Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e39302e3130382e302f32322d3234203d3e203437353833.roa
File: 34352e39302e3130382e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 5VxyPKT0HiyP7A+JB7Z18VOWDqOcnZcE0bdM0IpqH1w=
Subject key identifier: 45:07:FF:C7:51:A9:6E:BB:C2:38:CF:0B:24:A6:62:FC:1A:CF:DD:64
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 13475EC72E7C31CD4395187CAD94279280CFF1A0
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e39302e3130382e302f32322d3234203d3e203437353833.roa
Signing time: Thu 26 Jan 2023 11:48:42 +0000
ROA not before: Thu 26 Jan 2023 11:43:42 +0000
ROA not after: Thu 25 Jan 2024 11:48:42 +0000
asID: 47583
IP address blocks: 45.90.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:47:5e:c7:2e:7c:31:cd:43:95:18:7c:ad:94:27:92:80:cf:f1:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:42 2023 GMT
Not After : Jan 25 11:48:42 2024 GMT
Subject: CN=4507FFC751A96EBBC238CF0B24A662FC1ACFDD64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b7:9b:22:b3:58:21:51:3b:9e:3b:95:8c:fd:
2b:bb:ce:d8:ec:ec:34:aa:08:01:82:83:6c:61:0c:
c5:ca:92:55:c5:bf:82:12:87:a6:5a:b2:26:17:88:
16:bd:3c:01:be:c5:3e:76:18:38:a2:ad:f3:d2:fa:
4b:95:3c:cf:6e:63:f3:4e:9d:2c:03:86:f8:e0:f2:
5c:4f:88:2c:31:eb:28:4f:94:37:fe:ad:57:70:f3:
b7:f7:69:62:88:ce:85:18:20:eb:a7:eb:3e:a6:88:
fb:cf:e3:94:8a:58:e7:8d:42:08:6d:cd:0d:48:dd:
9b:6f:b1:21:4f:54:d8:df:29:b3:3f:fd:13:15:a5:
f8:ec:c1:3a:8a:f6:c3:2b:69:e9:0e:8d:fb:99:0b:
04:7c:5e:9a:02:65:13:51:7b:b5:97:6f:b4:e6:c6:
3f:e7:df:8a:10:9c:cc:d3:f2:b0:b2:bb:49:54:a5:
79:38:ce:2d:26:51:c2:61:dc:c8:4c:31:a2:bb:1c:
f9:e0:a9:b9:4c:94:0d:09:55:fd:6b:0d:5f:49:cc:
38:ab:3a:04:b0:71:e2:97:12:81:63:07:f1:b7:17:
53:43:f9:4a:c2:ad:9f:db:9f:f3:9c:89:94:46:ed:
30:d7:d9:57:8a:52:31:51:36:72:87:fa:2f:a4:63:
7a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:07:FF:C7:51:A9:6E:BB:C2:38:CF:0B:24:A6:62:FC:1A:CF:DD:64
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e39302e3130382e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.108.0/22
Signature Algorithm: sha256WithRSAEncryption
04:ce:dc:f0:1b:dc:e0:f2:18:69:e2:95:5c:32:f2:99:6c:6b:
9a:08:93:73:7d:7a:9b:39:d1:b0:be:42:7d:a7:f1:69:81:5e:
53:d7:50:29:65:3f:a9:01:8c:da:d2:25:d9:4d:e3:e7:13:7e:
71:73:76:40:c5:5b:b2:cc:e0:bc:b8:98:8f:1c:aa:8f:de:0d:
e2:1e:43:bd:fd:fd:9a:fe:74:5f:a8:00:7f:ce:7c:ae:68:2d:
03:34:c6:d0:39:30:1e:14:8f:b2:fc:2a:57:7d:e7:c7:a1:24:
69:fe:51:f7:f5:17:d3:ba:1f:de:ee:cc:e8:43:5b:92:bf:70:
53:54:94:60:cb:31:fa:50:d7:a2:eb:10:3a:bc:e4:88:3b:af:
32:43:91:89:ab:e6:bc:5f:23:50:15:18:9c:10:13:c4:09:1d:
e0:97:58:ea:28:35:b4:e4:1f:e3:34:0c:c2:bc:10:e5:70:e8:
d9:52:33:5d:ec:a9:9e:b2:32:e3:d4:b7:c6:6a:f9:56:71:2c:
76:a1:4d:2d:22:27:0f:7d:3b:56:02:7f:74:23:44:1a:44:1d:
d1:77:f0:21:c7:79:96:9f:3f:ef:c5:ea:8c:72:a0:2a:f7:2b:
2b:08:b7:5b:46:82:62:b1:a9:16:fb:a4:30:6f:41:19:4b:07:
15:a5:b7:85
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUE0dexy58Mc1DlRh8rZQnkoDP8aAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMzAxMjYxMTQzNDJaFw0yNDAxMjUxMTQ4NDJaMDMxMTAvBgNV
BAMTKDQ1MDdGRkM3NTFBOTZFQkJDMjM4Q0YwQjI0QTY2MkZDMUFDRkRENjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHt5sis1ghUTueO5WM/Su7ztjs
7DSqCAGCg2xhDMXKklXFv4ISh6ZasiYXiBa9PAG+xT52GDiirfPS+kuVPM9uY/NO
nSwDhvjg8lxPiCwx6yhPlDf+rVdw87f3aWKIzoUYIOun6z6miPvP45SKWOeNQght
zQ1I3ZtvsSFPVNjfKbM//RMVpfjswTqK9sMraekOjfuZCwR8XpoCZRNRe7WXb7Tm
xj/n34oQnMzT8rCyu0lUpXk4zi0mUcJh3MhMMaK7HPngqblMlA0JVf1rDV9JzDir
OgSwceKXEoFjB/G3F1ND+UrCrZ/bn/OciZRG7TDX2VeKUjFRNnKH+i+kY3rvAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQURQf/x1GpbrvCOM8LJKZi/BrP3WQwHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zNDM1MmUzOTMwMmUzMTMwMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3
MzUzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCLVpsMA0GCSqGSIb3DQEBCwUAA4IBAQAEztzwG9zg
8hhp4pVcMvKZbGuaCJNzfXqbOdGwvkJ9p/FpgV5T11ApZT+pAYza0iXZTePnE35x
c3ZAxVuyzOC8uJiPHKqP3g3iHkO9/f2a/nRfqAB/znyuaC0DNMbQOTAeFI+y/CpX
fefHoSRp/lH39RfTuh/e7szoQ1uSv3BTVJRgyzH6UNei6xA6vOSIO68yQ5GJq+a8
XyNQFRicEBPECR3gl1jqKDW05B/jNAzCvBDlcOjZUjNd7KmesjLj1LfGavlWcSx2
oU0tIicPfTtWAn90I0QaRB3Rd/Ahx3mWnz/vxeqMcqAq9ysrCLdbRoJisakW+6Qw
b0EZSwcVpbeF
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net