Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3233322e302f32312d3332203d3e203430303231.roa
File: 38352e3233392e3233322e302f32312d3332203d3e203430303231.roa (raw, json)
Hash identifier: sh4kVV27aoDnuM72Q5Tnw65Ui4s7p2CDBoSjUX1g8ag=
Subject key identifier: 2B:43:5C:D6:E2:92:16:62:5F:C4:CB:67:E1:DB:8C:4C:8F:74:58:50
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 565E857ED21EEE5045EDA5A33320444B405836CF
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3233322e302f32312d3332203d3e203430303231.roa
Signing time: Tue 22 Nov 2022 11:22:30 +0000
ROA not before: Tue 22 Nov 2022 11:17:30 +0000
ROA not after: Tue 21 Nov 2023 11:22:30 +0000
asID: 40021
IP address blocks: 85.239.232.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:5e:85:7e:d2:1e:ee:50:45:ed:a5:a3:33:20:44:4b:40:58:36:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 22 11:17:30 2022 GMT
Not After : Nov 21 11:22:30 2023 GMT
Subject: CN=2B435CD6E29216625FC4CB67E1DB8C4C8F745850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:58:d5:0f:ec:00:51:34:62:f2:e0:8e:df:57:
3d:55:34:e4:0f:18:c1:f8:cb:7a:6a:98:03:92:a4:
cc:5c:68:b0:6c:c0:e2:74:15:cf:a3:1f:27:b8:cb:
6f:53:d4:d5:02:fa:dd:62:e4:a4:09:94:c0:bd:45:
0f:2d:1d:ac:77:2c:78:2d:74:f9:78:a7:2e:87:4d:
71:63:fa:b9:05:ac:3c:13:7d:bb:af:22:e5:50:25:
4b:48:25:4e:b9:df:fc:2d:2b:39:21:26:9c:93:59:
0e:f6:cc:90:e1:fc:fe:33:fb:9b:f2:b4:b0:60:dc:
88:0a:54:c7:79:eb:e6:60:5b:b7:2e:8a:14:d9:0e:
b3:2c:90:f5:a6:2b:23:69:45:07:8b:d2:97:42:65:
3d:b2:b1:f9:76:01:92:fc:e7:73:8e:43:58:3c:5e:
fc:95:d0:94:bb:ba:17:19:b5:98:54:d0:bc:ab:67:
1e:da:08:4a:00:62:26:f2:75:f8:64:2b:4c:ea:ec:
48:6e:c8:34:a9:1a:d4:bb:70:34:b0:60:c7:50:25:
02:a1:78:91:8d:6f:99:d4:24:bb:b2:54:2c:2a:72:
3d:31:ab:1d:ee:6f:2b:dc:9a:6b:a3:f6:9e:f1:e4:
23:22:f2:d0:c8:90:8e:ff:29:b8:1c:87:13:5a:1f:
5a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:43:5C:D6:E2:92:16:62:5F:C4:CB:67:E1:DB:8C:4C:8F:74:58:50
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3233322e302f32312d3332203d3e203430303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.232.0/21
Signature Algorithm: sha256WithRSAEncryption
04:62:c4:be:c8:05:24:30:ab:ef:0e:28:ba:98:6c:b4:23:f1:
d8:29:87:f3:44:b3:81:0c:c9:65:ef:33:cb:d5:3a:16:a6:7e:
01:b4:f8:9d:2e:7c:66:6b:7e:77:85:c4:c9:1b:41:02:70:ef:
c6:cb:f4:67:d1:c3:e0:bf:26:6b:ad:ca:68:a7:00:1f:69:34:
90:e7:9e:80:b0:11:4e:46:8d:3c:84:35:04:23:ef:16:58:3e:
0a:80:04:9e:e1:83:e2:74:d6:5d:bf:81:27:c1:c7:f0:9d:85:
1a:c5:44:9e:63:ba:6e:de:1b:7f:2a:67:eb:b8:70:7e:1b:dc:
fc:80:df:c1:4b:aa:9a:4d:0c:d9:88:77:27:7a:94:19:48:73:
fa:46:87:60:49:33:5d:b3:a7:bc:90:77:43:06:3e:4f:59:e9:
86:b3:10:08:f2:9f:74:b1:5e:56:79:15:01:2e:37:6b:e6:43:
96:8a:28:c2:df:eb:1a:c7:ff:da:8c:ca:d0:64:89:5f:61:64:
ab:f2:b5:0b:29:3b:90:4c:7f:47:ef:c7:5e:2d:93:3b:48:53:
f0:67:33:d7:14:80:fc:ea:6b:e7:7e:34:6a:4c:94:98:e3:ab:
a9:14:2d:a7:48:8a:fd:ce:0e:9c:0f:23:89:06:2e:ea:35:2e:
72:1d:97:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net