Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/5/322e35362e37322e302f32322d3234203d3e20333936333139.roa
File: 322e35362e37322e302f32322d3234203d3e20333936333139.roa (raw, json)
Hash identifier: SY2YPiRt/bAH+1tKz9FiwNqLf74Teoy/C/zlrefXct0=
Subject key identifier: 3E:20:25:5A:18:89:6A:A5:0B:CF:FE:05:A4:D7:49:DC:36:70:22:4E
Certificate issuer: /CN=57ee86dfc56d55209a35924d831530035bae3907
Certificate serial: 56402D08E7D687C498AF994082BC6B4BAF937E39
Authority key identifier: 57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/5/322e35362e37322e302f32322d3234203d3e20333936333139.roa
Signing time: Sat 22 Oct 2022 04:33:55 +0000
ROA not before: Sat 22 Oct 2022 04:28:55 +0000
ROA not after: Sat 21 Oct 2023 04:33:55 +0000
asID: 396319
IP address blocks: 2.56.72.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:40:2d:08:e7:d6:87:c4:98:af:99:40:82:bc:6b:4b:af:93:7e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57ee86dfc56d55209a35924d831530035bae3907
Validity
Not Before: Oct 22 04:28:55 2022 GMT
Not After : Oct 21 04:33:55 2023 GMT
Subject: CN=3E20255A18896AA50BCFFE05A4D749DC3670224E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8d:53:75:b7:e8:ec:58:7b:5d:2c:27:a4:3a:
97:bb:a9:25:4a:37:c3:06:74:52:6d:bc:11:9e:f8:
34:8a:cf:04:0f:76:65:96:28:ea:fa:b6:64:e7:b7:
b5:86:2a:3d:44:95:52:10:17:19:18:72:c3:ba:8a:
b3:80:5a:87:c5:30:73:b6:ce:23:56:d0:17:b3:2c:
bd:e0:72:ea:3e:20:26:3b:6a:09:a6:ec:20:eb:c2:
48:44:47:b2:32:13:a8:47:34:a3:c1:28:9a:1d:4e:
83:10:c9:35:02:c3:0c:37:2d:ae:f8:21:89:33:33:
3f:29:32:82:6a:b2:a5:08:bf:95:c0:3c:4e:5b:a7:
a2:ff:f2:2a:74:ac:eb:8b:f4:95:fa:c5:bd:68:ad:
87:74:0b:4b:95:ad:20:e2:83:c5:a9:cc:71:09:34:
f3:c3:fd:8d:da:80:c0:6c:1b:7d:df:d2:f0:5e:1b:
d8:6e:2b:69:c6:44:66:4c:8b:a1:28:9b:70:d8:76:
dc:95:f4:af:dc:93:97:f8:c1:05:16:eb:64:63:41:
02:0c:6b:dd:89:14:31:28:68:9e:9b:d3:b7:33:e3:
63:8e:cb:8b:b4:df:6a:47:81:bf:40:a7:d6:72:8f:
41:a1:0b:3a:ea:37:11:a2:67:b7:b3:5d:11:db:c0:
1b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:20:25:5A:18:89:6A:A5:0B:CF:FE:05:A4:D7:49:DC:36:70:22:4E
X509v3 Authority Key Identifier:
keyid:57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/57EE86DFC56D55209A35924D831530035BAE3907.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/322e35362e37322e302f32322d3234203d3e20333936333139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.72.0/22
Signature Algorithm: sha256WithRSAEncryption
11:23:6c:38:42:9b:0d:81:64:69:dc:62:7a:71:bd:f6:2d:50:
0d:be:11:e6:5a:4d:7c:e4:52:3b:e3:59:ad:95:f4:10:0c:c6:
27:cf:66:7c:41:99:53:b1:ca:b6:2e:b0:52:23:84:6b:31:b9:
35:7a:01:ca:44:6a:11:b0:85:dc:6a:d4:87:79:bc:a3:59:6d:
dc:e3:e3:b9:e2:e5:24:72:67:95:ca:28:b8:0f:ca:8e:03:04:
9a:62:65:be:30:b0:8e:e3:69:86:9d:ae:50:61:a8:78:8d:2c:
a4:9b:d5:d9:09:94:72:8c:9c:82:9e:3a:bb:6d:64:75:a1:84:
7b:6c:2d:3d:a8:b2:e5:69:39:87:44:a1:55:dd:10:f8:ec:f0:
c8:9d:44:62:ca:fa:19:70:d1:7d:9d:ec:97:5c:13:f9:d1:67:
03:f0:8d:4e:05:37:31:0a:20:38:6a:a3:1c:f8:9c:24:04:0d:
29:4f:f1:88:91:bf:b9:17:65:9c:68:d3:f3:7b:f8:22:e9:f2:
1d:90:12:ff:0f:5b:5c:0c:3d:6e:d0:91:eb:69:1d:4a:7b:67:
b0:a7:f7:28:4d:fc:9f:05:b8:6e:93:17:f7:cc:dc:8b:2b:c7:
f4:0a:5b:0c:81:b2:97:0a:af:62:b7:8f:52:18:5d:59:49:fd:
c1:06:c5:93
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIUVkAtCOfWh8SYr5lAgrxrS6+TfjkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdlZTg2ZGZjNTZkNTUyMDlhMzU5MjRkODMxNTMwMDM1
YmFlMzkwNzAeFw0yMjEwMjIwNDI4NTVaFw0yMzEwMjEwNDMzNTVaMDMxMTAvBgNV
BAMTKDNFMjAyNTVBMTg4OTZBQTUwQkNGRkUwNUE0RDc0OURDMzY3MDIyNEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3jVN1t+jsWHtdLCekOpe7qSVK
N8MGdFJtvBGe+DSKzwQPdmWWKOr6tmTnt7WGKj1ElVIQFxkYcsO6irOAWofFMHO2
ziNW0BezLL3gcuo+ICY7agmm7CDrwkhER7IyE6hHNKPBKJodToMQyTUCwww3La74
IYkzMz8pMoJqsqUIv5XAPE5bp6L/8ip0rOuL9JX6xb1orYd0C0uVrSDig8WpzHEJ
NPPD/Y3agMBsG33f0vBeG9huK2nGRGZMi6Eom3DYdtyV9K/ck5f4wQUW62RjQQIM
a92JFDEoaJ6b07cz42OOy4u032pHgb9Ap9Zyj0GhCzrqNxGiZ7ezXRHbwBtlAgMB
AAGjggHtMIIB6TAdBgNVHQ4EFgQUPiAlWhiJaqULz/4FpNdJ3DZwIk4wHwYDVR0j
BBgwFoAUV+6G38VtVSCaNZJNgxUwA1uuOQcwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzUvNTdFRTg2REZDNTZENTUyMDlBMzU5MjREODMxNTMwMDM1
QkFFMzkwNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1YtNkczOFZ0VlNDYU5a
Sk5neFV3QTF1dU9RYy5jZXIwgYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4Zo
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NS8zMjJlMzUzNjJlMzczMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMzMzkzNjMz
MzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAgI4SDANBgkqhkiG9w0BAQsFAAOCAQEAESNsOEKbDYFk
adxienG99i1QDb4R5lpNfORSO+NZrZX0EAzGJ89mfEGZU7HKti6wUiOEazG5NXoB
ykRqEbCF3GrUh3m8o1lt3OPjueLlJHJnlcoouA/KjgMEmmJlvjCwjuNphp2uUGGo
eI0spJvV2QmUcoycgp46u21kdaGEe2wtPaiy5Wk5h0ShVd0Q+OzwyJ1EYsr6GXDR
fZ3sl1wT+dFnA/CNTgU3MQogOGqjHPicJAQNKU/xiJG/uRdlnGjT83v4IunyHZAS
/w9bXAw9btCR62kdSntnsKf3KE38nwW4bpMX98zciyvH9ApbDIGylwqvYrePUhhd
WUn9wQbFkw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net