Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/37372e37382e37322e302f32342d3234203d3e20313336373837.roa
File: 37372e37382e37322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: eqh2unhdj/23exalWkdVWa6ndUfx56lpEhFDjox+lbk=
Subject key identifier: 46:00:C5:E2:C4:56:0B:F6:FB:70:DC:0B:06:D2:51:D1:E5:4C:5A:04
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 6E526C731372D733900C4BC9B49A638349ABF124
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/37372e37382e37322e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Jan 2023 12:25:14 +0000
ROA not before: Fri 20 Jan 2023 12:20:14 +0000
ROA not after: Fri 19 Jan 2024 12:25:14 +0000
asID: 136787
IP address blocks: 77.78.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:52:6c:73:13:72:d7:33:90:0c:4b:c9:b4:9a:63:83:49:ab:f1:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Jan 20 12:20:14 2023 GMT
Not After : Jan 19 12:25:14 2024 GMT
Subject: CN=4600C5E2C4560BF6FB70DC0B06D251D1E54C5A04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:20:f3:9e:65:2b:e0:c6:42:77:b0:f1:84:dc:
78:97:26:09:1d:53:f6:5f:91:ce:24:ec:3a:8c:47:
26:1e:f3:30:66:b1:91:2e:4e:1f:d7:76:32:81:7a:
05:99:ef:63:d5:62:11:5d:05:7b:8f:71:39:f5:62:
2e:a9:90:68:a1:4e:b1:6e:98:ca:85:82:f3:36:50:
5e:33:84:af:ea:07:1a:63:19:c6:e3:a5:56:ee:a8:
6f:c6:34:00:e5:4c:ea:f2:fc:00:c8:bc:77:21:91:
55:21:50:6a:02:8d:cd:99:42:7f:83:94:16:b8:ae:
ea:86:28:8a:28:d4:5d:cb:d8:19:91:66:95:1c:14:
ea:05:3f:f7:2a:f0:19:7e:15:e9:6d:81:73:94:e9:
13:6e:c7:89:69:12:c0:03:f4:71:de:fe:f9:46:7b:
2e:9e:7c:0a:83:5f:83:29:1a:96:31:c4:ed:c5:95:
9a:39:cf:a4:57:52:bc:1c:73:e1:cf:91:ae:b4:aa:
3a:9d:19:8f:93:3b:99:3e:06:4a:5e:88:f7:bc:65:
34:fc:d3:8d:e9:b9:fd:f8:92:74:de:01:38:02:35:
fb:5d:3d:6c:09:88:80:17:f1:92:64:dd:7a:1d:a0:
3d:09:a8:52:6c:bf:42:80:5a:f7:49:fb:67:61:99:
a0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:00:C5:E2:C4:56:0B:F6:FB:70:DC:0B:06:D2:51:D1:E5:4C:5A:04
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/37372e37382e37322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.72.0/24
Signature Algorithm: sha256WithRSAEncryption
85:49:96:14:e0:9f:c3:57:01:89:8b:e1:3f:d4:23:b0:bc:4a:
b8:c7:88:0e:36:f6:e2:46:a5:58:63:d5:e3:f1:d7:e3:ad:31:
55:de:a2:25:0d:a3:2c:96:93:8c:48:70:8c:89:f1:af:79:c2:
2c:68:a7:74:0c:48:2b:70:47:27:13:43:ab:b8:b1:9e:a8:2b:
ca:e5:e5:2d:0d:cd:bd:ab:a8:f6:60:eb:4c:1c:f3:09:d1:9d:
7b:f1:92:da:c7:ac:a2:4c:fb:61:ce:0c:b5:2f:bb:6b:f5:37:
d7:c0:10:69:e1:ec:5f:e4:cd:32:2c:34:58:ad:b8:74:cd:1b:
98:45:8f:dd:8b:75:a3:f1:bb:7b:42:af:50:82:12:c7:52:a3:
96:90:c5:8d:b6:a6:2b:90:17:65:34:44:e9:95:72:f3:26:e1:
93:05:0a:5e:2d:45:78:ea:e7:bd:b3:1b:20:ea:91:65:fd:52:
8f:01:b8:be:6d:62:18:f4:03:67:83:37:54:d4:cc:95:8e:61:
49:dd:4b:81:7b:e4:c8:00:d0:1d:ac:63:cc:0f:06:f0:dc:1f:
49:37:6e:e8:1d:eb:65:28:87:c7:98:ab:ab:fd:06:d6:a6:0b:
b7:f8:1e:ae:12:09:4c:72:c6:86:5b:cc:58:b3:f2:6f:2e:f7:
e5:73:d3:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net