Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/37372e37382e37302e302f32332d3234203d3e20313336373837.roa
File: 37372e37382e37302e302f32332d3234203d3e20313336373837.roa (raw, json)
Hash identifier: vFJ7cgLuQpPvj75kvXkiiqJU4YtyqJMGpKKOmpH7Y5c=
Subject key identifier: B8:FC:E4:D6:84:11:44:30:98:9C:7C:22:E4:22:88:5A:C1:10:FF:CB
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 48DD6D6FA57459A2FF817ECE138A647D440273C0
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/37372e37382e37302e302f32332d3234203d3e20313336373837.roa
Signing time: Mon 07 Nov 2022 10:53:59 +0000
ROA not before: Mon 07 Nov 2022 10:48:59 +0000
ROA not after: Mon 06 Nov 2023 10:53:59 +0000
asID: 136787
IP address blocks: 77.78.70.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:dd:6d:6f:a5:74:59:a2:ff:81:7e:ce:13:8a:64:7d:44:02:73:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 7 10:48:59 2022 GMT
Not After : Nov 6 10:53:59 2023 GMT
Subject: CN=B8FCE4D684114430989C7C22E422885AC110FFCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4d:47:ae:43:f1:e3:d6:6b:5e:87:01:a2:f1:
a9:ce:9c:7b:bb:40:6c:46:6b:03:49:2a:95:3c:c0:
09:c8:73:68:80:65:a7:c1:5d:ed:b8:59:59:69:5d:
ac:55:90:88:ce:a3:38:b9:35:70:50:08:94:b3:64:
bb:eb:11:c3:a8:c1:23:c9:05:f9:78:84:bc:27:4e:
30:6c:14:f0:3d:a7:fc:f8:cd:d4:d0:5e:a5:09:6c:
a1:61:e3:1c:b7:36:6e:97:26:0c:27:9f:2f:40:95:
26:1a:46:8c:cf:f8:74:07:eb:9a:e7:29:4d:cb:64:
1c:1f:62:ff:09:c0:99:10:c8:7b:64:37:1c:4a:6b:
4d:a9:9a:87:51:d1:1b:2e:a6:8d:ff:17:5d:0b:49:
5b:77:6b:c1:f0:ca:26:03:de:c1:9f:35:55:f2:b2:
fa:d6:74:cf:e9:cc:66:52:1f:f8:a6:2d:aa:43:fd:
5b:ed:c3:ae:8d:3c:d5:10:70:7a:fb:3a:1c:a9:9f:
e5:08:d8:83:11:2a:45:ba:80:77:38:2f:35:7a:33:
52:c2:b5:fd:44:92:dc:b9:6a:0d:c9:36:e9:14:d9:
58:2e:1b:18:f8:be:fd:36:91:c5:dc:d4:fa:54:cd:
eb:78:87:7f:d6:54:94:d7:62:14:2e:21:67:5c:0a:
2c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FC:E4:D6:84:11:44:30:98:9C:7C:22:E4:22:88:5A:C1:10:FF:CB
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/37372e37382e37302e302f32332d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.70.0/23
Signature Algorithm: sha256WithRSAEncryption
18:ce:70:e1:a1:d7:ec:a0:10:29:68:ce:fe:7f:3e:7a:6c:09:
50:6c:b0:fd:4f:64:b1:8a:29:06:c3:03:3d:65:3e:b6:d4:e7:
ec:5a:be:2a:c7:7b:42:6f:74:c7:c9:f1:9d:ae:83:8b:9d:01:
48:9f:66:c7:9d:de:90:86:f2:30:eb:d3:c6:12:ab:49:3f:08:
0c:ef:39:b9:75:a8:c9:67:ae:0f:d9:33:57:35:54:9d:fc:7b:
90:b9:8f:6c:79:89:08:6d:0d:e7:0f:87:54:87:49:44:56:52:
63:3e:9e:78:65:7b:84:5b:2e:4a:5d:75:b6:59:20:70:54:92:
51:c9:1d:87:3c:6e:17:d8:94:54:68:6d:5d:d2:3d:3c:84:17:
5b:46:2c:f5:91:7a:a9:2d:ee:c6:07:87:b9:59:b0:c6:1e:14:
1c:81:c4:49:39:26:8b:ac:f8:a8:f9:62:4f:8a:7d:99:e7:6f:
13:5b:41:72:13:b9:a4:23:7c:b8:c1:0a:c0:15:f2:fb:5f:0b:
a8:75:b0:a0:ef:2d:5c:6e:3e:2f:5e:cd:75:e1:0c:33:9d:49:
21:f4:63:e6:d6:b0:e3:5b:a7:1d:26:0e:90:11:ea:45:27:06:
ee:a3:6f:46:39:a8:80:95:05:73:1c:fe:b7:ed:c8:64:31:62:
89:4a:0c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net