Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3234302e302f32312d3332203d3e203430303231.roa
File: 38352e3233392e3234302e302f32312d3332203d3e203430303231.roa (raw, json)
Hash identifier: eXAlvtfhyHvwDnvA1OOMS7GzLdG03ybU9U4mKGrbW/4=
Subject key identifier: 21:97:1D:CC:19:E7:D6:B8:E0:F6:96:88:DB:03:92:7F:55:3C:79:7F
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 36FF2DFC21DA9D35A3A859132116A42E23FC1240
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3234302e302f32312d3332203d3e203430303231.roa
Signing time: Tue 22 Nov 2022 11:22:56 +0000
ROA not before: Tue 22 Nov 2022 11:17:56 +0000
ROA not after: Tue 21 Nov 2023 11:22:56 +0000
asID: 40021
IP address blocks: 85.239.240.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:ff:2d:fc:21:da:9d:35:a3:a8:59:13:21:16:a4:2e:23:fc:12:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Nov 22 11:17:56 2022 GMT
Not After : Nov 21 11:22:56 2023 GMT
Subject: CN=21971DCC19E7D6B8E0F69688DB03927F553C797F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:7e:05:e4:41:d5:5d:db:a6:9d:38:ec:54:
f7:44:8e:68:41:79:3c:82:b2:1f:8c:fb:80:02:69:
2d:21:35:7c:ee:6d:0e:a2:6b:55:9d:ac:db:ec:d6:
a4:ca:74:28:e4:df:31:4a:a3:e8:d5:a6:dd:66:98:
73:1a:4d:66:7e:ec:1b:49:ab:18:9c:99:c2:65:fb:
c1:4d:33:45:1a:37:53:49:cb:d5:a8:5a:da:35:05:
2e:4e:8e:71:45:4d:3a:94:ac:0d:c8:f8:ae:56:b0:
12:b9:0b:21:a9:09:55:a1:ae:e4:d3:ef:ed:78:77:
84:c9:7a:ae:fd:44:e0:b9:35:a4:5e:71:f4:0b:65:
18:6c:83:49:5f:09:13:d5:10:99:8c:e9:93:07:8c:
9b:ea:27:f4:65:ad:76:fc:66:7f:5f:09:c5:55:b5:
e3:c3:5c:47:72:c2:0c:66:fb:40:d7:13:7a:3e:a4:
9a:ef:c3:69:28:4a:3c:d4:6d:25:3e:ac:ba:04:96:
eb:11:07:99:b9:5a:9d:7c:e9:03:41:44:f1:8f:ec:
cb:7b:40:0a:73:37:d2:37:1d:6b:14:b4:ac:36:e5:
89:6e:b3:06:5b:32:83:76:80:ed:44:27:2f:c7:7e:
e1:75:a3:ba:0c:26:67:5b:ca:9c:e9:43:69:07:5c:
32:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:97:1D:CC:19:E7:D6:B8:E0:F6:96:88:DB:03:92:7F:55:3C:79:7F
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38352e3233392e3234302e302f32312d3332203d3e203430303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.240.0/21
Signature Algorithm: sha256WithRSAEncryption
40:a7:d7:cc:0e:83:b6:05:26:b7:3b:fb:c3:8f:1e:4c:44:9c:
40:54:0b:3d:46:bd:28:10:e6:4c:cb:47:33:7e:17:36:1d:e4:
c7:e0:c6:cb:6c:ea:aa:83:56:eb:c6:77:2c:c0:61:b9:c8:2e:
96:13:34:8f:1e:bd:ce:07:5e:95:61:d1:af:75:80:0c:15:3b:
c8:d6:7b:a2:3a:79:4d:ea:b8:25:a2:4f:93:e4:ff:9d:02:14:
dd:71:21:7e:20:36:37:bf:5e:2c:3b:a0:82:11:be:a1:28:79:
71:be:4c:17:48:cf:cb:e5:96:bb:ed:4d:1b:9d:78:4f:46:70:
49:ce:1a:23:c4:6e:78:e3:50:f9:cb:06:0a:1d:12:28:d0:4c:
69:93:f8:f4:de:e7:21:70:72:e5:55:d2:a6:d7:26:d1:37:c0:
d6:36:f6:a4:5f:06:19:49:11:b1:fb:b1:b4:7c:63:43:69:20:
18:5a:c5:88:ee:ab:77:da:c2:83:e0:26:a2:4d:c3:5e:d7:8b:
f9:bc:ce:cf:ba:3e:79:b1:5d:b4:44:13:a8:3e:16:3d:ab:d8:
cc:6c:12:c6:09:0a:02:87:4d:28:15:22:1d:92:50:e1:64:69:
4d:0c:ae:31:d4:3d:07:d5:03:c7:ea:3e:07:e5:10:c3:5a:59:
d5:22:38:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net