Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38322e3230382e32302e302f32322d3332203d3e203531313637.roa
File: 38322e3230382e32302e302f32322d3332203d3e203531313637.roa (raw, json)
Hash identifier: rBYvLF3lyru4tG4wgMgesdmPW2lcJy0J2DGzUPMoMjs=
Subject key identifier: 26:18:64:02:55:85:4A:6A:00:79:17:77:94:30:BE:31:FD:3F:F9:95
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 1F72CCF4BE47AD9D5F5714A5A156566FBF7D15FC
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38322e3230382e32302e302f32322d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:34:31 +0000
ROA not before: Sat 22 Oct 2022 04:29:31 +0000
ROA not after: Sat 21 Oct 2023 04:34:31 +0000
asID: 51167
IP address blocks: 82.208.20.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:72:cc:f4:be:47:ad:9d:5f:57:14:a5:a1:56:56:6f:bf:7d:15:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:31 2022 GMT
Not After : Oct 21 04:34:31 2023 GMT
Subject: CN=2618640255854A6A007917779430BE31FD3FF995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f8:c8:10:dd:b9:23:c9:5f:8e:bf:03:fe:74:
10:93:4d:c1:b9:11:3f:e1:cc:c3:45:ee:04:1b:68:
17:80:ab:f6:f8:c4:f0:08:6f:79:e2:78:07:2d:2b:
64:f8:02:0a:de:54:9c:66:87:6e:b6:b5:a9:80:3a:
d1:0e:b4:7f:10:dc:de:96:37:0b:a2:5c:5a:a9:a2:
f9:5f:47:06:11:40:5b:b3:7d:39:77:21:b2:c7:0b:
97:f5:c9:fa:77:2a:a8:24:71:cd:d2:1a:44:32:36:
94:90:3a:d3:c9:05:be:d0:a3:67:05:5e:5f:d2:d9:
15:65:fd:a1:19:34:2c:86:8b:cf:f9:69:4f:44:d5:
f0:4e:10:88:bc:72:c6:1a:dd:08:89:c4:cf:72:ca:
6e:8c:23:9b:16:17:16:ad:6c:d0:61:78:12:76:11:
79:f4:3b:20:9d:f9:1a:f4:d7:12:11:b3:44:2a:46:
65:6b:cd:87:29:cc:89:e2:7a:9b:b9:41:38:1c:c4:
72:3f:21:7d:1d:e8:95:3b:05:99:32:c5:9a:f5:dc:
7f:14:4d:6d:55:37:96:6d:16:9d:26:28:7f:1f:50:
f5:7e:2c:f1:02:7b:16:3a:c3:82:98:97:d7:85:23:
b0:54:92:ec:a3:12:2e:d6:0c:28:0c:8a:8d:b8:13:
e8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:18:64:02:55:85:4A:6A:00:79:17:77:94:30:BE:31:FD:3F:F9:95
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38322e3230382e32302e302f32322d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.208.20.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:a8:24:87:42:4d:59:2e:dc:19:33:35:c8:76:23:bb:7d:f2:
ad:1b:14:fb:ac:b4:a3:eb:bd:3b:57:0a:b8:e2:44:f4:be:71:
0f:94:6e:25:6b:82:14:02:39:9a:74:b5:a3:17:f9:c0:a2:d0:
3f:c6:ec:2b:c0:7c:72:bf:c9:5f:db:15:54:bc:a0:83:96:ad:
33:3f:4c:25:b6:f1:34:5e:e5:a6:11:8d:fa:cf:d2:e8:4e:ac:
8f:96:fa:99:8e:ef:ef:04:f6:2a:90:27:43:c7:34:4a:10:75:
78:01:69:df:fa:f1:af:57:cb:6c:f1:52:a7:ef:f7:ed:db:5f:
a1:5d:31:b1:a4:04:0d:77:6d:0c:14:d8:9c:44:50:47:da:26:
9f:0a:ff:d1:9c:61:40:c0:02:7e:a3:3b:73:be:0d:02:6c:19:
02:88:45:21:1a:9a:36:85:fb:23:aa:b2:b1:6d:7c:c2:85:46:
d8:80:f1:76:76:d6:c6:44:15:91:f2:0f:a2:84:97:e3:c7:d6:
4a:a0:a7:4a:1e:00:b3:a5:db:e6:ee:f3:30:8f:6f:14:06:10:
60:fb:ab:fc:26:fb:60:ad:70:ba:8b:fd:be:56:b4:d9:62:bc:
3f:99:6b:2f:da:1e:95:fb:82:e1:13:c8:c1:97:58:dd:e8:fe:
fc:26:22:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net