Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/3139342e352e3135322e302f32342d3332203d3e203531313637.roa
File: 3139342e352e3135322e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: uLFYpujlpokZ21viqwpPZL+Lm6WKkC1HND3qHPUSZkY=
Subject key identifier: CB:39:DA:7C:55:A8:3F:E3:9D:CB:CD:AE:E8:BF:57:60:04:D1:51:F6
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 0917FBC0C51C6054AC05DDD76B34FE0EFD249187
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/3139342e352e3135322e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:34:02 +0000
ROA not before: Sat 22 Oct 2022 04:29:02 +0000
ROA not after: Sat 21 Oct 2023 04:34:02 +0000
asID: 51167
IP address blocks: 194.5.152.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:17:fb:c0:c5:1c:60:54:ac:05:dd:d7:6b:34:fe:0e:fd:24:91:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Oct 22 04:29:02 2022 GMT
Not After : Oct 21 04:34:02 2023 GMT
Subject: CN=CB39DA7C55A83FE39DCBCDAEE8BF576004D151F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:43:3e:11:d5:95:c0:c9:ab:e9:e6:d7:c8:4b:
88:60:26:b6:ab:a5:c8:2c:9d:29:6e:60:e0:2d:2e:
d0:c2:36:ae:af:bd:19:25:dd:51:b5:11:81:56:c5:
2d:36:fc:2f:4a:bf:73:18:81:5e:6a:b3:9e:97:b0:
99:4a:56:4d:62:f1:f5:ee:7d:ca:25:26:df:40:e2:
60:4b:1d:97:39:d6:04:81:09:52:15:87:aa:b2:0d:
d7:f6:54:1d:e9:02:67:36:18:4e:a0:26:29:8b:67:
7c:67:15:b1:32:1c:da:af:c5:4b:db:73:cc:a1:2e:
be:18:6f:07:4f:4f:44:4c:db:24:be:77:89:2d:73:
52:41:cf:4f:33:8f:96:d2:10:49:fc:2c:4b:7d:a2:
d2:47:53:b5:66:cb:af:76:19:d7:1a:92:02:79:1c:
49:d1:da:ef:2a:ec:23:47:32:81:25:3b:c2:cc:d4:
d7:0b:c4:3c:89:20:e3:0b:97:22:62:38:31:7e:c6:
67:25:ad:12:40:a6:b6:35:13:b3:ac:14:bb:7f:a3:
8e:5f:62:3b:d7:7c:7f:26:51:97:ff:d9:73:c9:3c:
b4:13:b3:ab:b8:1c:08:28:6d:5b:3a:1d:1b:60:82:
c7:5d:a2:57:d8:cc:ba:7b:0c:fb:9b:bd:b3:27:79:
42:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:39:DA:7C:55:A8:3F:E3:9D:CB:CD:AE:E8:BF:57:60:04:D1:51:F6
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/3139342e352e3135322e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.152.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b6:df:dc:4f:3c:47:f3:c5:78:3d:3c:fb:6c:36:40:ea:15:
63:cb:3e:40:dd:09:28:ce:f7:94:45:c6:e8:d5:66:5f:d7:84:
8a:d5:66:82:13:1f:ff:be:19:92:32:fe:d0:a7:a4:9f:53:c9:
ac:fb:9a:9c:46:57:72:5b:fa:a4:40:7f:67:5f:37:ae:f8:91:
d9:f1:e3:31:9f:7c:c9:fc:82:9d:67:35:07:9c:bb:94:e4:b3:
75:9a:6a:68:22:03:76:20:88:21:cf:da:c7:b0:c2:e6:ce:f7:
b1:56:36:f8:df:44:59:18:80:2c:e0:73:a9:97:12:e0:a5:1e:
60:5a:9a:3c:61:17:ca:15:cd:50:7e:ee:6d:aa:4c:b5:35:3a:
ce:6c:a1:99:3c:58:d0:49:64:fb:4e:25:75:1d:62:59:bc:09:
90:8a:22:ac:e7:4b:dc:da:6e:30:46:01:f0:df:89:99:2c:46:
30:81:52:29:66:66:0e:29:74:94:9a:8c:e3:cc:1c:ae:f3:50:
d0:37:8f:19:c0:2e:80:d9:c2:48:c0:7f:0c:ba:5d:b6:92:2f:
6d:c1:75:5c:27:99:8f:d8:2e:a9:c9:87:3f:d0:69:08:d0:6f:
ed:7d:f7:7a:04:a9:00:8b:59:81:8a:ad:67:e9:e9:c7:78:20:
e5:b1:09:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net