Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e39362e302f32312d3332203d3e203430303231.roa
File: 33312e3232302e39362e302f32312d3332203d3e203430303231.roa (raw, json)
Hash identifier: sbTBoyOG+0G+1G9JdZ/HbB9/1j+cfdFhM8TVm+lGtis=
Subject key identifier: 2E:47:6B:37:E9:50:BD:0E:AC:7A:29:46:EC:51:49:AE:98:83:88:2C
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 68D2FAAC79B3F94C7E07FFDF7361CC784E875762
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e39362e302f32312d3332203d3e203430303231.roa
Signing time: Fri 17 Feb 2023 16:17:23 +0000
ROA not before: Fri 17 Feb 2023 16:12:23 +0000
ROA not after: Fri 16 Feb 2024 16:17:23 +0000
asID: 40021
IP address blocks: 31.220.96.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:d2:fa:ac:79:b3:f9:4c:7e:07:ff:df:73:61:cc:78:4e:87:57:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Feb 17 16:12:23 2023 GMT
Not After : Feb 16 16:17:23 2024 GMT
Subject: CN=2E476B37E950BD0EAC7A2946EC5149AE9883882C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:59:83:4a:a4:e0:e5:c3:d6:44:39:11:83:09:
61:b5:e8:e2:7b:99:75:95:b8:89:40:cd:6e:9d:38:
67:b7:96:60:2b:0c:7d:8f:04:6e:d6:58:3b:f8:67:
eb:19:45:2e:24:96:9a:79:cd:9e:8f:1a:0d:5f:73:
a1:aa:43:aa:8c:fe:1c:f0:a5:f3:14:62:b8:f5:5f:
4d:54:10:b9:34:45:eb:d5:2a:7e:d7:dc:a1:c0:1b:
b5:5b:a4:aa:af:e7:0e:73:8d:fd:17:8e:e2:fb:b9:
a0:b7:f0:88:f7:32:1b:f1:58:df:13:d5:61:65:e3:
cc:da:3c:5c:d9:cd:e4:e2:46:4d:00:9f:8d:75:fe:
9f:f2:5e:7f:f8:24:73:23:2a:d1:0b:c6:b6:f3:b0:
2b:3c:07:0f:a6:ec:3f:4a:99:8d:92:7d:da:32:9d:
dd:26:c9:79:e2:87:37:23:b6:bc:65:c3:a0:4b:9b:
e5:c5:06:33:8b:46:24:57:62:81:86:0e:e4:5c:78:
28:da:21:f2:08:b4:ed:38:33:75:a1:f1:ba:40:ca:
ab:76:6d:22:b3:73:4d:14:59:b5:a4:24:aa:54:f8:
89:66:a1:8a:ed:60:f6:55:3f:c8:f1:e7:36:3b:f7:
a6:07:be:ad:ae:df:84:f5:20:20:ca:a1:1c:ee:a0:
7b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:47:6B:37:E9:50:BD:0E:AC:7A:29:46:EC:51:49:AE:98:83:88:2C
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e39362e302f32312d3332203d3e203430303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.96.0/21
Signature Algorithm: sha256WithRSAEncryption
62:05:f7:2f:9f:94:2c:71:7f:e6:02:0a:05:18:a9:56:ab:a4:
a1:dd:07:2e:7f:52:92:4e:ab:47:98:16:1d:f2:3d:08:55:6b:
06:73:fa:41:0d:f5:d0:06:40:87:0a:cd:09:e2:c0:4c:dd:af:
96:4a:9a:45:f4:d0:d5:88:8b:1b:95:95:32:ed:5c:b2:4c:b8:
64:8a:d5:13:02:8f:9f:f9:2c:4b:5a:14:2c:c2:09:26:35:19:
7f:ec:30:8d:f7:7f:f4:73:d5:75:69:f8:77:5e:5d:21:04:5f:
ed:66:59:02:b6:07:5b:63:1d:84:fb:c8:27:06:e9:4c:11:db:
c3:02:b0:a9:e7:2c:fc:8f:24:1a:6d:7b:c9:af:51:c4:74:0b:
7f:7c:aa:99:fc:57:bd:26:f0:6f:5c:4e:4e:4d:56:80:93:4d:
f2:eb:3c:77:2a:b0:3c:8c:35:07:53:1b:cf:7e:01:57:47:1d:
36:1f:d3:c1:eb:93:f3:de:6f:ac:59:90:55:1f:68:89:2d:73:
3b:c9:da:17:fc:76:75:5c:cd:ef:f7:a4:20:98:45:51:17:7a:
41:ca:89:66:8e:cd:56:9a:f6:ec:42:b3:bd:00:7d:3b:54:7e:
27:a5:9b:d5:9f:a5:2c:4c:3d:b2:81:e1:ed:a2:3e:d8:d4:ab:
43:c0:97:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net