Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3233302e302f32332d3332203d3e203430303231.roa
File: 38352e3233392e3233302e302f32332d3332203d3e203430303231.roa (raw, json)
Hash identifier: dUVngWft/gxPA3a/U4b4+yst+LjgUxbwC5yzPTw6lqA=
Subject key identifier: 7B:D0:39:66:56:9E:CE:F4:C5:03:C3:A8:70:CB:EE:91:C2:C5:35:A5
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 2AC687D341A9EA59AD67C5D6C26BD5026CBE5AE6
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3233302e302f32332d3332203d3e203430303231.roa
Signing time: Tue 22 Nov 2022 11:21:44 +0000
ROA not before: Tue 22 Nov 2022 11:16:44 +0000
ROA not after: Tue 21 Nov 2023 11:21:44 +0000
asID: 40021
IP address blocks: 85.239.230.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:c6:87:d3:41:a9:ea:59:ad:67:c5:d6:c2:6b:d5:02:6c:be:5a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 22 11:16:44 2022 GMT
Not After : Nov 21 11:21:44 2023 GMT
Subject: CN=7BD03966569ECEF4C503C3A870CBEE91C2C535A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:be:ef:af:34:b3:bd:af:03:83:67:1b:a8:b5:
f9:98:cb:36:25:ea:30:3d:e5:76:f3:94:84:68:ea:
93:56:35:1c:04:92:bd:1e:19:09:06:3b:f3:68:77:
08:50:4c:db:1c:3b:05:a4:6d:f1:9d:42:86:71:50:
65:8f:e1:7d:2f:c1:3a:15:e4:79:83:56:58:c4:aa:
d6:e2:63:ae:b5:eb:ae:19:8d:1a:4f:16:5c:93:c8:
22:00:d4:52:99:b2:a9:a8:53:28:61:5f:9a:59:0f:
84:ce:20:8f:ef:a9:ab:d5:ec:32:d8:4b:6c:a4:f3:
d1:0c:b7:b0:0c:2e:67:90:ea:e0:77:9f:e5:7b:f7:
74:9a:14:cc:4b:38:40:3d:9d:c4:db:52:7c:01:31:
62:27:8b:c7:e3:94:8b:52:f4:83:30:7f:16:e5:c1:
b4:49:d9:13:e9:63:8f:f7:de:8d:c3:63:04:37:c3:
f2:8f:98:be:5b:e0:95:55:7d:33:68:f2:56:c3:93:
d3:fa:9f:1f:68:29:4a:9c:48:ec:ab:2e:73:d4:0a:
78:27:d6:68:f2:82:27:3a:b6:9b:ea:a1:2c:ee:31:
6f:ff:51:ad:08:5a:bf:9a:88:ff:47:ba:fe:03:8c:
74:a4:7c:a3:8d:07:3d:9b:51:cc:3c:87:4f:35:9b:
6b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D0:39:66:56:9E:CE:F4:C5:03:C3:A8:70:CB:EE:91:C2:C5:35:A5
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3233302e302f32332d3332203d3e203430303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.230.0/23
Signature Algorithm: sha256WithRSAEncryption
40:3a:7c:cc:f9:01:db:8d:bf:9b:a9:ab:56:54:f7:c9:fb:6a:
eb:3f:09:4a:9c:fe:8f:5d:aa:1f:ed:0e:d0:fe:91:5e:7d:08:
12:1a:34:de:8d:6e:95:62:2f:24:90:e1:f5:cd:79:b2:17:f6:
66:81:17:e5:41:d7:bb:e8:23:fa:a9:28:1e:15:d4:72:f7:da:
92:84:bc:d3:10:89:58:80:36:05:4d:df:69:97:8b:15:1f:d1:
cd:4e:be:d2:a9:7e:e9:a3:b2:70:3d:76:ca:1f:eb:14:27:4f:
d0:50:52:07:67:7c:e8:96:54:68:60:0f:08:e8:ea:dc:14:50:
b9:1a:67:24:c4:48:81:a9:3c:e5:0d:b9:7a:65:e8:cb:c1:ab:
26:71:43:c9:26:c7:57:d6:cb:53:f3:b2:a0:a8:e6:ab:34:ab:
64:78:95:31:9a:ed:73:61:d9:42:ff:cc:79:8e:9f:00:85:be:
cc:de:7d:02:94:e3:06:bc:ee:d3:1a:85:ff:56:1c:c4:c8:19:
df:81:d2:78:4a:81:49:71:e0:6a:c2:c1:62:56:98:7d:1f:71:
d6:b9:e6:dc:ee:01:d8:2d:cb:56:7a:eb:6e:0a:b1:98:17:0e:
67:4f:f4:17:45:40:98:55:c3:49:06:55:ec:5d:47:50:b6:20:
c5:35:60:dc
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIUKsaH00Gp6lmtZ8XWwmvVAmy+WuYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMjExMjIxMTE2NDRaFw0yMzExMjExMTIxNDRaMDMxMTAvBgNV
BAMTKDdCRDAzOTY2NTY5RUNFRjRDNTAzQzNBODcwQ0JFRTkxQzJDNTM1QTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHvu+vNLO9rwODZxuotfmYyzYl
6jA95XbzlIRo6pNWNRwEkr0eGQkGO/NodwhQTNscOwWkbfGdQoZxUGWP4X0vwToV
5HmDVljEqtbiY661664ZjRpPFlyTyCIA1FKZsqmoUyhhX5pZD4TOII/vqavV7DLY
S2yk89EMt7AMLmeQ6uB3n+V793SaFMxLOEA9ncTbUnwBMWIni8fjlItS9IMwfxbl
wbRJ2RPpY4/33o3DYwQ3w/KPmL5b4JVVfTNo8lbDk9P6nx9oKUqcSOyrLnPUCngn
1mjygic6tpvqoSzuMW//Ua0IWr+aiP9Huv4DjHSkfKONBz2bUcw8h081m2uVAgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQUe9A5ZlaezvTFA8OocMvukcLFNaUwHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4Zs
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zODM1MmUzMjMzMzkyZTMyMzMzMDJlMzAyZjMyMzMyZDMzMzIyMDNkM2UyMDM0
MzAzMDMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAFV7+YwDQYJKoZIhvcNAQELBQADggEBAEA6fMz5
AduNv5upq1ZU98n7aus/CUqc/o9dqh/tDtD+kV59CBIaNN6NbpViLySQ4fXNebIX
9maBF+VB17voI/qpKB4V1HL32pKEvNMQiViANgVN32mXixUf0c1OvtKpfumjsnA9
dsof6xQnT9BQUgdnfOiWVGhgDwjo6twUULkaZyTESIGpPOUNuXpl6MvBqyZxQ8km
x1fWy1PzsqCo5qs0q2R4lTGa7XNh2UL/zHmOnwCFvszefQKU4wa87tMahf9WHMTI
Gd+B0nhKgUlx4GrCwWJWmH0fcda55tzuAdgty1Z6624KsZgXDmdP9BdFQJhVw0kG
VexdR1C2IMU1YNw=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net