Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/7/34352e39342e3231312e302f32342d3234203d3e2030.roa
File: 34352e39342e3231312e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: o0Ryhk1mnwi83Zo2ETkz/H9OtFo+lrABTmLiO4NzI3g=
Subject key identifier: 49:4D:3F:86:1D:90:EB:32:62:62:8B:7E:EA:AF:3B:A2:01:D0:29:66
Certificate issuer: /CN=5dc970755824cb967cad6f3b964709b092d43069
Certificate serial: 43A2F5499297551FAE3DB027A668719FD4ACF460
Authority key identifier: 5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/7/34352e39342e3231312e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:02:18 +0000
ROA not before: Fri 03 Mar 2023 15:57:18 +0000
ROA not after: Fri 01 Mar 2024 16:02:18 +0000
asID: 0
IP address blocks: 45.94.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:a2:f5:49:92:97:55:1f:ae:3d:b0:27:a6:68:71:9f:d4:ac:f4:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc970755824cb967cad6f3b964709b092d43069
Validity
Not Before: Mar 3 15:57:18 2023 GMT
Not After : Mar 1 16:02:18 2024 GMT
Subject: CN=494D3F861D90EB3262628B7EEAAF3BA201D02966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e7:91:ce:b2:ef:53:25:fa:73:2e:3c:50:9f:
91:4e:ac:3f:c0:a1:79:f0:9c:86:0c:94:8d:a4:75:
86:fc:ee:68:8d:a2:99:77:c4:5c:72:77:80:48:46:
b6:ca:fb:e5:58:b3:7a:63:9a:9b:1a:52:91:dc:d6:
56:57:d9:28:85:9e:9a:36:b4:89:2d:2d:7b:f5:59:
19:af:99:f7:e1:e9:7a:02:f7:cf:f8:25:ec:5d:49:
6a:0e:98:6d:43:96:a6:c3:dc:0b:8f:2a:b4:df:d6:
0a:6d:7d:b7:b0:67:6f:9a:a5:2d:d4:57:de:57:18:
0f:1b:2d:26:96:54:3d:62:e6:b5:e8:a0:01:f1:dc:
19:35:1f:89:56:2c:e3:c9:ea:3f:20:b0:27:60:71:
42:ac:6d:df:86:6b:c4:b3:dc:40:32:9e:f2:35:dc:
27:b4:21:67:12:c8:7f:e3:39:78:15:f0:86:ed:ec:
19:c4:1d:69:6f:fd:5e:b1:09:e2:47:ab:b0:85:35:
f0:d6:e9:dc:90:5b:08:99:60:50:c5:fd:2d:93:94:
03:26:e2:33:a2:42:39:47:8c:ea:27:e4:7b:a1:02:
dd:2f:34:4c:ab:79:01:9e:6c:bc:bd:c3:29:cf:cb:
61:1a:ca:6f:89:a8:82:f9:26:f7:7c:44:74:a1:9d:
0a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4D:3F:86:1D:90:EB:32:62:62:8B:7E:EA:AF:3B:A2:01:D0:29:66
X509v3 Authority Key Identifier:
keyid:5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/34352e39342e3231312e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.211.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:82:1b:20:fd:3d:fd:c6:72:7b:37:e9:89:dd:5c:a9:1c:e7:
68:83:25:91:91:95:9f:05:5c:da:21:6f:48:09:47:cc:3e:a8:
13:1c:62:b2:9d:49:14:63:b1:11:ae:4f:19:0e:91:a5:1b:1f:
93:8b:ee:1f:dd:d2:1d:e6:09:a1:ea:1d:be:86:8c:ea:e3:57:
29:67:4e:58:32:ac:0e:02:2e:7e:73:72:1b:22:55:3f:56:82:
4d:6f:09:61:24:13:87:66:fb:96:9b:28:25:3d:fb:61:44:9b:
d6:18:e2:71:f5:d0:e6:a3:d9:dd:75:db:85:a6:f2:21:6a:d9:
97:14:c8:69:e4:00:e4:a1:ff:a7:56:9c:47:df:59:a5:12:66:
4e:a2:30:b5:af:83:d3:37:bb:4a:18:4c:ea:a4:af:ac:a1:97:
3d:fc:d8:fd:50:df:b6:95:99:64:2f:2b:af:e0:22:a1:ec:5f:
4f:2f:f6:47:cf:ee:fe:52:6f:13:d7:a1:71:f3:20:53:73:5a:
b8:a7:7c:0c:af:5c:81:cb:b8:56:ce:cd:0d:d5:6a:c0:72:fd:
50:1e:d1:07:fb:b5:aa:b2:e7:43:c9:9e:65:3f:49:f1:14:bf:
ce:46:c3:b8:6f:af:d3:62:91:32:89:92:84:04:a8:da:92:59:
4d:99:bc:f8
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUQ6L1SZKXVR+uPbAnpmhxn9Ss9GAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWRjOTcwNzU1ODI0Y2I5NjdjYWQ2ZjNiOTY0NzA5YjA5
MmQ0MzA2OTAeFw0yMzAzMDMxNTU3MThaFw0yNDAzMDExNjAyMThaMDMxMTAvBgNV
BAMTKDQ5NEQzRjg2MUQ5MEVCMzI2MjYyOEI3RUVBQUYzQkEyMDFEMDI5NjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC55HOsu9TJfpzLjxQn5FOrD/A
oXnwnIYMlI2kdYb87miNopl3xFxyd4BIRrbK++VYs3pjmpsaUpHc1lZX2SiFnpo2
tIktLXv1WRmvmffh6XoC98/4JexdSWoOmG1DlqbD3AuPKrTf1gptfbewZ2+apS3U
V95XGA8bLSaWVD1i5rXooAHx3Bk1H4lWLOPJ6j8gsCdgcUKsbd+Ga8Sz3EAynvI1
3Ce0IWcSyH/jOXgV8Ibt7BnEHWlv/V6xCeJHq7CFNfDW6dyQWwiZYFDF/S2TlAMm
4jOiQjlHjOon5HuhAt0vNEyreQGebLy9wynPy2Eaym+JqIL5Jvd8RHShnQoXAgMB
AAGjggHmMIIB4jAdBgNVHQ4EFgQUSU0/hh2Q6zJiYot+6q87ogHQKWYwHwYDVR0j
BBgwFoAUXclwdVgky5Z8rW87lkcJsJLUMGkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzcvNURDOTcwNzU1ODI0Q0I5NjdDQUQ2RjNCOTY0NzA5QjA5
MkQ0MzA2OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hjbHdkVmdreTVaOHJX
ODdsa2NKc0pMVU1Hay5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJy
c3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC83
LzM0MzUyZTM5MzQyZTMyMzEzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQALV7TMA0GCSqGSIb3DQEBCwUAA4IBAQCKghsg/T39xnJ7N+mJ3Vyp
HOdogyWRkZWfBVzaIW9ICUfMPqgTHGKynUkUY7ERrk8ZDpGlGx+Ti+4f3dId5gmh
6h2+hozq41cpZ05YMqwOAi5+c3IbIlU/VoJNbwlhJBOHZvuWmyglPfthRJvWGOJx
9dDmo9nddduFpvIhatmXFMhp5ADkof+nVpxH31mlEmZOojC1r4PTN7tKGEzqpK+s
oZc9/Nj9UN+2lZlkLyuv4CKh7F9PL/ZHz+7+Um8T16Fx8yBTc1q4p3wMr1yBy7hW
zs0N1WrAcv1QHtEH+7WqsudDyZ5lP0nxFL/ORsO4b6/TYpEyiZKEBKjakllNmbz4
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net