Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa
File: 33372e34342e3234342e302f32332d3234203d3e203437353833.roa (raw, json)
Hash identifier: iLxQvjfhcbsW3T+TkWa+amKM0ycP4GXKTYmLd1c3yVA=
Subject key identifier: 5F:19:5E:18:E8:D6:4F:FC:69:6F:47:1D:B5:CA:3C:E7:8C:43:04:D9
Certificate issuer: /CN=57ee86dfc56d55209a35924d831530035bae3907
Certificate serial: 09CD78AD6C900E077219F252A0AD5C79BA640979
Authority key identifier: 57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa
Signing time: Sat 22 Oct 2022 04:33:58 +0000
ROA not before: Sat 22 Oct 2022 04:28:58 +0000
ROA not after: Sat 21 Oct 2023 04:33:58 +0000
asID: 47583
IP address blocks: 37.44.244.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:cd:78:ad:6c:90:0e:07:72:19:f2:52:a0:ad:5c:79:ba:64:09:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57ee86dfc56d55209a35924d831530035bae3907
Validity
Not Before: Oct 22 04:28:58 2022 GMT
Not After : Oct 21 04:33:58 2023 GMT
Subject: CN=5F195E18E8D64FFC696F471DB5CA3CE78C4304D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d6:a4:94:9f:00:8a:74:6f:95:f5:8f:c1:c1:
3d:1c:b0:92:97:e8:3d:4a:57:44:e3:bd:15:9f:42:
ee:8f:e9:76:74:55:1f:81:b8:8f:de:e8:e5:e6:51:
d8:59:00:6a:10:e1:17:7d:a0:45:cd:a7:f6:8e:9a:
b3:45:8a:c8:47:95:b2:5a:95:c0:77:5c:27:11:ee:
f2:16:69:be:48:96:e8:0e:6d:44:12:78:9f:90:af:
22:eb:22:3f:8a:df:d9:4f:b2:8d:76:2c:f5:13:73:
2b:04:a3:ef:27:50:93:46:f9:2c:67:19:1a:05:d8:
39:b3:b8:4a:99:c0:3c:27:f3:92:e4:5c:99:57:0a:
d5:c8:6a:4b:d0:fc:a7:19:c9:c0:cc:ff:17:88:80:
c0:c3:13:61:60:05:2f:32:c7:3c:6c:99:5c:ca:da:
ef:fd:a9:12:24:4a:15:39:62:84:ef:01:79:b0:59:
f7:f2:89:3b:6f:5d:83:cd:d1:35:d4:5d:5c:73:dc:
fe:8c:4f:00:e6:a3:fe:d3:ea:f9:73:b6:f0:c6:e9:
7e:01:c9:b8:0b:0a:77:bb:71:09:34:9c:9f:21:1e:
70:cf:f9:13:04:f7:e8:18:34:26:83:a6:f6:f6:08:
93:92:dd:21:37:5b:dc:2b:09:09:6f:c7:91:95:30:
d6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:19:5E:18:E8:D6:4F:FC:69:6F:47:1D:B5:CA:3C:E7:8C:43:04:D9
X509v3 Authority Key Identifier:
keyid:57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/57EE86DFC56D55209A35924D831530035BAE3907.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/33372e34342e3234342e302f32332d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.244.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:3e:ec:02:7a:c3:41:ba:2b:89:20:de:d0:f8:2a:62:4a:f4:
fa:50:ff:27:be:fe:f2:da:be:3b:97:af:77:b1:a8:3a:e6:cd:
be:e3:e1:1a:e2:46:b5:d6:89:b0:37:1c:43:0e:41:7f:6b:89:
9b:92:2e:72:24:a9:e2:be:a3:a7:c0:e5:f7:17:d4:17:44:80:
5b:a6:d1:a5:d3:72:64:3a:31:e0:22:f6:bc:9b:77:4e:c1:71:
9d:84:3c:08:70:da:a9:0e:7c:88:ac:d7:dd:ca:03:65:da:6c:
22:05:1f:d6:7a:fc:40:ff:8f:6a:65:6a:14:fa:cc:a2:cc:27:
10:86:75:cd:a2:b9:88:04:c5:97:b2:3d:ab:e6:5d:9e:1c:5b:
7e:34:cc:23:28:ed:c5:11:d0:49:0c:01:97:c6:83:06:99:0b:
87:19:a7:03:c8:f6:59:b3:88:67:5c:63:8c:02:12:f6:17:86:
02:52:8d:b7:e7:39:29:d3:c1:3f:b9:d0:c3:8e:26:b7:d7:9e:
9d:3e:b2:54:c8:8c:1d:c6:d3:f0:a4:c0:5f:50:fa:d1:41:d6:
34:9d:18:41:06:6b:ba:da:07:5a:01:4e:5c:85:8f:46:b5:bc:
73:05:b5:e1:e4:d7:b8:e9:bc:5d:c1:13:02:19:0e:94:d6:3c:
79:3f:ff:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net