Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e3135322e34362e302f32342d3234203d3e203437353833.roa
File: 34352e3135322e34362e302f32342d3234203d3e203437353833.roa (raw, json)
Hash identifier: 8fCmeGxFnGXLH+8o4hc9Ik7/JvM7Hbamif2xjc/tQLo=
Subject key identifier: 5F:F0:F2:33:6D:14:C1:93:DB:9E:89:0E:AE:22:0A:38:F9:4A:50:12
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4572F26B0FE21BC930792F13F1648DD5B934451A
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3135322e34362e302f32342d3234203d3e203437353833.roa
Signing time: Thu 26 Jan 2023 11:48:42 +0000
ROA not before: Thu 26 Jan 2023 11:43:42 +0000
ROA not after: Thu 25 Jan 2024 11:48:42 +0000
asID: 47583
IP address blocks: 45.152.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:72:f2:6b:0f:e2:1b:c9:30:79:2f:13:f1:64:8d:d5:b9:34:45:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:42 2023 GMT
Not After : Jan 25 11:48:42 2024 GMT
Subject: CN=5FF0F2336D14C193DB9E890EAE220A38F94A5012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1a:35:fd:e6:69:10:ac:d2:f5:ab:49:90:bc:
8c:84:65:49:96:eb:59:62:6b:db:ed:8a:67:0f:79:
25:bc:13:8a:5c:22:d6:35:06:35:d9:cd:56:d6:1d:
ee:46:f0:30:47:fb:a3:36:30:76:8e:84:76:6c:5b:
db:73:a5:c1:38:38:17:8c:91:f1:2a:bc:fd:1d:ec:
d7:8b:a7:ab:94:48:1d:1a:3a:80:57:39:fd:d0:64:
37:82:82:b8:89:2c:05:34:eb:eb:1c:ed:b4:55:16:
59:56:f0:d4:b2:c8:35:75:79:74:b6:30:84:9a:d1:
fe:48:ee:60:6b:4c:c5:47:ec:5e:de:3b:b1:d9:44:
0b:44:74:cf:6e:79:59:0a:79:f9:22:fd:e1:37:e9:
8c:62:4c:64:d2:1c:ff:8c:85:54:d9:fc:e5:eb:17:
16:67:12:d9:65:47:51:2c:29:57:69:16:3f:ed:27:
cc:95:2e:73:80:4c:c1:62:1f:54:47:ac:df:70:d2:
29:9f:b0:bb:3f:a5:13:d9:b0:f0:89:ab:66:22:6b:
23:be:42:53:d4:ca:73:a9:92:65:1e:1d:d9:a0:4c:
ea:a5:ad:7e:78:aa:ec:28:77:89:67:ea:81:70:a2:
51:f1:5e:86:a5:ca:91:8d:5c:5d:a1:c0:40:bd:7e:
06:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F0:F2:33:6D:14:C1:93:DB:9E:89:0E:AE:22:0A:38:F9:4A:50:12
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e3135322e34362e302f32342d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.46.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:ff:6c:fe:b3:3d:70:4d:96:e8:24:db:9c:cc:29:29:26:aa:
57:09:9c:55:24:eb:0d:79:6d:fc:3e:48:5f:ca:2d:91:e1:80:
9e:ca:32:e9:50:78:59:73:1c:53:13:b7:76:bc:22:e0:29:c5:
ca:0e:3b:ca:f0:56:ca:8a:ba:8e:30:ba:32:dc:f2:7d:ed:b2:
9a:12:9e:b3:2c:28:36:5d:fa:fb:1e:b3:ab:aa:70:43:f3:f3:
16:5d:f9:49:f8:7b:93:3c:0a:bd:93:54:f8:5c:43:c4:07:2c:
5b:94:3f:e8:79:9d:0b:87:20:0d:76:c3:dd:e9:f8:bd:48:15:
16:74:c0:de:87:51:9c:a4:d9:86:78:fc:c6:6a:47:51:5b:62:
ec:b4:68:9c:db:92:a5:49:0f:00:a0:e1:a8:05:fe:d2:dc:30:
d7:84:2e:b1:73:5c:df:73:dc:74:25:af:3e:66:c6:06:ec:7e:
f0:3d:1b:30:cd:46:f0:9c:9a:22:8b:51:c0:37:95:b6:be:ce:
91:d1:37:6c:47:b9:e7:92:74:17:6b:7e:50:fd:b9:26:be:9a:
d8:77:ad:5c:d6:29:fe:c6:c2:96:72:3c:17:92:cf:71:81:1b:
06:50:3f:95:87:75:d8:20:af:23:df:d8:e6:f6:16:94:d7:b0:
d9:43:99:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net