Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/3130392e3233362e36322e302f32332d3234203d3e2030.roa
File: 3130392e3233362e36322e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: 0HyMdNxJ3QFzI2H1oe9rlSXi4JC38+BpFSzhWZWX8/g=
Subject key identifier: 16:83:B2:C3:22:F7:7E:05:98:57:3D:DE:52:C0:06:C8:08:98:75:51
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 08CD6D36E4DA2F8F186F9DFC5C2DFDB5164C2EF5
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/3130392e3233362e36322e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:09:28 +0000
ROA not before: Fri 03 Mar 2023 16:04:28 +0000
ROA not after: Fri 01 Mar 2024 16:09:28 +0000
asID: 0
IP address blocks: 109.236.62.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:cd:6d:36:e4:da:2f:8f:18:6f:9d:fc:5c:2d:fd:b5:16:4c:2e:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Mar 3 16:04:28 2023 GMT
Not After : Mar 1 16:09:28 2024 GMT
Subject: CN=1683B2C322F77E0598573DDE52C006C808987551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:25:5b:38:3c:8d:cd:4c:a4:5f:2b:72:0b:2b:
75:0e:8d:37:da:22:85:e1:06:d1:f4:67:a2:63:0f:
21:f8:1e:fc:ad:e0:d6:e7:78:5e:c6:93:b9:6c:85:
3a:6e:3c:ce:45:b9:52:a3:59:37:5c:ac:1f:62:51:
89:84:d7:a8:a1:59:0e:bf:11:8a:57:e9:b6:f4:59:
db:3a:c9:d4:08:3b:ea:fc:37:29:38:ce:50:24:7e:
51:34:2b:b0:05:cb:34:31:89:33:b0:e3:a6:a2:df:
1b:49:68:7c:3c:13:74:61:87:7c:23:07:49:fc:35:
42:4a:26:f2:9c:34:f8:e5:f8:56:e8:ec:83:7d:fb:
3f:50:e4:b5:20:7d:9d:f8:ef:8f:f6:78:20:99:91:
fb:6d:94:7e:f3:bb:a6:d3:d0:a2:8a:12:55:2e:0a:
28:37:61:be:51:f9:7d:73:ac:3a:b2:c5:fc:9e:3e:
cf:c6:b0:27:0f:fd:ca:de:78:b5:35:e7:00:b8:65:
75:bf:7b:46:d9:59:34:99:71:89:78:2e:1e:9b:45:
fc:19:cf:8c:82:a0:b4:c8:91:1d:4a:d4:e2:f8:22:
2f:3f:6c:3a:87:2c:e1:e1:cf:56:58:84:d1:8a:13:
52:e6:09:50:9f:b4:32:38:92:5c:07:c7:b4:84:18:
37:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:83:B2:C3:22:F7:7E:05:98:57:3D:DE:52:C0:06:C8:08:98:75:51
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/3130392e3233362e36322e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.62.0/23
Signature Algorithm: sha256WithRSAEncryption
93:15:04:14:76:fd:1b:69:4b:19:89:06:28:63:dd:3f:d7:ba:
ed:a8:e2:5e:7b:63:74:76:72:28:69:19:8a:cd:9c:a1:9a:3c:
83:68:1f:4a:21:1c:9c:0b:db:2a:b6:9b:f4:2f:ac:bc:82:3e:
70:21:62:fd:2a:b6:6c:ab:f8:15:f3:5b:64:9c:0f:9c:49:43:
fd:ab:ce:4a:86:d1:10:3a:4c:c3:78:76:49:90:8a:c7:af:39:
5b:09:43:99:77:2f:87:ed:f3:94:00:5b:0c:4d:92:18:0b:42:
d1:28:ee:6c:62:99:6d:e3:16:a4:05:e2:7b:3e:86:9a:87:c6:
2e:8e:5a:e5:c8:6c:dc:37:e7:6b:e8:07:19:04:e9:1a:6e:98:
0f:84:8a:cd:b1:76:d7:cd:40:49:5e:46:e6:a5:28:3f:33:04:
d7:68:d0:6a:6e:9a:78:b8:68:5b:1f:7d:e7:c4:01:48:b0:21:
13:85:f0:58:2d:56:a9:f5:cc:32:11:90:b4:08:2c:ac:fd:be:
b2:13:39:83:9e:54:10:2e:1e:26:e2:50:73:7b:d8:27:bf:91:
fc:4e:7b:9d:20:94:5b:16:d7:56:ba:e7:6b:03:03:c7:1b:1f:
41:3a:08:61:58:79:a0:7d:d5:cb:13:17:76:5d:3f:a5:40:92:
d2:d5:99:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net