Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/5/34352e31332e37322e302f32322d3234203d3e20323033303631.roa
File: 34352e31332e37322e302f32322d3234203d3e20323033303631.roa (raw, json)
Hash identifier: vxyUaousfUIWfnzZB9BWCWJB4MwxnwQciFrgyWY046M=
Subject key identifier: D2:2A:47:CE:9A:9E:6C:F9:C7:C6:12:1B:0D:00:12:FE:A1:BD:B8:69
Certificate issuer: /CN=57ee86dfc56d55209a35924d831530035bae3907
Certificate serial: 6D9DDBC9B70E6F86E84E2470DA406F90A3490251
Authority key identifier: 57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/5/34352e31332e37322e302f32322d3234203d3e20323033303631.roa
Signing time: Sat 22 Oct 2022 04:33:53 +0000
ROA not before: Sat 22 Oct 2022 04:28:53 +0000
ROA not after: Sat 21 Oct 2023 04:33:53 +0000
asID: 203061
IP address blocks: 45.13.72.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:9d:db:c9:b7:0e:6f:86:e8:4e:24:70:da:40:6f:90:a3:49:02:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57ee86dfc56d55209a35924d831530035bae3907
Validity
Not Before: Oct 22 04:28:53 2022 GMT
Not After : Oct 21 04:33:53 2023 GMT
Subject: CN=D22A47CE9A9E6CF9C7C6121B0D0012FEA1BDB869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dd:73:6a:91:ef:7e:81:40:80:9a:9b:d4:be:
b4:5b:cf:47:f8:db:d8:87:0d:3c:23:cd:17:4e:d7:
f4:2d:c9:c4:86:ac:73:f6:c1:58:fd:ea:78:b9:c4:
6e:23:2a:29:42:b2:22:2b:42:3a:2e:8f:ad:c0:ca:
7f:3b:74:79:c7:3a:3f:59:f3:a2:2a:c8:26:05:4f:
af:bd:7f:52:ca:4f:60:c0:01:7d:ca:90:d4:90:8f:
af:83:64:83:12:47:a5:46:c1:18:5b:64:05:32:3c:
a1:91:cc:b3:54:be:c5:f7:94:36:ee:fd:6f:19:6d:
02:d3:fb:23:e0:c6:14:8e:1c:c5:64:13:87:82:2f:
61:70:96:34:10:1f:54:89:0c:59:94:cb:6e:79:c7:
ba:fb:29:03:43:aa:5c:b0:64:5c:06:b4:84:a7:27:
98:9b:ae:90:4e:23:91:26:ca:79:4f:11:e4:28:47:
20:5f:5a:fa:43:d9:20:25:bc:57:af:d4:c7:f3:14:
eb:e6:c2:46:74:b5:28:be:61:a0:51:a4:07:21:3b:
05:30:a9:ba:3d:73:60:38:0b:81:7a:d6:b9:f6:44:
fa:c1:8a:0e:65:6e:1f:35:32:5e:be:33:bb:e3:ed:
cb:63:70:53:a2:26:98:0a:df:ae:03:99:3c:f7:86:
5e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:2A:47:CE:9A:9E:6C:F9:C7:C6:12:1B:0D:00:12:FE:A1:BD:B8:69
X509v3 Authority Key Identifier:
keyid:57:EE:86:DF:C5:6D:55:20:9A:35:92:4D:83:15:30:03:5B:AE:39:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/57EE86DFC56D55209A35924D831530035BAE3907.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V-6G38VtVSCaNZJNgxUwA1uuOQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/5/34352e31332e37322e302f32322d3234203d3e20323033303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.72.0/22
Signature Algorithm: sha256WithRSAEncryption
65:7d:55:28:90:9a:7c:09:01:9f:dd:06:70:bb:9e:0f:ce:67:
6e:a5:f8:3b:62:79:d3:12:d2:d1:fb:b6:29:ca:81:9c:d0:73:
ad:d7:88:70:d0:9b:ae:6e:26:11:43:3f:43:9b:ed:c8:40:cd:
e8:eb:f9:4e:18:8e:94:07:38:2f:63:24:46:3f:34:a1:f8:ed:
e3:75:ba:81:0f:7e:3d:00:9c:61:21:ef:fa:76:c5:89:2b:b7:
4c:4b:2a:2e:1e:d4:5b:25:99:41:59:ca:38:d2:fc:f2:82:68:
e1:67:91:10:52:b6:ce:cf:ae:78:8b:f9:15:36:06:13:5d:82:
03:af:29:26:03:40:b1:d5:80:5c:c3:35:53:4b:43:8f:0d:84:
53:a3:d8:b3:e4:90:4c:07:97:a7:da:ce:fb:52:cd:64:a3:f9:
5f:01:10:13:f6:0c:28:88:a5:8c:6d:13:e5:5c:34:3b:39:d7:
f3:f0:5e:a7:8b:99:42:f0:1a:d5:4c:3b:28:85:5d:87:76:81:
ba:8b:77:89:2d:ec:46:95:ca:75:fe:08:4c:df:8d:8e:d6:72:
70:1c:d1:b4:36:66:c7:01:9f:cc:d8:b4:a8:e8:d8:be:64:8c:
3b:b6:f6:a5:4f:fa:9f:22:02:9e:8d:7c:d8:73:93:29:b8:2f:
83:f0:28:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:52 2023 by rpki-client on console.sobornost.net