Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa
File: 34352e3135322e34342e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: Ls1veZsWFPzF6R91DZivg0dt4ZC8IaAw2jP/Cz2LJYw=
Subject key identifier: B7:3D:43:F7:A4:A5:AD:C6:54:CE:7A:6D:D4:6A:FA:EF:DB:8F:7D:DD
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 034E7F18C73D2B175D32F71439F46ABD777D805E
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa
Signing time: Thu 26 Jan 2023 11:48:42 +0000
ROA not before: Thu 26 Jan 2023 11:43:42 +0000
ROA not after: Thu 25 Jan 2024 11:48:42 +0000
asID: 47583
IP address blocks: 45.152.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:4e:7f:18:c7:3d:2b:17:5d:32:f7:14:39:f4:6a:bd:77:7d:80:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:42 2023 GMT
Not After : Jan 25 11:48:42 2024 GMT
Subject: CN=B73D43F7A4A5ADC654CE7A6DD46AFAEFDB8F7DDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:17:41:9c:67:2b:4d:d3:83:e4:3a:ec:77:e9:
50:af:e7:cd:b6:60:f8:3f:5d:04:dd:4d:f6:bf:6e:
70:ab:26:7e:e3:99:d5:2b:8f:0e:27:bf:21:ab:d8:
26:e4:9e:b0:cd:24:08:69:b8:f6:9c:3d:3c:9b:eb:
db:14:dc:ff:7d:95:bb:cf:36:33:02:cb:41:33:e0:
9b:69:0d:df:f8:06:c1:74:5f:b8:67:4b:6c:f2:88:
d7:14:a9:10:76:fc:08:21:a2:14:bd:7c:6b:a5:d1:
fb:c7:11:58:88:4e:c9:34:61:f9:d6:4a:93:92:9e:
5e:08:34:e7:4d:05:8a:7d:9c:06:73:47:40:4c:06:
71:09:a8:ca:8d:fb:ca:64:21:d5:8e:fe:32:13:6b:
00:2a:5a:26:75:be:89:da:f0:37:dc:d2:1f:ad:bf:
8d:e4:0d:a2:a1:1b:57:6f:3c:67:7b:5b:df:12:44:
70:ae:c0:9e:ac:0a:5c:94:99:10:c5:2f:8c:92:b2:
82:4e:45:d3:8b:8b:cd:74:5d:d3:44:46:f8:ed:10:
be:73:13:c0:f7:09:48:b6:98:d8:08:34:a7:9b:60:
b1:d0:7c:f4:5c:25:1f:d6:88:08:75:83:f1:54:d8:
b8:50:11:22:02:ea:af:3b:4c:04:7a:89:03:aa:b2:
51:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3D:43:F7:A4:A5:AD:C6:54:CE:7A:6D:D4:6A:FA:EF:DB:8F:7D:DD
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3135322e34342e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.44.0/24
Signature Algorithm: sha256WithRSAEncryption
41:d1:dd:ca:f6:b2:fd:61:e7:d6:d6:b3:e8:7f:5a:10:92:45:
12:56:66:72:19:b8:7b:3e:b3:46:00:38:ef:1c:d5:72:54:b9:
90:6a:12:76:23:77:ed:e8:99:a5:ee:38:43:b3:a5:4a:1a:db:
aa:4c:7a:cb:87:68:df:4b:7a:00:f8:ca:7c:6d:e1:4d:ad:ec:
df:e6:aa:83:74:cb:bf:e7:1b:7c:f3:f1:54:41:35:43:38:80:
74:f6:8e:38:50:cc:ca:3a:c1:91:5f:0c:a6:6c:a5:c2:ca:2a:
d9:37:91:1c:3e:3a:e3:28:75:c0:f6:60:8c:59:e4:2f:d0:6d:
98:c6:45:09:c3:ae:62:30:79:7c:2a:54:d9:2f:15:76:e9:5e:
a1:ed:f6:5f:eb:a7:4b:55:d7:6d:b1:c8:bf:58:ae:17:08:d7:
93:72:ce:c7:a1:d6:d5:b6:2e:c3:e0:a6:96:9d:51:39:34:96:
b3:4c:85:43:3d:e4:42:2e:9e:1e:0b:50:26:5c:ae:1c:dd:7f:
47:bd:59:05:45:5e:04:30:4a:33:7e:a2:57:ef:f5:9a:0e:a2:
a8:59:5f:e6:a4:86:67:45:a0:2b:55:25:f1:7f:09:98:6f:fe:
8b:a2:34:1d:bf:aa:e2:f8:53:cd:b4:ea:59:2d:0d:bb:ba:1c:
18:8e:c4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net