Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39302e302f32342d3234203d3e20323636303530.roa
File: 34352e31342e39302e302f32342d3234203d3e20323636303530.roa (raw, json)
Hash identifier: pZPoNdoGulvc65gbtxJY/fJOnOdrd86DRK9pzUQx6oE=
Subject key identifier: 96:4B:DE:F1:67:F8:52:79:42:AE:F7:A9:CC:BB:4C:A2:89:BF:E2:F7
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 0972874C1E996556858ABC5C70D2F8D160BF8FD9
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39302e302f32342d3234203d3e20323636303530.roa
Signing time: Thu 26 Jan 2023 11:48:41 +0000
ROA not before: Thu 26 Jan 2023 11:43:41 +0000
ROA not after: Thu 25 Jan 2024 11:48:41 +0000
asID: 266050
IP address blocks: 45.14.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:72:87:4c:1e:99:65:56:85:8a:bc:5c:70:d2:f8:d1:60:bf:8f:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:41 2023 GMT
Not After : Jan 25 11:48:41 2024 GMT
Subject: CN=964BDEF167F8527942AEF7A9CCBB4CA289BFE2F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bc:f4:bd:eb:04:61:5a:b5:82:dc:16:d4:2b:
22:50:0d:1d:3c:d7:8c:28:66:6f:21:d7:df:36:3b:
fa:de:48:fd:1a:26:b6:bb:cc:90:ff:17:2c:5b:2f:
72:c7:78:64:ea:93:83:e5:96:0a:90:c9:0b:20:1a:
db:af:b6:5e:0b:aa:9f:0c:2c:01:2d:f4:5b:02:28:
a1:b0:ff:7e:46:d2:43:cb:7e:6d:22:39:ce:48:07:
ee:59:fd:ff:dc:ce:4a:72:ce:ef:3e:be:59:58:97:
7f:b5:da:5f:e8:c1:27:3d:05:6d:8e:1a:09:6b:7e:
81:08:72:77:8f:ad:d4:35:bb:37:32:18:ad:b1:a4:
29:b5:dd:24:9b:c2:5a:19:d4:77:0a:f3:77:cd:73:
e0:64:9e:21:db:c4:ab:95:aa:fa:87:fd:58:93:9d:
30:c1:83:1a:2f:08:3c:b3:4a:e6:46:30:0b:c1:63:
87:d6:60:d6:d8:4e:50:08:f7:3e:c4:f7:19:38:b4:
c6:ae:a1:77:73:b8:1f:b8:e9:3b:c6:81:cb:93:71:
68:5f:23:71:87:16:35:72:c2:c2:99:3c:98:d2:fb:
11:ee:bb:8e:6c:d5:86:6d:e6:8e:3a:35:ab:d7:c7:
c7:fb:60:60:90:dd:03:26:8c:3d:11:4b:1a:ce:53:
3e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:4B:DE:F1:67:F8:52:79:42:AE:F7:A9:CC:BB:4C:A2:89:BF:E2:F7
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39302e302f32342d3234203d3e20323636303530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.90.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b2:8e:14:04:b6:b9:ea:80:0f:9d:f5:8b:a4:cc:61:5e:7d:
0b:f4:dc:58:41:19:13:ec:63:16:a1:bd:3f:82:18:3f:f7:14:
01:75:04:c7:5c:03:60:3d:bd:8f:09:03:3f:37:3a:aa:b2:7c:
fa:c3:3e:26:ca:88:7d:cb:24:e0:1e:99:14:36:d1:ce:89:0d:
88:13:91:e8:4a:f7:b5:32:af:25:b4:8b:fa:a0:1c:c4:61:47:
84:c0:e6:c5:72:d6:bf:2d:2e:2d:19:85:8c:9d:9b:31:de:c4:
cb:39:d4:cc:2e:43:96:21:a0:c3:bf:ab:1e:f0:25:5a:5e:20:
27:7b:48:b7:86:66:cc:48:77:c7:4d:80:c8:ea:a7:b2:33:ca:
08:d8:27:4a:88:cd:2c:e0:41:d4:e8:9b:55:26:aa:dd:60:7a:
13:58:a9:0f:d6:3c:5a:19:31:e0:a2:a4:46:c0:db:b0:58:cd:
9f:33:2a:54:6f:85:cf:bd:1a:9a:6b:bc:07:f6:c9:5c:7c:18:
b1:97:90:79:74:b3:ab:cb:69:5d:d5:a5:31:28:34:35:20:dd:
38:db:e9:3f:52:ab:dd:79:b2:81:ca:1a:07:19:1f:0d:5a:9c:
1b:3c:f7:b1:77:75:84:f6:a0:a2:a1:5e:9c:21:ba:30:24:61:
6e:8a:7f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net