Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38312e302e3231382e302f32332d3332203d3e203531313637.roa
File: 38312e302e3231382e302f32332d3332203d3e203531313637.roa (raw, json)
Hash identifier: R6ojE1yw15TpS8YIar2STgXZaraScyNM7V+h81qlTWk=
Subject key identifier: 65:A5:55:8E:72:3C:FF:B2:B8:E2:3E:32:86:2D:54:7F:66:25:C3:33
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 689FD26C1D220F505D7B4BDE221F1C4170F6B153
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38312e302e3231382e302f32332d3332203d3e203531313637.roa
Signing time: Tue 22 Nov 2022 11:24:46 +0000
ROA not before: Tue 22 Nov 2022 11:19:46 +0000
ROA not after: Tue 21 Nov 2023 11:24:46 +0000
asID: 51167
IP address blocks: 81.0.218.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:9f:d2:6c:1d:22:0f:50:5d:7b:4b:de:22:1f:1c:41:70:f6:b1:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 22 11:19:46 2022 GMT
Not After : Nov 21 11:24:46 2023 GMT
Subject: CN=65A5558E723CFFB2B8E23E32862D547F6625C333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5e:be:90:e8:08:50:2c:40:a1:2d:94:91:bd:
15:46:4e:3a:ef:67:e1:e4:24:9e:45:98:11:fe:cd:
bd:30:ad:46:dc:81:c5:57:dd:e4:bc:f2:1b:4f:80:
3c:5c:3a:d6:9b:ed:9f:5e:15:57:47:a0:fd:6b:3c:
07:eb:03:14:8e:0e:23:7f:37:d7:f2:a9:42:6f:96:
4f:6a:8e:c0:9c:e9:b3:7f:02:ef:40:8d:6b:45:f0:
33:6a:d5:8f:85:be:78:80:78:d2:49:14:3c:ee:6b:
39:21:eb:3f:e1:5c:73:83:ea:f2:f1:4e:d0:ac:b4:
04:2f:50:67:3f:a3:75:bd:24:2c:70:f9:58:5a:3d:
cd:a9:29:38:50:46:a8:98:e6:bd:30:8f:db:c6:93:
51:0d:d7:84:07:ea:21:90:63:f8:7f:77:50:37:4e:
91:c5:7b:a1:df:79:00:0e:d8:4e:0d:55:8c:eb:29:
f2:fe:cd:b3:85:d9:ce:b9:67:90:e9:25:00:58:51:
9d:e6:59:ff:b1:55:9b:75:6c:d1:b1:46:0a:37:d6:
2b:65:8e:45:1e:e7:97:2b:1b:f8:34:14:4d:8f:4e:
9d:09:7a:1b:f4:54:07:45:aa:5d:3b:59:6b:6c:7e:
25:b8:4a:f3:51:7c:42:b1:cb:9e:16:31:0e:6e:e8:
e9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A5:55:8E:72:3C:FF:B2:B8:E2:3E:32:86:2D:54:7F:66:25:C3:33
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38312e302e3231382e302f32332d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.0.218.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:da:14:9d:5b:8e:2b:15:12:73:d5:c8:ea:2b:4b:be:bd:b9:
90:ff:97:65:c6:3c:ae:6f:56:de:af:d3:45:6b:1a:a4:fd:82:
1b:cb:5c:6b:3b:ce:1f:13:6b:c1:7a:07:d6:03:8c:f7:84:5c:
68:f8:f9:94:9b:dc:17:de:09:30:b4:97:11:8f:33:76:72:a2:
d5:a1:08:0e:9c:01:a9:f5:5c:8b:05:8f:75:b0:6e:1a:d1:10:
6f:f2:22:31:90:66:e1:6f:d0:10:bb:79:11:7d:b7:4a:19:5c:
4f:9e:9f:54:25:4a:45:8a:00:dc:d7:83:64:7a:b2:0d:38:e1:
3a:d7:c1:34:17:2b:62:d5:09:de:87:23:c5:50:b7:b6:84:38:
bb:2b:0e:84:af:98:7f:ee:f8:ff:49:51:39:53:52:23:b0:9b:
6e:48:55:e2:e0:c1:16:1c:99:c7:d2:7f:9a:d3:55:b8:a9:22:
78:cb:91:10:b7:7e:01:4e:95:e9:f1:f8:20:ef:f6:df:d7:37:
e7:ca:61:6d:18:ee:b5:f7:6d:3e:68:2d:36:a9:ce:a3:be:97:
4a:57:3b:64:78:3a:3d:ab:1e:82:ff:d9:38:f7:a8:e5:fb:c5:
1f:db:67:fe:45:66:7c:ad:ae:d0:7e:c0:71:7c:50:b7:e6:d5:
29:8e:4d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net