Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/34352e39352e3138302e302f32322d3234203d3e203437353833.roa
File: 34352e39352e3138302e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: ZjZk4+xTMjf6XAnQ57U+LXcOrbmEe21+DqRHz5BZBlY=
Subject key identifier: 2B:AA:F1:B9:E9:B9:E7:91:99:DD:AD:95:D7:14:D6:9B:06:EE:60:86
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 3E6D21F53A31BD1B28B8E60092A843D077381BCE
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e39352e3138302e302f32322d3234203d3e203437353833.roa
Signing time: Thu 26 Jan 2023 11:48:40 +0000
ROA not before: Thu 26 Jan 2023 11:43:40 +0000
ROA not after: Thu 25 Jan 2024 11:48:40 +0000
asID: 47583
IP address blocks: 45.95.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:6d:21:f5:3a:31:bd:1b:28:b8:e6:00:92:a8:43:d0:77:38:1b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 26 11:43:40 2023 GMT
Not After : Jan 25 11:48:40 2024 GMT
Subject: CN=2BAAF1B9E9B9E79199DDAD95D714D69B06EE6086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1b:0b:8c:b5:82:df:2b:e2:6c:44:4b:8c:fc:
60:ae:c7:c4:3e:57:d5:db:e6:0a:84:4b:e6:f2:5e:
5f:a9:52:80:ed:a5:e7:5b:ef:f5:b9:60:2b:49:17:
22:06:d2:ff:da:15:64:54:b3:79:76:b5:a5:81:52:
75:1d:85:1f:f4:4a:05:4d:74:a4:54:78:02:fa:88:
c3:44:f8:c7:af:95:84:33:90:ba:4c:9c:96:60:94:
12:6d:e8:f2:f1:bf:10:80:22:0b:e0:b3:86:4e:94:
89:fc:2a:47:28:7f:49:d5:56:b5:13:93:d9:85:4f:
ab:ef:a4:7b:10:37:ad:5c:47:e5:0f:4b:87:61:65:
05:3b:58:a1:d5:1d:04:16:73:db:c9:50:3f:69:a4:
cc:0f:35:c2:cb:cb:06:bb:7b:da:d5:85:a4:74:bf:
91:2a:3a:4b:78:12:e8:8a:dd:c9:9b:5f:6c:b0:c6:
5a:06:87:8f:a8:70:75:ec:54:3f:4c:3f:a4:cf:24:
9d:c4:08:f5:34:90:38:68:b2:98:97:87:d8:e0:6d:
a1:3a:ca:fa:f3:47:95:27:5a:22:3b:07:05:4f:0d:
1f:67:de:25:a1:60:ff:a3:87:9c:f7:98:b3:9f:8f:
12:48:1b:9a:7f:86:3a:b5:f3:9f:de:fa:29:28:72:
00:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AA:F1:B9:E9:B9:E7:91:99:DD:AD:95:D7:14:D6:9B:06:EE:60:86
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/34352e39352e3138302e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.180.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:ef:d8:9c:9a:40:aa:d6:10:c9:26:2f:c2:67:2b:25:97:8a:
83:dc:1a:63:f5:5b:2a:0e:e9:66:f7:ce:35:60:2d:d7:f2:b3:
bf:a0:44:77:7a:e5:4f:c1:da:ba:45:55:d4:00:b8:96:e9:76:
fb:a8:79:14:b7:11:7d:d1:d9:18:14:1b:f0:c3:04:ba:5e:69:
ca:22:af:de:cd:6b:7d:dd:3a:d4:4d:02:61:57:3e:e4:8b:a2:
16:18:b4:c1:47:54:3b:25:e4:ce:b5:0c:7e:61:c3:db:8b:d9:
fa:60:d8:26:1f:d8:f8:20:7b:f8:b7:b5:ae:b2:b2:f1:1d:7c:
55:de:7d:12:69:b0:59:77:37:82:57:f7:bd:77:6f:83:56:a5:
45:7d:1f:9e:ed:1f:f9:b2:b5:45:1f:1d:6f:6a:b7:2f:d4:10:
9d:b1:be:1e:ea:9b:54:c7:2c:0c:ce:55:10:3a:39:35:04:74:
1c:7c:2e:e8:c0:df:7c:f6:57:cc:39:c3:9f:e5:27:e3:24:4e:
ab:6d:33:63:23:79:61:74:c3:68:12:b8:7e:cc:f9:1c:97:32:
14:5c:ee:3a:3a:79:a2:b9:84:68:18:51:28:6a:79:ad:db:f5:
bf:43:22:cf:6d:ac:4d:f5:56:da:59:79:05:a2:90:2b:2f:34:
a7:a6:e9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net