Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39312e302f32342d3234203d3e20333238333737.roa
File: 34352e31342e39312e302f32342d3234203d3e20333238333737.roa (raw, json)
Hash identifier: Y/Y5NuHSfsIviKJ6/S9G32Q5CXkS3tQd+5M7efHa0wM=
Subject key identifier: 19:2E:EC:C1:83:80:3E:03:01:A5:89:AB:0F:EB:B5:95:00:A7:C5:F3
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 723B7C0D468F4E4762E101FC19A6277E17369DEE
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39312e302f32342d3234203d3e20333238333737.roa
Signing time: Thu 26 Jan 2023 11:48:43 +0000
ROA not before: Thu 26 Jan 2023 11:43:43 +0000
ROA not after: Thu 25 Jan 2024 11:48:43 +0000
asID: 328377
IP address blocks: 45.14.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:3b:7c:0d:46:8f:4e:47:62:e1:01:fc:19:a6:27:7e:17:36:9d:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:43 2023 GMT
Not After : Jan 25 11:48:43 2024 GMT
Subject: CN=192EECC183803E0301A589AB0FEBB59500A7C5F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a8:4c:60:67:09:cf:75:67:b7:ed:92:87:c1:
1e:04:40:12:ee:ee:70:68:0d:0a:fb:de:60:50:b1:
26:ea:b1:68:41:3c:bd:e0:3e:88:25:c0:e6:b5:d9:
9a:e3:5e:69:f7:a9:d6:f5:80:a0:3f:49:c5:a2:47:
47:06:69:ae:20:bf:79:17:d8:a2:4b:78:58:2a:c5:
3d:8e:7b:3d:ca:42:b1:74:5d:44:97:69:1c:98:d0:
b4:1e:6e:9a:ec:8c:b0:03:7c:20:73:72:c1:9b:d4:
e8:8b:b4:5f:1c:fe:11:ed:01:d5:e5:0f:5b:e9:03:
41:79:1b:00:57:23:e0:17:e5:c0:ab:1a:47:1b:b0:
3f:69:5c:42:7d:3f:56:f8:b2:93:8a:9f:dc:38:fd:
76:51:16:26:6e:f7:b2:c6:50:22:71:bd:86:03:e6:
a5:77:c5:50:ff:4a:fa:3c:a0:4c:ac:b9:81:27:fd:
b2:0b:ff:3b:98:45:01:72:47:3d:ce:e0:61:db:b1:
2e:7c:85:47:94:22:5b:a9:c5:60:a6:bc:80:eb:f0:
71:47:52:b2:73:d5:2e:cc:c3:a2:fd:c4:d8:81:3d:
e5:8c:be:dd:66:ba:a5:16:72:5a:39:44:28:15:36:
35:28:53:b0:09:07:69:97:db:b6:7b:3c:e2:3c:7b:
24:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:2E:EC:C1:83:80:3E:03:01:A5:89:AB:0F:EB:B5:95:00:A7:C5:F3
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39312e302f32342d3234203d3e20333238333737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.91.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:72:e4:4e:6c:f3:a0:3f:65:58:d5:d9:92:0d:f2:eb:b2:51:
32:19:77:e7:aa:57:3d:d8:6e:0e:d9:f7:df:e7:b8:4c:6d:2a:
7c:cf:7a:db:f9:55:bc:94:79:1b:5a:ef:ac:4c:d8:a5:74:0d:
bd:eb:f3:f3:68:72:34:de:1c:be:f0:3b:98:fb:fc:2b:79:07:
19:b3:0a:bc:e0:d7:12:ea:ab:ec:1e:d5:a3:02:f9:17:bc:46:
c4:5d:5f:c5:62:9d:b7:89:1b:80:9d:7b:d5:ca:81:d5:4f:b8:
cd:22:0c:20:ab:eb:a3:72:9c:69:fa:37:e6:fa:76:21:67:52:
8e:f5:e0:97:95:dc:0f:7f:f7:72:2c:ff:06:51:16:7d:ca:20:
9a:14:2c:44:d4:af:c1:de:48:4a:ca:ad:c5:57:4f:56:10:c1:
8c:f4:6c:15:19:5d:2e:02:69:47:29:61:84:15:a8:33:37:ad:
ec:83:24:d4:ea:6a:74:4a:3a:47:dc:48:3c:87:e0:80:57:d1:
e4:f4:06:55:ee:f4:36:d6:2f:04:30:25:c6:4e:d1:27:88:a1:
bf:22:a3:f3:b3:51:b6:28:b2:61:98:a7:dd:9e:e1:d6:fb:76:
84:73:81:28:61:a6:b8:54:d0:60:f1:de:0b:e2:d3:7a:6d:ac:
a1:ac:38:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net