Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e3133362e31362e302f32342d3234203d3e203235303938.roa
File: 34352e3133362e31362e302f32342d3234203d3e203235303938.roa (raw, json)
Hash identifier: shhv0XD9m9+pYWRFb/JJbAiAYmZmpndDuOc3vO9uy5o=
Subject key identifier: 15:21:1B:AE:CA:B7:E1:9F:3C:AA:5F:B6:8D:C4:AF:DE:EE:E3:E6:18
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 72D3751FEB8F06AB5AEA713A032115776AE6501F
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3133362e31362e302f32342d3234203d3e203235303938.roa
Signing time: Thu 26 Jan 2023 11:48:41 +0000
ROA not before: Thu 26 Jan 2023 11:43:41 +0000
ROA not after: Thu 25 Jan 2024 11:48:41 +0000
asID: 25098
IP address blocks: 45.136.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:d3:75:1f:eb:8f:06:ab:5a:ea:71:3a:03:21:15:77:6a:e6:50:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:41 2023 GMT
Not After : Jan 25 11:48:41 2024 GMT
Subject: CN=15211BAECAB7E19F3CAA5FB68DC4AFDEEEE3E618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c5:f3:1c:84:30:85:8b:a7:89:89:0e:82:be:
87:7c:d3:19:00:03:fa:2e:ad:fc:95:fe:e3:03:0e:
f5:a7:8d:62:de:62:89:e5:90:03:63:90:36:d9:ff:
dc:76:03:24:d0:1d:1b:f5:3a:a8:23:e8:8d:ec:23:
15:46:08:8c:f2:5a:23:7e:5e:f5:75:ee:d9:c6:1e:
de:a3:01:22:69:e7:1d:da:6d:0b:50:ea:01:b4:90:
1f:c6:3e:1a:75:9e:15:ea:ab:7b:4e:5a:7c:b6:90:
ea:e4:5d:5c:b2:aa:97:96:54:91:7b:8d:cd:9b:b7:
d3:5a:75:8f:59:c4:26:d7:e3:ac:39:c5:df:5c:e9:
5f:ad:c4:c9:ca:4d:0e:96:4e:0d:03:65:24:af:19:
47:7c:e7:f2:16:3f:34:a4:a2:a8:fd:4e:f6:aa:4c:
6e:b3:35:e3:4c:c2:88:d7:9a:a4:2d:38:69:c6:30:
f7:8a:20:b2:11:3c:ad:72:07:f6:c6:f6:34:75:12:
2b:dc:1f:75:b3:78:7b:3c:12:c9:e0:cb:11:f5:8e:
6a:af:dd:ab:d6:c5:97:34:61:be:b0:be:fe:67:dd:
0e:9a:fd:85:5a:e5:ba:5c:c5:41:10:70:ea:df:88:
ea:d7:42:3d:5f:ef:86:21:ab:48:7a:3d:07:53:ed:
e1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:21:1B:AE:CA:B7:E1:9F:3C:AA:5F:B6:8D:C4:AF:DE:EE:E3:E6:18
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3133362e31362e302f32342d3234203d3e203235303938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:17:8c:c1:d7:41:92:37:99:69:28:41:fa:ce:61:d6:fc:39:
cb:06:a3:8a:cd:fd:e0:b4:5f:a5:e9:8f:f7:7d:0d:0b:e1:ef:
66:56:89:b6:ac:d7:fb:8b:36:ab:6a:3d:43:14:fa:9b:8f:93:
77:48:ec:f6:e4:9f:bb:f3:f9:32:90:11:fe:15:e4:0c:2c:78:
4d:57:45:85:b2:ac:4a:74:cb:5b:41:de:4b:3e:cf:ff:ce:60:
4e:79:3e:4f:61:1f:02:5f:85:04:0e:62:ef:b1:9d:5b:de:78:
7a:5d:06:ce:15:b4:06:f5:9f:ba:0c:ee:a1:e9:77:6c:77:b0:
97:52:6d:34:c0:41:65:70:fc:ae:42:30:78:25:51:cd:a3:f9:
54:84:00:af:dc:2e:df:0e:61:5b:ef:53:85:0f:75:77:ec:4e:
79:5c:0b:c7:1d:42:54:83:e9:a3:1e:ec:09:c3:61:3e:39:cb:
0b:51:8d:ab:1a:09:06:13:a1:6c:82:c6:f0:4a:aa:e9:56:98:
11:0d:51:51:5a:62:e2:4a:44:3b:01:82:e4:53:a2:4d:97:26:
5d:f0:04:1f:7f:5c:c0:6a:fa:3e:84:a9:8f:46:9e:d4:ad:2a:
56:f1:0b:b6:87:84:27:e3:93:05:dd:f6:d0:ba:f5:50:28:6f:
bb:bb:6d:c8
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUctN1H+uPBqta6nE6AyEVd2rmUB8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMzAxMjYxMTQzNDFaFw0yNDAxMjUxMTQ4NDFaMDMxMTAvBgNV
BAMTKDE1MjExQkFFQ0FCN0UxOUYzQ0FBNUZCNjhEQzRBRkRFRUVFM0U2MTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xfMchDCFi6eJiQ6Cvod80xkA
A/ourfyV/uMDDvWnjWLeYonlkANjkDbZ/9x2AyTQHRv1Oqgj6I3sIxVGCIzyWiN+
XvV17tnGHt6jASJp5x3abQtQ6gG0kB/GPhp1nhXqq3tOWny2kOrkXVyyqpeWVJF7
jc2bt9NadY9ZxCbX46w5xd9c6V+txMnKTQ6WTg0DZSSvGUd85/IWPzSkoqj9Tvaq
TG6zNeNMwojXmqQtOGnGMPeKILIRPK1yB/bG9jR1EivcH3WzeHs8EsngyxH1jmqv
3avWxZc0Yb6wvv5n3Q6a/YVa5bpcxUEQcOrfiOrXQj1f74Yhq0h6PQdT7eGdAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUFSEbrsq34Z88ql+2jcSv3u7j5hgwHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zNDM1MmUzMTMzMzYyZTMxMzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM1
MzAzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQALYgQMA0GCSqGSIb3DQEBCwUAA4IBAQCmF4zB10GS
N5lpKEH6zmHW/DnLBqOKzf3gtF+l6Y/3fQ0L4e9mVom2rNf7izaraj1DFPqbj5N3
SOz25J+78/kykBH+FeQMLHhNV0WFsqxKdMtbQd5LPs//zmBOeT5PYR8CX4UEDmLv
sZ1b3nh6XQbOFbQG9Z+6DO6h6Xdsd7CXUm00wEFlcPyuQjB4JVHNo/lUhACv3C7f
DmFb71OFD3V37E55XAvHHUJUg+mjHuwJw2E+OcsLUY2rGgkGE6FsgsbwSqrpVpgR
DVFRWmLiSkQ7AYLkU6JNlyZd8AQff1zAavo+hKmPRp7UrSpW8Qu2h4Qn45MF3fbQ
uvVQKG+7u23I
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net