Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/39342e3134302e382e302f32342d3332203d3e20313336373837.roa
File: 39342e3134302e382e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: o7Ws7nyu1AK8zRlYUfYpry09KXPa0YVSPld4Y0lYeQg=
Subject key identifier: 43:25:3D:88:C7:B7:C3:1D:59:6B:06:4D:63:45:15:40:1E:D5:9D:0B
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 439B12048C5A7550E7E7533305BA3E46772567FC
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/39342e3134302e382e302f32342d3332203d3e20313336373837.roa
Signing time: Wed 28 Dec 2022 09:38:21 +0000
ROA not before: Wed 28 Dec 2022 09:33:21 +0000
ROA not after: Wed 27 Dec 2023 09:38:21 +0000
asID: 136787
IP address blocks: 94.140.8.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:9b:12:04:8c:5a:75:50:e7:e7:53:33:05:ba:3e:46:77:25:67:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Dec 28 09:33:21 2022 GMT
Not After : Dec 27 09:38:21 2023 GMT
Subject: CN=43253D88C7B7C31D596B064D634515401ED59D0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e1:72:3d:7d:76:ba:00:a5:40:20:de:88:8e:
13:5b:73:7a:61:f4:9f:c2:70:d4:6a:fa:19:4a:e1:
59:7d:d4:58:64:1e:d3:a0:4f:51:4f:47:35:4a:c0:
e3:67:d9:d7:27:05:d3:0e:30:ac:b5:17:20:c9:52:
a4:e8:13:a7:e0:c6:53:bb:ed:48:5a:4a:e0:32:89:
df:60:f0:e4:22:e8:d2:10:11:99:d7:d2:82:96:e0:
f9:54:bd:ae:4f:77:65:5a:b0:e5:07:ed:9e:bb:56:
32:bc:9d:75:12:3c:61:a3:c7:63:f7:5d:ce:9d:57:
3e:0e:a3:70:24:de:d5:eb:3a:20:0e:a3:af:e5:4e:
9e:92:fb:bd:e6:49:9b:81:11:b9:da:42:74:19:8f:
58:0b:45:24:81:c5:13:bd:e8:1c:c5:cd:81:65:6f:
9f:a9:30:52:c6:a7:15:2a:cd:9f:a2:88:dd:2c:72:
b5:e9:fc:79:ad:2e:82:c4:51:4f:0c:6c:d5:46:d6:
e0:ca:4c:7f:36:cf:48:b9:df:00:af:e8:05:b4:1b:
3f:ae:75:15:eb:84:39:8e:b5:f9:da:b6:de:68:90:
66:ea:05:64:dc:c0:5c:8c:fa:de:49:3d:dc:ce:2b:
92:21:b6:ad:a1:44:72:46:48:f9:6e:dd:30:ec:65:
1f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:25:3D:88:C7:B7:C3:1D:59:6B:06:4D:63:45:15:40:1E:D5:9D:0B
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/39342e3134302e382e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.8.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d2:39:32:02:86:9c:ed:41:a4:0c:73:bc:1c:f6:3d:f3:8b:
f0:aa:92:cc:b8:aa:8c:78:03:cd:fd:d8:f0:63:4d:8d:67:22:
0d:5a:1a:72:60:ec:e3:f9:73:c4:d3:1d:6e:cf:03:69:c9:a7:
41:1d:da:0e:1d:0f:e0:25:98:a6:5f:64:01:5d:65:0f:73:66:
2a:a4:6f:a5:74:ff:99:c3:a5:21:08:94:35:5d:63:71:a0:9d:
32:37:40:6d:6e:4d:3a:49:dd:ce:08:c3:42:8f:6d:a0:2b:e8:
58:d0:19:05:37:bd:14:8a:30:65:22:0b:50:9e:1d:9f:e7:f3:
89:34:38:ac:49:a7:38:01:e9:03:e4:db:a1:47:28:7b:25:9e:
8e:9c:57:80:2a:ae:49:f3:55:64:29:2a:e2:0b:99:df:90:4e:
ee:dc:a6:53:24:2d:44:38:ac:ef:31:0b:40:f1:8f:66:c1:e7:
ca:d9:8f:f3:c0:7d:dd:3f:d5:02:62:21:0d:e4:5f:31:f0:26:
52:fe:2a:54:55:47:27:b7:7c:68:e9:83:b6:42:96:79:11:a9:
34:81:55:ff:4a:eb:84:d8:fa:40:67:30:c3:db:60:7e:9e:3b:
a2:d1:14:4d:33:6a:22:5f:13:50:d3:56:a6:af:7a:a0:77:59:
2f:43:f7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net