Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e38382e302f32332d3234203d3e203437353833.roa
File: 34352e31342e38382e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: WL2a23vYkdujfvAdR/fBArPBc809w6MgX+nEx6PGWBs=
Subject key identifier: DA:C6:F2:47:20:53:B7:CA:27:3B:26:0F:75:15:E9:95:BC:71:45:F9
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 14D69D490DFF94F112BDABCBFF2108900BA74B0B
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e38382e302f32332d3234203d3e203437353833.roa
Signing time: Thu 26 Jan 2023 11:48:42 +0000
ROA not before: Thu 26 Jan 2023 11:43:42 +0000
ROA not after: Thu 25 Jan 2024 11:48:42 +0000
asID: 47583
IP address blocks: 45.14.88.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:d6:9d:49:0d:ff:94:f1:12:bd:ab:cb:ff:21:08:90:0b:a7:4b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:42 2023 GMT
Not After : Jan 25 11:48:42 2024 GMT
Subject: CN=DAC6F2472053B7CA273B260F7515E995BC7145F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:00:24:9e:42:24:ea:09:06:76:ce:38:d5:
d4:ba:29:37:0b:a8:f7:a4:5c:c8:ce:f8:21:04:14:
9e:fc:14:df:e6:da:f4:4e:17:7b:5b:16:f4:4b:27:
91:fc:5b:68:9b:54:93:d7:4f:3a:f4:35:2d:7f:d4:
78:b7:35:c5:5d:16:92:8d:ce:48:3a:72:0e:98:e0:
df:ca:83:b4:12:23:32:ca:4b:70:1e:32:b5:14:20:
d8:fe:51:40:9c:55:c7:17:1e:9a:9e:d0:7f:8b:74:
61:05:67:a4:74:d5:50:4f:c7:68:75:e0:9b:85:1c:
19:7d:b7:32:f3:b5:0c:80:30:7c:a0:52:a0:7e:9a:
47:2b:aa:54:34:f7:50:ea:aa:dd:d4:6f:af:1e:ac:
9f:be:04:3e:03:99:5d:ac:a2:cf:6e:96:b7:22:5a:
3f:64:a1:49:4c:43:01:58:80:16:4a:a6:d4:4f:a9:
4e:9f:6a:9d:b9:38:55:fa:4e:b1:c1:35:c2:ab:f5:
ec:a5:f1:37:68:e0:cf:6d:48:53:2c:75:26:bb:3b:
e3:c7:90:50:57:82:ca:02:32:25:ff:23:b4:33:51:
fa:48:0e:d7:20:69:ae:8b:96:dc:b7:aa:57:6e:bf:
19:c4:7d:62:7e:73:26:20:5b:b0:2c:dc:c5:af:1b:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C6:F2:47:20:53:B7:CA:27:3B:26:0F:75:15:E9:95:BC:71:45:F9
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e38382e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.88.0/23
Signature Algorithm: sha256WithRSAEncryption
44:b4:6d:2c:5c:ec:57:cb:b8:51:96:14:8f:be:dd:dc:4a:7f:
5c:6a:17:23:f4:93:3f:40:77:75:15:03:a4:8d:f5:0b:e0:40:
92:ca:05:88:c8:77:0c:2d:e3:13:49:2c:ab:39:70:25:51:6b:
b8:be:a5:23:f6:3c:65:58:47:09:cd:f3:25:0b:10:ae:32:fd:
25:d8:2b:d8:17:e3:68:3a:89:3e:f8:9d:53:8c:96:27:05:f1:
92:72:a2:98:ae:a6:05:c7:48:e5:c5:d2:c7:52:84:55:8c:cd:
4e:56:47:46:30:1d:79:6b:18:80:65:1e:6f:d8:b8:82:3a:0d:
49:ff:cb:e1:0e:75:44:5f:34:ad:d0:b0:cd:46:88:64:38:6f:
e1:60:a0:c0:cc:cf:85:8b:99:62:0b:05:a7:84:d8:83:c7:67:
c9:5b:76:ea:7a:83:dc:1e:f7:6d:61:2a:a6:92:91:02:69:02:
6b:42:17:f6:83:f2:c8:05:d6:ea:20:64:e4:27:50:53:6d:10:
c8:b3:3d:2c:48:46:7d:a0:0c:95:b8:48:7c:ce:ba:fe:b8:bc:
ea:35:44:b3:18:a0:f3:d1:0c:69:71:6e:6c:b0:58:56:19:93:
68:98:31:d4:25:66:eb:f7:e4:df:2a:f1:26:98:ec:87:d3:22:
71:82:e6:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net