Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e31332e302f32342d3332203d3e20313336373837.roa
File: 38362e34382e31332e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: mP2SFFqYOaR2wnDBZ7mmQ8dOBp78asZevyvkUwtP4xo=
Subject key identifier: 4F:39:1F:F7:CE:FA:2C:88:7F:22:DE:ED:39:04:51:21:1F:24:A0:6E
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 10B48EE3BD8A9233E384F3CCC1233269822A900C
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e31332e302f32342d3332203d3e20313336373837.roa
Signing time: Wed 28 Dec 2022 09:45:16 +0000
ROA not before: Wed 28 Dec 2022 09:40:16 +0000
ROA not after: Wed 27 Dec 2023 09:45:16 +0000
asID: 136787
IP address blocks: 86.48.13.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:b4:8e:e3:bd:8a:92:33:e3:84:f3:cc:c1:23:32:69:82:2a:90:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 28 09:40:16 2022 GMT
Not After : Dec 27 09:45:16 2023 GMT
Subject: CN=4F391FF7CEFA2C887F22DEED390451211F24A06E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:24:c6:7b:4b:89:5e:5a:c7:1a:7c:75:96:9f:
40:28:55:cd:31:d9:c4:16:94:02:f0:50:2a:83:48:
08:40:68:10:db:1e:1b:89:6a:d8:bc:d7:64:52:f2:
75:10:a0:ae:be:f7:48:a1:fd:c6:98:0f:06:91:93:
b6:4a:50:95:6a:f2:e5:fd:fe:80:22:9e:a0:59:47:
1c:2f:05:14:4e:22:fe:d3:45:50:35:44:04:c4:ea:
ee:8b:9e:80:0c:f2:9e:d2:2e:6c:5e:0f:e3:16:fb:
1a:d2:d6:d0:94:8f:a4:86:b6:22:21:c8:1b:ae:5a:
f1:01:3f:0f:53:00:f3:eb:30:62:72:a3:94:92:7b:
26:65:fa:1a:6a:86:86:15:41:54:c1:65:b3:21:75:
1a:69:71:43:e0:ef:3a:20:c8:5a:80:56:5d:48:52:
b6:fb:89:e5:93:d9:90:43:5b:e9:1d:b3:bb:b8:07:
2c:76:24:01:2d:4f:94:af:c9:ff:7d:c4:9e:30:25:
52:18:82:06:f4:1b:7d:8c:a1:37:78:9e:91:1c:f5:
b5:e4:31:a9:01:eb:be:1b:b4:d5:28:71:d7:ce:47:
a3:c2:79:5f:28:3b:82:cd:05:d8:61:8c:f7:b0:e6:
7b:9e:2f:b2:01:85:c1:0a:a3:9c:cf:95:ba:f3:70:
05:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:39:1F:F7:CE:FA:2C:88:7F:22:DE:ED:39:04:51:21:1F:24:A0:6E
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e31332e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.48.13.0/24
Signature Algorithm: sha256WithRSAEncryption
28:e9:12:b0:0c:46:41:ae:e6:43:3d:86:b0:cc:af:38:4a:c1:
15:9d:68:cb:fb:73:b1:61:5d:be:d3:86:32:00:24:05:bb:80:
ba:b8:81:c3:83:38:86:ba:76:79:67:42:99:16:d9:dc:c2:73:
cc:96:b1:56:e1:ea:eb:a8:4e:fc:47:d4:90:a0:6b:b6:07:d8:
59:75:76:b3:22:1f:76:c5:74:0c:b5:c5:1d:d7:95:41:01:ef:
bb:0a:20:7c:ba:4d:b2:fa:3b:6c:ff:c9:a9:e2:47:cb:43:bd:
df:89:c1:f1:e9:06:90:96:08:43:70:18:0b:96:cc:f4:97:a5:
ea:8d:83:56:7f:5b:89:b1:f2:84:10:3a:d4:dd:87:2f:3d:52:
42:dd:e6:b6:99:0d:be:62:04:a5:ee:26:45:69:6c:66:d8:48:
8a:79:50:a8:6c:77:e5:0d:65:fe:9f:cc:63:08:a7:e6:f3:f6:
b8:4c:d4:f6:99:23:61:1f:ec:7f:b0:99:e7:b1:ea:b4:4a:fe:
39:6b:b1:1a:1f:31:fe:0b:b7:34:03:66:ec:7e:19:95:c9:f8:
31:6e:be:bd:46:78:8f:83:85:e4:7b:94:70:7f:5b:87:2c:38:
30:35:ea:c9:86:22:01:a0:da:0d:f8:4f:9c:4b:f1:04:c1:ed:
70:63:7b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net