Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e382e302f32342d3234203d3e20313337343039.roa
File: 38362e34382e382e302f32342d3234203d3e20313337343039.roa (raw, json)
Hash identifier: GbFQbQyR+5BerMNPcWxxD34DPN9HP6/8VSMkI8NwydY=
Subject key identifier: 8E:41:C0:F6:1A:A2:74:0C:6A:02:16:C5:B3:1F:93:7B:C8:4D:AF:5F
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 2E5AB06AA67FFF9D42023909703665E0EAFD1D35
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e382e302f32342d3234203d3e20313337343039.roa
Signing time: Sat 22 Oct 2022 04:34:18 +0000
ROA not before: Sat 22 Oct 2022 04:29:18 +0000
ROA not after: Sat 21 Oct 2023 04:34:18 +0000
asID: 137409
IP address blocks: 86.48.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:5a:b0:6a:a6:7f:ff:9d:42:02:39:09:70:36:65:e0:ea:fd:1d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:18 2022 GMT
Not After : Oct 21 04:34:18 2023 GMT
Subject: CN=8E41C0F61AA2740C6A0216C5B31F937BC84DAF5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0b:d6:b8:1f:1b:c7:5c:15:29:b5:b1:de:f2:
87:37:d2:a2:70:48:ba:44:01:7a:44:b2:47:84:9f:
80:0a:ab:bb:80:f0:d9:bc:a4:ef:a3:ae:29:7b:54:
1f:32:b4:4c:25:63:de:49:2c:46:46:63:7e:7d:e3:
7d:99:42:a8:a3:7e:e2:a2:36:d2:63:ed:72:11:bd:
fc:8a:1a:74:ac:93:33:cf:a9:2f:ec:ad:a2:e1:7c:
94:99:0d:73:94:61:86:a7:c7:66:7e:56:bd:1f:8d:
1a:01:6d:37:e6:ce:92:ee:62:7f:41:03:16:03:e1:
d2:85:1f:2c:31:d1:d7:52:bf:50:47:2b:fa:da:28:
6a:ee:b3:25:f6:12:8f:94:f7:b9:ad:da:d7:6c:e9:
b7:40:8d:a2:e4:6d:3b:c4:c9:03:4c:50:47:74:ed:
6b:08:38:78:14:20:d3:e6:e7:21:a6:c2:37:51:e0:
c1:d4:c9:44:8b:45:28:a6:97:0f:18:02:06:e4:8f:
85:24:cc:ad:ed:e5:3f:20:db:c2:f6:76:23:01:5e:
d2:3a:38:5c:b3:e3:e4:24:c9:79:e1:52:ab:f0:e9:
46:18:c6:1e:33:2c:34:b8:fc:75:3e:24:c7:a9:bd:
57:8a:ce:b1:29:43:df:57:0a:54:dd:96:3d:79:56:
45:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:41:C0:F6:1A:A2:74:0C:6A:02:16:C5:B3:1F:93:7B:C8:4D:AF:5F
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/38362e34382e382e302f32342d3234203d3e20313337343039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.48.8.0/24
Signature Algorithm: sha256WithRSAEncryption
07:26:e2:a5:09:36:c1:e8:a2:cb:e4:05:ef:b6:ff:98:72:de:
45:a3:0f:f2:7a:ca:e6:15:da:7d:b9:b3:77:fb:27:cc:d1:91:
d8:10:57:69:aa:e4:d8:5a:ff:ea:30:bc:a6:91:1b:a9:0c:43:
91:c7:40:e8:87:d3:c0:30:9e:26:41:f2:05:1f:3d:6e:85:2c:
14:39:ae:87:b8:a4:21:4b:37:96:04:8b:45:3e:05:9e:e7:b8:
ad:99:ff:a3:26:e2:47:b3:f4:91:a3:25:06:c2:cf:6a:f5:4c:
b8:01:84:fb:19:d8:b3:ee:9c:86:2c:c3:23:14:17:95:3c:a4:
b2:ba:17:99:7c:23:98:eb:fa:84:71:86:fc:f5:9a:be:3e:19:
5e:0a:08:c1:95:28:0f:50:f0:6e:c6:04:ac:af:b5:39:32:40:
c5:a0:14:dd:fa:b8:61:8b:7f:f0:9f:fa:ac:53:ec:a8:38:53:
15:30:f5:b3:23:58:38:21:7c:4a:81:ee:77:6f:3b:2f:12:f2:
7d:9d:7b:52:43:47:aa:5c:23:4e:e5:70:a4:9b:c6:d5:52:f6:
6a:b9:5b:86:a3:4e:3b:a5:da:23:38:f9:d2:02:61:ae:32:0d:
b2:2a:e4:0d:63:16:de:0f:b2:ec:dd:a3:09:f1:13:50:d3:bc:
90:9e:94:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net