Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e38382e302f32312d3332203d3e203531313637.roa
File: 33312e3232302e38382e302f32312d3332203d3e203531313637.roa (raw, json)
Hash identifier: BBNf4CNp0RxaXhAfDByHVz3s6kDQ/G8r5cdzGM/l3qo=
Subject key identifier: D7:3C:C9:53:83:23:69:2C:3F:17:96:F2:99:49:7C:65:AC:EA:B0:EB
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 7F730E147307F662DFD701D9AE8233BE6E3B5A7F
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e38382e302f32312d3332203d3e203531313637.roa
Signing time: Fri 17 Feb 2023 16:16:55 +0000
ROA not before: Fri 17 Feb 2023 16:11:55 +0000
ROA not after: Fri 16 Feb 2024 16:16:55 +0000
asID: 51167
IP address blocks: 31.220.88.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:73:0e:14:73:07:f6:62:df:d7:01:d9:ae:82:33:be:6e:3b:5a:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Feb 17 16:11:55 2023 GMT
Not After : Feb 16 16:16:55 2024 GMT
Subject: CN=D73CC9538323692C3F1796F299497C65ACEAB0EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:eb:18:7b:bd:33:69:37:13:d4:f1:51:76:74:
ae:33:1b:cb:ae:00:b1:02:9f:1c:f4:67:5f:21:02:
43:39:b3:f6:22:78:a4:a7:30:7a:f4:1d:ac:31:5d:
19:5a:c0:56:1d:cb:07:cb:3a:ea:c8:94:6b:cc:4f:
95:2f:84:87:36:bd:4d:e4:e5:9d:b7:ae:47:7a:37:
b0:47:21:24:95:16:53:c7:c8:d2:ed:c9:a1:e9:23:
f8:5e:d6:30:60:7d:60:0d:37:9f:16:f2:00:6a:4b:
d4:9c:6a:1c:94:de:4d:f9:0d:1e:f0:d9:ff:2a:b2:
a4:bd:9e:12:80:41:3a:cd:57:bb:c7:55:1e:2d:80:
fd:be:5e:74:ed:70:ab:a0:6e:1c:3a:82:15:39:4d:
a6:cd:38:0b:18:8e:66:9b:29:68:18:64:a2:bc:95:
ee:b3:7f:96:03:7a:36:2a:9f:2e:47:84:de:35:4a:
af:20:df:2a:4b:4b:e6:a0:25:90:25:b0:94:80:6a:
78:42:2e:0d:88:90:61:e6:f0:c4:b0:3c:dd:98:c4:
e3:3f:fd:a2:a9:ed:00:a6:2b:d0:32:69:dc:50:2f:
0c:0b:1c:28:cf:7b:71:2b:3c:0b:ba:bf:07:6b:f3:
67:3c:a2:d4:6d:5d:a6:ca:9b:7a:ff:ee:2f:8b:74:
97:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:3C:C9:53:83:23:69:2C:3F:17:96:F2:99:49:7C:65:AC:EA:B0:EB
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e38382e302f32312d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.88.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:db:25:bb:85:9c:03:05:16:fc:2b:9c:df:e0:2f:1c:c4:de:
70:78:ce:3d:cd:cc:b2:d7:c6:6a:2f:29:f5:be:14:1e:83:41:
cf:61:36:0a:15:5f:31:28:9f:dd:19:78:fc:ae:18:39:fb:e5:
a0:28:8c:56:6b:1e:f4:a8:4b:40:59:62:a7:d6:15:cb:0f:08:
f2:7d:89:87:2a:18:08:a5:59:e4:5a:64:84:f4:b3:34:7a:e3:
2e:89:86:93:9a:ef:67:51:c0:22:f6:59:88:d4:0d:45:19:cf:
fc:67:ca:b2:b0:68:e2:bf:91:3d:2e:cd:af:86:21:6d:c8:77:
08:a3:91:d0:46:2c:5e:7c:7b:34:08:50:70:8b:95:7e:39:49:
50:ac:fb:e4:c8:9b:1a:d8:24:57:6d:ac:95:c3:9c:e3:76:ea:
75:18:28:7a:4a:e3:c8:3f:58:b4:30:3a:4f:7e:3d:7c:d5:5b:
78:1c:83:93:33:f5:9e:85:66:39:e5:f1:02:cf:3d:b9:36:f1:
73:b3:4e:36:37:8f:89:bf:63:de:54:fd:fe:d8:dc:0e:84:e7:
42:af:c8:7d:7e:83:d0:cb:45:70:d1:06:91:a2:24:1f:f0:05:
99:85:87:31:24:4c:47:13:7b:78:c6:ff:76:33:db:8b:b1:f5:
d3:f7:3e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net