Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39312e302f32342d3234203d3e203434363835.roa
File: 34352e31342e39312e302f32342d3234203d3e203434363835.roa (raw, json)
Hash identifier: K7Pp478BZQ4tCpzyrkLCL1WXFPevqfJ35lW0U/IOh9g=
Subject key identifier: 34:E0:02:25:42:0E:DD:CE:AC:C5:96:B9:05:EF:5E:78:70:21:D4:1C
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4B989BB0277A8369318F96BD9DFEE0804D22BAC9
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39312e302f32342d3234203d3e203434363835.roa
Signing time: Thu 26 Jan 2023 11:48:40 +0000
ROA not before: Thu 26 Jan 2023 11:43:40 +0000
ROA not after: Thu 25 Jan 2024 11:48:40 +0000
asID: 44685
IP address blocks: 45.14.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:98:9b:b0:27:7a:83:69:31:8f:96:bd:9d:fe:e0:80:4d:22:ba:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:40 2023 GMT
Not After : Jan 25 11:48:40 2024 GMT
Subject: CN=34E00225420EDDCEACC596B905EF5E787021D41C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:26:9b:52:ba:d5:3e:a0:46:eb:c1:e0:38:c1:
a2:37:f4:a9:ac:03:07:85:fa:f1:38:29:78:99:e8:
9a:3a:d1:bb:12:e3:71:c8:0f:b7:bb:4d:25:84:46:
dc:14:15:33:9c:02:44:34:7d:ae:04:16:18:2e:4c:
68:50:42:6f:84:e5:03:c3:9c:31:07:ab:1e:15:67:
71:e9:8e:70:0b:e5:f9:26:81:4d:f2:6c:5d:66:ce:
42:b9:13:ca:60:62:f5:c2:9f:b8:1d:05:f2:9a:ba:
4f:f1:62:9f:12:76:5a:f2:20:40:aa:0b:ac:43:78:
8f:7a:b6:f7:b6:c6:37:d6:25:a5:8c:ba:85:23:5d:
17:55:3a:c8:c3:0b:b9:b4:0a:21:61:ab:11:06:b9:
63:ba:8d:b3:56:7b:34:29:6a:c0:56:0e:dc:e4:30:
87:bd:e6:e3:45:95:20:d1:8b:58:2a:e6:2b:bc:2b:
4d:d9:93:b7:02:c7:c6:5a:b9:63:a9:ab:c2:1b:c4:
89:1b:44:a9:59:1c:af:51:f4:0b:82:ad:52:3b:64:
38:8f:e7:e7:dc:f9:d7:fa:25:2b:33:83:55:a3:8f:
f3:b8:9e:33:0a:fc:53:35:f4:2f:56:41:d0:f1:e2:
5d:6c:18:fb:88:ed:da:82:7a:6a:13:fc:72:c3:2b:
92:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E0:02:25:42:0E:DD:CE:AC:C5:96:B9:05:EF:5E:78:70:21:D4:1C
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e31342e39312e302f32342d3234203d3e203434363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.91.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:65:2c:3a:e8:d0:9f:f1:73:f4:44:7d:0b:22:a6:bf:eb:cc:
bc:13:5f:a3:d4:96:78:d1:9f:c7:7c:7b:82:7c:51:d3:28:24:
5f:bb:45:74:12:98:1d:14:eb:68:1f:88:11:0d:cf:f4:71:25:
39:7e:d7:0b:32:cc:ac:86:3c:b1:0d:82:26:b8:03:46:40:2a:
fb:37:9c:dc:ca:8f:fa:97:8c:73:b8:31:01:d2:df:83:9a:4e:
44:5a:7e:b5:8d:c3:74:17:4a:b9:11:e3:2d:af:27:ef:73:2e:
b6:ad:6d:ad:78:79:f4:37:55:74:24:22:76:39:f6:71:89:88:
83:6f:df:02:79:b7:16:a6:c6:74:29:80:03:a7:f9:cd:4b:a1:
9e:46:96:da:2f:a7:f4:cc:fc:ac:55:70:1e:b4:0e:47:ad:c7:
8a:a5:ea:bb:29:90:d1:7b:03:c9:27:04:1b:b0:c2:a7:b0:5e:
20:4b:ec:de:b6:c6:f0:5d:a0:5d:59:62:35:f3:d5:07:77:b1:
be:54:7e:f6:67:89:7a:3f:0a:c1:8e:7b:bd:13:e3:64:c3:af:
94:61:9d:70:3a:4c:68:aa:d1:9b:ba:ad:b3:78:20:e5:79:5e:
c2:c3:18:dd:f3:24:90:9e:4b:2a:45:74:55:4e:88:fe:3d:9a:
02:b6:4a:2e
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIUS5ibsCd6g2kxj5a9nf7ggE0iuskwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMzAxMjYxMTQzNDBaFw0yNDAxMjUxMTQ4NDBaMDMxMTAvBgNV
BAMTKDM0RTAwMjI1NDIwRUREQ0VBQ0M1OTZCOTA1RUY1RTc4NzAyMUQ0MUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1JptSutU+oEbrweA4waI39Kms
AweF+vE4KXiZ6Jo60bsS43HID7e7TSWERtwUFTOcAkQ0fa4EFhguTGhQQm+E5QPD
nDEHqx4VZ3HpjnAL5fkmgU3ybF1mzkK5E8pgYvXCn7gdBfKauk/xYp8SdlryIECq
C6xDeI96tve2xjfWJaWMuoUjXRdVOsjDC7m0CiFhqxEGuWO6jbNWezQpasBWDtzk
MIe95uNFlSDRi1gq5iu8K03Zk7cCx8ZauWOpq8IbxIkbRKlZHK9R9AuCrVI7ZDiP
5+fc+df6JSszg1Wjj/O4njMK/FM19C9WQdDx4l1sGPuI7dqCemoT/HLDK5LHAgMB
AAGjggHtMIIB6TAdBgNVHQ4EFgQUNOACJUIO3c6sxZa5Be9eeHAh1BwwHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4Zo
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zNDM1MmUzMTM0MmUzOTMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNDM2
MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAC0OWzANBgkqhkiG9w0BAQsFAAOCAQEAjmUsOujQn/Fz
9ER9CyKmv+vMvBNfo9SWeNGfx3x7gnxR0ygkX7tFdBKYHRTraB+IEQ3P9HElOX7X
CzLMrIY8sQ2CJrgDRkAq+zec3MqP+peMc7gxAdLfg5pORFp+tY3DdBdKuRHjLa8n
73Mutq1trXh59DdVdCQidjn2cYmIg2/fAnm3FqbGdCmAA6f5zUuhnkaW2i+n9Mz8
rFVwHrQOR63HiqXquymQ0XsDyScEG7DCp7BeIEvs3rbG8F2gXVliNfPVB3exvlR+
9meJej8KwY57vRPjZMOvlGGdcDpMaKrRm7qts3gg5XlewsMY3fMkkJ5LKkV0VU6I
/j2aArZKLg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net