Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e352e302f32342d3332203d3e203531313637.roa
File: 38362e34382e352e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: ciOLZNge6lv44+GOM204eqsk/4fvcGoarfjPzJS5uT8=
Subject key identifier: D4:90:93:14:90:9A:80:D3:8E:FC:F9:A1:D6:3E:B4:27:1B:40:FF:61
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 2F26299DFB099B5D8D98CAD1DA3D29BFEE504B50
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e352e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:34:10 +0000
ROA not before: Sat 22 Oct 2022 04:29:10 +0000
ROA not after: Sat 21 Oct 2023 04:34:10 +0000
asID: 51167
IP address blocks: 86.48.5.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:26:29:9d:fb:09:9b:5d:8d:98:ca:d1:da:3d:29:bf:ee:50:4b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:10 2022 GMT
Not After : Oct 21 04:34:10 2023 GMT
Subject: CN=D4909314909A80D38EFCF9A1D63EB4271B40FF61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9a:a1:df:35:a9:a0:8d:b7:50:d0:7c:98:f8:
bc:a6:6c:0d:c7:42:84:d6:a8:ae:08:2b:12:23:f7:
af:54:43:0d:b5:72:9d:00:60:3f:8e:cd:db:ab:2e:
ec:48:37:ba:ba:4d:69:6e:12:96:e4:32:28:70:78:
4f:93:e7:36:09:a3:5b:b7:d5:2b:f4:af:ff:5e:d6:
90:3b:9d:39:56:0a:ca:f6:98:4d:e5:ca:a7:bb:e5:
fc:bf:97:7e:d4:d1:c1:52:9c:23:d8:96:1a:5f:fc:
03:70:26:a9:8a:d2:1c:2d:43:de:3d:32:b0:0d:54:
42:44:c3:5a:1d:61:67:37:59:6f:e7:a5:30:cc:6c:
e4:96:a2:9a:bb:f1:a0:4a:93:2f:32:22:02:71:34:
31:b2:db:dd:9a:68:8e:da:0f:b6:e2:3e:18:a4:26:
84:b3:63:4c:2c:8f:f2:2f:fc:5c:33:eb:4d:f3:2a:
61:f7:65:38:cf:ab:cd:b8:43:a5:f9:2d:95:2c:71:
25:02:72:b0:b9:95:a4:d1:03:f3:99:4e:66:c4:d2:
9e:3f:12:05:d7:f8:9e:76:8e:c3:24:bb:ce:65:74:
f9:83:c9:61:3a:b3:98:c4:02:04:75:ab:82:e3:ef:
85:f6:3a:63:d0:8c:7d:8f:0c:fa:cd:f4:38:93:16:
93:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:90:93:14:90:9A:80:D3:8E:FC:F9:A1:D6:3E:B4:27:1B:40:FF:61
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e352e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.48.5.0/24
Signature Algorithm: sha256WithRSAEncryption
24:0e:64:47:fc:08:84:74:d7:72:77:0a:e0:94:78:e2:00:ce:
a7:f0:9f:e9:06:47:40:b0:02:e8:94:b5:aa:d1:01:ba:1c:b3:
c3:54:d9:cc:3d:3e:ea:42:18:0b:eb:d3:aa:bf:62:38:ee:13:
e5:90:80:cc:2f:53:25:92:ce:1d:22:f8:2c:bc:52:bf:62:a3:
97:ab:0c:a7:08:f9:f5:6d:53:71:8c:ea:f5:01:b8:ae:40:84:
d0:e4:74:4b:c7:7c:13:e4:d2:e0:fd:50:20:c8:f4:76:32:a2:
13:b7:b5:e2:58:0e:1c:a5:9d:d1:20:54:4e:85:ee:fb:33:cf:
d7:a7:10:65:8a:96:c6:06:1a:ca:18:8c:06:c3:37:d8:d7:47:
ab:ef:69:64:5b:bd:0f:b3:96:35:83:65:3e:91:25:aa:d3:83:
4a:64:e7:7a:ec:4b:fa:68:66:b7:d8:3c:fd:4e:0f:51:0e:08:
c1:80:01:28:61:26:33:44:a0:a3:e7:6d:bc:78:50:87:f8:40:
ba:4a:a9:6f:13:d0:34:4d:12:04:ef:26:3c:02:4e:09:2b:82:
87:84:a2:17:39:82:ab:d5:06:5f:c7:ae:6f:f7:7f:6e:ef:4b:
5a:8b:d7:fe:2b:51:64:9c:6c:dc:7d:54:01:17:a2:0c:77:0e:
66:30:19:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net