Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e38342e33392e302f32342d3234203d3e20323037313337.roa
File: 34352e38342e33392e302f32342d3234203d3e20323037313337.roa (raw, json)
Hash identifier: MgFWiESP7YIGjOY6TSGLdm/6sshkNiZVRcufxTGgeEk=
Subject key identifier: 79:7D:3D:A1:3E:0D:C5:AB:D0:B9:D6:20:DB:70:45:09:8C:1A:93:9F
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 1A142307226923EF5870273F4F60BCF86BF0C753
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e38342e33392e302f32342d3234203d3e20323037313337.roa
Signing time: Tue 13 Dec 2022 17:01:23 +0000
ROA not before: Tue 13 Dec 2022 16:56:23 +0000
ROA not after: Tue 12 Dec 2023 17:01:23 +0000
asID: 207137
IP address blocks: 45.84.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:14:23:07:22:69:23:ef:58:70:27:3f:4f:60:bc:f8:6b:f0:c7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 13 16:56:23 2022 GMT
Not After : Dec 12 17:01:23 2023 GMT
Subject: CN=797D3DA13E0DC5ABD0B9D620DB7045098C1A939F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3a:79:09:b4:7b:fc:08:b8:be:1e:a1:a0:d4:
ff:33:ba:17:e7:68:e3:b9:f2:b4:ff:39:84:69:db:
25:d3:af:3c:25:2b:ee:75:27:e7:02:23:24:d7:02:
f3:fc:b7:da:8c:61:fe:bd:29:6e:9c:fd:04:4c:c1:
37:6c:7f:cc:9b:36:d6:ca:28:c2:11:6f:25:ed:8b:
6b:e5:90:75:9c:3e:54:10:53:02:8f:72:4f:82:02:
d2:37:c0:0d:b6:06:91:e9:57:59:6f:71:c7:0f:94:
99:d2:66:3c:28:55:dd:e6:e3:59:1c:fe:d6:d8:b1:
5b:b3:be:31:33:4e:18:61:34:53:87:7f:4a:80:34:
fd:89:d6:95:66:5f:ba:a2:1d:04:0e:80:a9:20:75:
de:30:04:80:f3:6e:0c:ad:07:a3:4e:6b:08:b8:1f:
c9:a7:b0:da:c7:2b:cb:a4:c1:08:03:53:0b:2c:34:
30:a5:c2:39:b4:76:a4:4f:82:2d:f3:a1:94:4b:a4:
38:66:23:71:ca:86:89:b9:4e:b1:e5:8e:88:24:a6:
41:56:da:16:c7:53:66:a9:34:6f:57:71:d5:15:e8:
29:5b:cc:60:8e:50:98:c5:fe:a3:20:16:d3:37:94:
54:ef:a8:c9:39:23:a6:fd:aa:df:8a:a5:09:15:ed:
14:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:7D:3D:A1:3E:0D:C5:AB:D0:B9:D6:20:DB:70:45:09:8C:1A:93:9F
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e38342e33392e302f32342d3234203d3e20323037313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.39.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:d3:5f:74:82:7e:de:be:4e:d3:ae:b9:78:93:60:73:dc:57:
6a:13:1d:38:06:bf:7e:d6:7b:d5:c5:cd:8c:da:46:b7:0d:db:
2a:79:4c:8a:7e:83:b2:99:44:69:9f:c7:fa:e8:ce:26:e2:4e:
74:df:07:ac:a3:85:5f:28:4f:a0:f6:5b:aa:91:40:56:00:2b:
66:bc:4c:38:2f:c2:7e:16:37:2c:46:fb:67:ba:03:ba:20:ca:
82:0c:0c:54:7d:69:78:1d:cd:19:28:dd:17:7b:55:69:24:5e:
b1:08:72:a2:78:e1:17:81:ab:66:33:77:70:0d:4c:28:ac:03:
a2:fb:87:40:78:64:08:1b:46:3a:bb:e8:03:1f:aa:70:e3:81:
d2:dc:6a:5f:36:fe:32:0d:6d:d9:d4:43:d0:1c:5a:f0:b2:7f:
ed:e2:4f:67:03:af:47:97:56:66:f1:1f:70:00:80:86:cf:e1:
27:9d:10:49:af:1d:4e:29:b2:48:27:ed:e6:90:f8:8f:71:0a:
b6:71:ac:8b:32:ab:4c:a3:45:c2:d1:48:14:c4:f8:e9:49:7e:
98:d7:81:b2:62:f9:3b:02:af:27:c2:6c:58:95:82:c8:92:9e:
bf:49:13:c6:f3:08:b1:f5:85:1f:bb:d3:74:ed:b4:7d:41:41:
15:9f:35:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net