Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e31342e302f32342d3332203d3e20313336373837.roa
File: 38362e34382e31342e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: NB0jrJ4nYVx2RvrmqtWu7fcVfn1TlnbxISq56udfgyo=
Subject key identifier: AA:C2:3D:27:4E:2B:89:C2:6E:51:16:99:7B:99:22:57:06:C3:F1:4B
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 5661FD4F6023F49FD9C9F53DF2ECC7D0D901A924
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e31342e302f32342d3332203d3e20313336373837.roa
Signing time: Wed 28 Dec 2022 09:45:32 +0000
ROA not before: Wed 28 Dec 2022 09:40:32 +0000
ROA not after: Wed 27 Dec 2023 09:45:32 +0000
asID: 136787
IP address blocks: 86.48.14.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:61:fd:4f:60:23:f4:9f:d9:c9:f5:3d:f2:ec:c7:d0:d9:01:a9:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 28 09:40:32 2022 GMT
Not After : Dec 27 09:45:32 2023 GMT
Subject: CN=AAC23D274E2B89C26E5116997B99225706C3F14B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c9:d7:7f:22:62:84:f3:65:ca:7f:40:15:d1:
61:05:ac:9e:ab:33:d5:19:cc:f8:ad:0f:17:35:54:
53:f2:5a:bd:ce:9a:19:f0:73:06:56:a3:01:65:c5:
88:a4:04:4c:52:18:3d:10:4e:e2:39:10:43:37:55:
72:11:ab:98:20:e9:2e:b5:41:85:96:c7:29:69:53:
84:a8:b0:74:e2:0d:58:26:a4:89:b9:21:9a:d1:21:
15:a2:c5:77:d8:9a:5b:4c:93:c5:7c:3f:21:b6:ea:
4b:73:cd:57:d5:29:b9:c1:ea:a9:5c:16:9f:d7:69:
d2:0b:38:06:2b:8f:00:39:75:ae:5d:a5:03:85:79:
5e:ce:f2:b3:05:fb:b7:33:af:18:e5:86:83:0f:6d:
8f:c5:3c:6c:93:14:15:07:fe:dc:b7:c0:72:08:7c:
e8:0d:3e:97:cf:0b:63:91:ef:42:72:cd:2f:65:58:
d0:32:74:43:1a:25:28:0b:80:a6:6e:7b:7e:58:35:
57:3a:2c:e6:f5:ed:bb:a3:b3:d8:13:14:c3:b2:1e:
f0:04:eb:e0:a0:60:ec:cd:af:08:d3:67:ee:54:1e:
83:6d:0d:6a:a3:4e:8e:ac:2f:fa:91:90:46:38:db:
d2:8c:bf:ca:a5:73:03:3b:3e:f2:fd:41:72:8e:69:
73:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C2:3D:27:4E:2B:89:C2:6E:51:16:99:7B:99:22:57:06:C3:F1:4B
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e31342e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.48.14.0/24
Signature Algorithm: sha256WithRSAEncryption
54:a8:54:3b:88:0b:11:cb:dd:59:16:ac:97:b3:18:3c:db:d4:
84:cf:ff:ad:f5:64:88:e1:83:10:b7:92:20:bf:3d:9a:e8:65:
cb:0c:ff:07:1d:76:59:7c:62:41:9e:81:13:8f:5d:05:7d:5d:
0e:66:1c:23:4a:10:63:fa:07:c4:3d:1d:2c:92:b5:5d:61:00:
0e:80:a5:c2:03:be:1d:e4:f2:4e:b6:17:ed:c7:37:9b:43:e7:
cc:29:a7:ea:43:73:d6:26:f0:31:ff:c2:a4:bf:93:e5:f2:6b:
d6:36:80:a0:21:dd:d9:f3:51:c2:e9:c4:9e:57:95:54:24:fc:
f3:b9:36:58:6a:00:a5:e3:0c:e8:41:45:43:ec:90:c0:c2:c7:
5a:7d:37:6c:25:2e:9f:bf:83:b9:90:11:89:6a:04:1e:1a:e7:
61:93:ae:5d:79:db:e9:50:68:0b:82:f3:ab:32:54:da:0f:fd:
35:ba:4f:df:26:25:d2:3c:54:02:68:17:ad:12:33:43:b0:6e:
ea:c3:f5:8b:2f:7c:63:1f:4d:07:b4:05:d4:07:71:87:62:5e:
45:98:77:49:2e:2a:2c:22:bc:2d:1c:b9:8c:79:02:eb:10:c7:
36:b0:d4:da:3c:1f:e3:03:06:83:22:e2:44:66:74:1a:eb:1e:
05:b0:74:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net