Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/5/322e35382e33322e302f32322d3234203d3e20323033303631.roa
File: 322e35382e33322e302f32322d3234203d3e20323033303631.roa (raw, json)
Hash identifier: Xq4Juon0IWgwqJ7DVqfqBDX5hH9Ri4GrxWDlIIT2a10=
Subject key identifier: 09:77:B2:CD:87:47:64:D1:F5:D9:38:50:EA:B6:4C:0D:8D:12:1A:A9
Certificate issuer: /CN=57ee86dfc56d55209a35924d831530035bae3907
Certificate serial: 6A2A2044811D9BA52EA748D2093DA28F9F90CA19
Authority key identifier: 57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/5/322e35382e33322e302f32322d3234203d3e20323033303631.roa
Signing time: Sat 22 Oct 2022 04:33:53 +0000
ROA not before: Sat 22 Oct 2022 04:28:53 +0000
ROA not after: Sat 21 Oct 2023 04:33:53 +0000
asID: 203061
IP address blocks: 2.58.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:2a:20:44:81:1d:9b:a5:2e:a7:48:d2:09:3d:a2:8f:9f:90:ca:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57ee86dfc56d55209a35924d831530035bae3907
Validity
Not Before: Oct 22 04:28:53 2022 GMT
Not After : Oct 21 04:33:53 2023 GMT
Subject: CN=0977B2CD874764D1F5D93850EAB64C0D8D121AA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:24:96:77:1f:c1:21:ed:c5:61:48:8f:13:
ac:92:fa:fa:35:09:24:88:55:b5:56:d4:ba:66:4c:
1a:95:8d:b2:98:1e:98:ab:d3:cd:43:89:ea:90:21:
ec:5a:30:3a:d3:06:77:c2:7a:06:d7:b8:cb:46:b8:
f7:06:00:b6:58:68:74:08:e7:b9:a5:07:b2:98:61:
bc:d5:04:8b:2a:73:b9:6e:4d:aa:c0:10:a7:13:ae:
23:0c:68:8c:d4:5c:bd:23:e7:e0:88:c0:68:84:69:
da:0a:eb:f6:83:6b:63:fc:2f:85:ea:26:d1:61:a8:
a7:6d:3d:63:c6:88:32:3c:f7:d9:6f:1c:1d:d2:b6:
6c:56:7c:f3:67:13:3d:cf:f9:f7:6b:65:37:fb:77:
dc:6d:a5:0a:5f:f1:93:02:49:34:bb:dc:85:d7:d3:
aa:17:33:1f:22:a3:ef:2e:07:0a:2a:e2:9e:41:7b:
03:fc:2d:9a:2f:01:92:f6:b8:41:b9:a1:67:d6:81:
5d:dc:e7:0a:52:f4:81:46:f9:f8:5e:b1:da:f0:1b:
4b:e2:6f:a5:b4:bd:1b:7d:6d:82:48:17:af:62:40:
90:5f:74:2f:20:df:43:7a:05:70:33:b3:fd:1f:0b:
de:ec:ae:dd:14:8b:39:52:b7:c5:69:75:e0:31:ae:
93:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:77:B2:CD:87:47:64:D1:F5:D9:38:50:EA:B6:4C:0D:8D:12:1A:A9
X509v3 Authority Key Identifier:
keyid:57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/57EE86DFC56D55209A35924D831530035BAE3907.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/322e35382e33322e302f32322d3234203d3e20323033303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.32.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:61:17:6c:a0:d7:94:25:26:af:a2:3a:9b:7c:73:9a:f9:79:
9b:54:b9:85:64:1e:e8:59:d1:36:39:d7:5a:63:a6:3b:dc:96:
58:3c:5f:fd:06:95:55:87:79:1f:0b:43:57:93:09:c1:ea:a1:
68:57:f6:03:a2:96:f0:e3:9a:40:7c:01:4c:62:16:0f:77:f5:
3b:59:00:53:68:ed:7f:99:3b:d2:9d:3e:e8:b8:b4:d1:0e:d8:
b0:af:25:a1:ce:12:5d:bd:c3:ee:13:b1:7c:e1:b9:53:f0:fc:
1c:97:50:c3:3a:93:65:07:38:0a:5b:07:26:d0:8a:87:80:35:
c9:c3:7a:da:23:9c:5a:13:50:3a:bd:32:5c:10:10:81:1d:f4:
86:42:e5:1f:91:ed:0b:ab:6e:12:a3:b0:89:49:3e:a1:27:0d:
8b:fd:78:eb:8a:7a:d2:22:b9:cd:a1:69:71:57:76:d6:72:d4:
92:f8:12:99:3e:6b:01:e1:4c:c9:b1:0c:eb:3e:5f:aa:55:88:
c2:cf:b2:8d:ed:46:b7:20:e8:a8:6d:55:9f:9f:87:d9:19:46:
5e:3f:6d:8c:aa:01:f4:5a:cc:6d:26:6c:04:39:88:5e:d6:cf:
22:78:4e:b2:99:66:35:03:a4:0d:04:91:c8:91:c5:69:0b:88:
98:99:6c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net