Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e392e3138382e302f32322d3234203d3e203437353833.roa
File: 34352e392e3138382e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 140EH3NyppRYyYzrWHxah3d8MbXTR3lWuW8TDTsQaeA=
Subject key identifier: 63:09:C8:B0:3F:B2:E7:0A:74:E7:AB:20:10:17:C8:1E:7B:06:1D:2E
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 60739147566EAD4D01AAB23521BF0E91D77B21D3
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e392e3138382e302f32322d3234203d3e203437353833.roa
Signing time: Thu 26 Jan 2023 11:48:41 +0000
ROA not before: Thu 26 Jan 2023 11:43:41 +0000
ROA not after: Thu 25 Jan 2024 11:48:41 +0000
asID: 47583
IP address blocks: 45.9.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:73:91:47:56:6e:ad:4d:01:aa:b2:35:21:bf:0e:91:d7:7b:21:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:41 2023 GMT
Not After : Jan 25 11:48:41 2024 GMT
Subject: CN=6309C8B03FB2E70A74E7AB201017C81E7B061D2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a5:96:9e:05:ac:c2:eb:47:29:6b:0b:e0:4d:
b9:66:ee:55:c1:e6:0f:7d:bb:00:c1:cb:a7:01:d4:
c9:21:a0:97:37:e2:2c:b0:5b:32:17:14:78:9c:ef:
23:fc:b3:bc:d6:c4:02:da:a8:e8:61:45:41:db:da:
f5:fe:45:2c:d3:4b:75:17:69:ca:f0:e6:7c:35:3b:
96:ab:91:b4:b4:a7:c8:91:24:d1:fa:ad:f5:3d:a9:
0f:29:18:03:f5:92:a0:2d:08:9e:5d:65:cb:5c:43:
26:df:87:06:d1:7b:c8:51:14:d3:dc:74:02:34:ac:
db:4b:aa:e5:b1:36:1a:bc:fc:4c:1c:23:b4:5a:79:
b1:1a:7b:20:49:8d:57:14:28:e6:55:8e:e0:31:f7:
36:67:09:4f:88:b8:23:8f:37:f0:4d:22:1b:62:db:
a2:88:b6:c7:d9:5b:39:86:ad:48:32:52:c8:76:d0:
7c:df:60:13:ca:e1:4b:5d:97:bc:9b:27:96:7a:d9:
18:63:2c:f6:ad:5f:d2:3c:db:82:da:b4:e6:f0:a2:
3d:b9:cb:ef:0d:b4:48:8b:c0:8b:bd:3a:5f:76:25:
b7:90:14:96:b3:b1:32:7e:54:63:59:f6:9c:fa:98:
dc:cc:fb:21:50:cd:a2:04:df:a4:22:a5:af:0e:ad:
3c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:09:C8:B0:3F:B2:E7:0A:74:E7:AB:20:10:17:C8:1E:7B:06:1D:2E
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e392e3138382e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.188.0/22
Signature Algorithm: sha256WithRSAEncryption
38:b2:02:e7:2c:82:6a:5c:22:6a:9a:df:35:6e:4a:4b:82:a5:
05:99:f1:1d:e8:16:b7:e1:06:07:2f:82:96:8e:6f:eb:f4:e2:
f1:ff:56:9f:4a:3a:fe:75:14:eb:82:19:88:4d:09:ed:1d:c6:
f9:25:8d:0e:55:d1:bf:8f:cf:29:39:cd:c6:8e:97:a8:56:f9:
67:e9:cc:3c:d7:28:b0:48:13:92:75:e8:5d:f1:7b:04:11:f3:
59:ac:63:e5:9c:51:55:fb:26:65:4f:fe:e4:f0:73:44:1a:6b:
98:90:59:66:19:b3:16:7b:bf:5f:82:23:09:00:5d:79:d3:1a:
c4:3f:45:57:f5:5a:08:51:04:f2:4e:17:d2:53:3d:2b:06:11:
e8:6a:01:fa:e0:1a:78:b9:ee:e5:be:9b:24:b3:13:38:95:99:
35:c5:98:5a:eb:d0:68:40:ce:97:14:64:55:59:c7:81:80:c1:
c8:04:1a:2f:93:ba:a3:c3:45:e8:75:b5:07:5d:86:c0:75:9e:
53:66:16:70:04:6b:c5:b3:da:a8:06:3b:c6:ba:db:9d:60:94:
aa:09:26:23:cb:59:33:70:b9:ff:65:17:bd:16:0b:f1:30:18:
1f:cb:86:9a:f3:1f:1b:e0:cb:cf:f4:04:e4:a5:75:79:c0:fa:
15:d0:4c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net