:05:2a:
1b:22:c7:5d:73:fc:6d:41:7d:0e:45:4d:e5:a4:c0:
2c:44:21:4c:2d:d3:21:b9:07:df:37:6c:82:f8:f2:
f5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:31:AE:D3:10:3B:FB:49:3B:73:14:E4:CC:3B:0A:B0:BC:E6:28:F0
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e382e302f32322d3232203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.8.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:0f:e7:f9:cb:02:5b:3c:93:42:b3:e9:a9:9a:26:ae:f8:a8:
31:bd:ae:36:e3:71:57:27:f9:b2:a4:08:25:58:d7:ca:20:1c:
e9:ec:57:96:6b:79:90:a3:97:75:1d:67:70:37:f6:47:1f:a5:
b4:19:0c:24:10:66:6d:e5:53:03:f4:70:30:cf:bb:a8:34:e6:
3e:90:47:3c:ff:99:a9:21:0a:02:df:49:5e:7f:a8:6e:ef:be:
8a:0d:bb:a4:77:e4:92:0f:b5:e2:54:87:fc:b2:cf:e7:78:ec:
52:27:95:69:74:21:df:8a:85:52:03:5a:df:eb:3d:7e:80:ae:
fd:1a:d8:90:6d:7b:03:38:ae:82:0c:39:cc:ab:a9:15:75:87:
43:69:1f:13:58:1c:11:09:fa:fe:a8:ef:fb:38:9e:92:0a:0e:
d1:a6:e4:b8:a7:1a:91:64:93:20:79:5c:7e:94:5e:23:b9:be:
92:d9:63:3f:a0:a7:9e:22:57:3c:2a:ce:68:8a:2d:ed:2e:2b:
49:5b:78:6c:85:dd:82:d5:7d:e2:28:89:56:aa:5a:e7:b8:05:
72:d0:5c:c2:ad:a9:9b:c7:ff:6a:57:da:e7:19:6d:26:4a:28:
5a:b5:d5:27:36:74:ca:38:6f:14:2e:8b:42:df:eb:e0:c5:6e:
d1:ae:33:85
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net