Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e3133302e3232382e302f32322d3234203d3e203437353833.roa
File: 34352e3133302e3232382e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: HjmLjpDacXaCrygQdYsTil4ebKPsSO3pY4MSBTB6dtc=
Subject key identifier: D2:51:7D:60:CE:8B:A8:AA:0F:9F:29:8B:36:83:DA:61:6F:AD:9D:4A
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 7E0AD0C2C984AA5EC4CFFC5D53897C652A2A416E
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3133302e3232382e302f32322d3234203d3e203437353833.roa
Signing time: Thu 26 Jan 2023 11:48:40 +0000
ROA not before: Thu 26 Jan 2023 11:43:40 +0000
ROA not after: Thu 25 Jan 2024 11:48:40 +0000
asID: 47583
IP address blocks: 45.130.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:0a:d0:c2:c9:84:aa:5e:c4:cf:fc:5d:53:89:7c:65:2a:2a:41:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:40 2023 GMT
Not After : Jan 25 11:48:40 2024 GMT
Subject: CN=D2517D60CE8BA8AA0F9F298B3683DA616FAD9D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f8:8c:48:81:c0:b5:11:d4:55:a1:a9:e0:0a:
4a:0e:47:c6:6e:cc:e2:52:c2:16:0e:d9:b2:9a:62:
8d:e8:d4:ac:f2:ea:1b:f4:cd:11:0a:fe:01:53:6d:
77:97:cd:07:ff:8f:d2:5d:de:57:7e:2b:61:ef:c1:
19:bc:c3:cc:ab:e6:c9:b9:7d:5f:2b:91:e0:f0:e0:
c5:d3:4b:b7:be:9b:31:4f:87:23:95:8a:e2:4a:1e:
8f:39:54:54:e6:c9:c9:b7:cf:58:69:46:c2:ce:35:
11:2f:cb:e3:1b:31:4b:95:89:aa:a1:23:bd:56:36:
2b:a0:6d:3a:7e:2d:7c:6b:f7:9d:b7:b2:b1:99:70:
e7:91:7e:f1:35:1a:9f:57:5d:86:bc:d0:24:c3:47:
0b:ff:58:4a:a8:21:09:50:8a:51:a1:43:52:8e:63:
da:c1:3a:9d:fc:06:14:d3:de:a5:3a:7f:20:e0:e3:
03:9f:9d:61:f8:e2:56:35:11:aa:96:e7:09:f7:23:
1f:5b:54:e6:47:eb:6a:b7:8f:e3:9b:45:98:13:40:
5b:38:c8:e1:bf:d2:f9:d6:20:ce:9c:dd:e8:61:2f:
bd:30:d5:66:ce:d6:27:4f:10:e4:9e:13:dc:7d:f2:
fb:a8:fc:67:15:d7:45:85:61:9d:03:b7:7f:37:64:
16:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:51:7D:60:CE:8B:A8:AA:0F:9F:29:8B:36:83:DA:61:6F:AD:9D:4A
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3133302e3232382e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.228.0/22
Signature Algorithm: sha256WithRSAEncryption
99:23:a4:6e:9c:70:3f:b6:4d:56:e4:99:db:5e:24:75:ed:70:
e9:15:9f:29:52:ed:21:2b:a1:85:fa:06:3a:ce:4c:45:26:5e:
fb:72:9b:34:ed:30:2c:8b:38:79:23:92:db:37:da:81:97:95:
5c:41:56:0f:af:07:41:45:60:3f:9f:cb:4d:32:aa:a9:f4:1a:
9b:b5:ce:00:3b:02:73:38:38:64:6c:1e:f8:4a:d6:ca:c2:06:
08:d7:4e:ca:ea:a7:03:52:26:4a:84:23:b8:e6:38:2b:40:e5:
3e:78:0d:3c:18:4b:0d:38:8a:2d:de:6f:c9:0f:40:c1:85:34:
14:b2:e8:0b:f6:11:8d:f7:c1:51:fb:de:ad:3a:f1:47:7f:5a:
cc:ca:3b:91:f0:70:89:7b:24:87:63:eb:7d:08:d1:10:f5:bc:
27:43:9b:1a:a9:27:8f:b8:b7:4f:f8:e1:de:1f:c3:c5:12:a6:
f4:f9:f2:24:11:62:3d:b6:f7:4f:92:3d:8b:01:71:ea:f0:eb:
c4:6a:01:fa:04:7b:7b:99:87:68:88:f6:40:0c:cf:ed:03:91:
44:38:19:1b:b6:70:59:ac:e4:fa:13:eb:af:96:d3:ff:8b:03:
e2:60:7c:d8:17:36:27:c0:26:d4:8c:5e:d5:b1:da:85:3e:74:
5a:28:7f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net