Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38302e37352e32342e302f32312d3234203d3e20313938303930.roa
File: 38302e37352e32342e302f32312d3234203d3e20313938303930.roa (raw, json)
Hash identifier: NWHsqjyI5NJkqPbYMbFoaydQk9x7TQOMcW7wuXyNCpI=
Subject key identifier: 6A:C8:2A:0B:88:E7:73:45:7A:21:78:33:40:8A:CB:C4:1D:28:4A:A8
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 3D2601FA96930E683C512AC7999A5E8D25DAF65E
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38302e37352e32342e302f32312d3234203d3e20313938303930.roa
Signing time: Sat 22 Oct 2022 04:34:29 +0000
ROA not before: Sat 22 Oct 2022 04:29:29 +0000
ROA not after: Sat 21 Oct 2023 04:34:29 +0000
asID: 198090
IP address blocks: 80.75.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:26:01:fa:96:93:0e:68:3c:51:2a:c7:99:9a:5e:8d:25:da:f6:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:29 2022 GMT
Not After : Oct 21 04:34:29 2023 GMT
Subject: CN=6AC82A0B88E773457A217833408ACBC41D284AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:91:dc:6d:86:d9:68:62:66:eb:e1:96:ed:09:
30:c3:15:32:4b:8c:f9:cf:ee:40:f9:44:2b:e9:06:
5b:b7:a8:3a:fd:79:df:e6:55:48:1d:e4:4f:b9:45:
a2:74:44:4c:b0:00:c8:fa:71:87:64:60:56:b0:0c:
a4:94:5e:62:61:ac:5a:1c:ec:53:49:b1:75:de:3c:
82:b7:69:65:95:ea:a5:6b:41:fd:f9:38:02:f4:4e:
2d:6c:21:fb:83:09:59:eb:30:54:c4:04:64:90:46:
fc:8f:4f:c7:de:7d:ad:e5:68:6d:7b:9c:50:67:07:
8f:8d:f3:64:43:f9:c6:9a:ac:23:6e:0b:c6:3d:31:
d4:80:6e:59:89:4b:7f:15:81:c6:74:43:ea:7e:0b:
87:79:e2:31:15:db:32:36:87:3e:a0:25:be:ce:79:
22:37:80:a7:d3:19:f7:7d:a3:3f:5d:81:52:de:39:
70:9d:b5:31:ba:75:bd:41:e9:4e:6d:74:44:2d:9a:
2f:b9:c3:a8:61:bb:6a:72:0c:c8:d2:72:d4:b0:b1:
2d:69:07:07:db:80:77:4b:0e:da:2a:00:4f:d1:03:
40:17:2d:8b:c2:59:5c:30:67:d4:01:cf:8f:18:5f:
13:4d:3b:6d:f8:d4:7e:a6:86:18:da:34:65:ae:b3:
47:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C8:2A:0B:88:E7:73:45:7A:21:78:33:40:8A:CB:C4:1D:28:4A:A8
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38302e37352e32342e302f32312d3234203d3e20313938303930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.24.0/21
Signature Algorithm: sha256WithRSAEncryption
02:52:b6:39:88:f2:51:49:7d:b9:81:ab:e7:40:c5:a5:7b:c1:
6e:33:2a:37:49:e2:32:86:3d:cc:15:00:71:6b:e2:a4:7b:21:
aa:bd:fa:a6:10:8f:a6:49:a3:88:1b:7d:04:3e:4a:db:04:38:
25:79:0c:39:99:41:53:38:1f:f4:a9:0e:27:79:1c:78:9f:7b:
2b:9e:04:e2:bb:51:ad:4a:96:85:a8:73:86:2d:8e:1c:9a:d0:
df:d9:2d:32:1c:c2:27:41:11:0b:b2:83:9e:a1:ec:da:11:6f:
03:93:7b:69:b6:18:27:5e:a0:cb:dd:b6:da:3d:e1:bf:30:00:
93:51:68:61:41:51:0c:9e:37:bb:b8:8f:df:09:8d:49:83:53:
cb:bf:9e:ad:41:25:9d:48:9b:f8:a7:8b:34:81:1a:95:84:67:
49:3b:f6:35:f2:9c:3d:13:33:be:25:42:73:32:c0:16:78:47:
e6:d2:6a:1b:52:e3:1b:13:b6:74:ea:a1:de:4b:47:9f:85:ea:
8f:df:9b:bf:9d:ac:54:55:c0:8b:9d:a1:0d:d9:e4:4d:1c:27:
db:f1:fb:97:51:8a:ad:00:1f:98:93:83:96:ce:51:91:c6:b2:
b9:5e:b3:18:9d:47:2f:e2:c8:96:58:2f:87:31:5e:b7:24:7e:
3b:3f:f7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net