Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/34352e38382e3139362e302f32322d3234203d3e203437353833.roa
File: 34352e38382e3139362e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 6QGr5BFxpqILzlmaCBlnQpe9DAb/UeIvYxYp5rVFVnY=
Subject key identifier: 7D:03:B3:D9:55:0F:A2:BA:44:5C:5A:96:FF:14:6D:5B:50:F7:DF:87
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 097AD5E48E67B5CE5FAF52410C8B1B34BECE3887
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/34352e38382e3139362e302f32322d3234203d3e203437353833.roa
Signing time: Sat 22 Oct 2022 04:34:04 +0000
ROA not before: Sat 22 Oct 2022 04:29:04 +0000
ROA not after: Sat 21 Oct 2023 04:34:04 +0000
asID: 47583
IP address blocks: 45.88.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:7a:d5:e4:8e:67:b5:ce:5f:af:52:41:0c:8b:1b:34:be:ce:38:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Oct 22 04:29:04 2022 GMT
Not After : Oct 21 04:34:04 2023 GMT
Subject: CN=7D03B3D9550FA2BA445C5A96FF146D5B50F7DF87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4e:8f:ce:b0:dc:03:51:7a:c8:8d:3b:87:57:
eb:c6:8a:78:d3:84:91:ab:ed:f1:c7:b9:bb:05:73:
9e:c3:e4:92:52:1a:42:2e:05:f3:70:8a:57:3b:8a:
f2:23:52:4e:ae:b1:72:e1:0b:6d:bc:45:58:28:d2:
bc:a2:30:e7:c0:10:89:7d:34:9d:21:84:26:c6:22:
4f:f5:84:19:dd:ef:77:c7:f1:e1:3e:03:84:ab:b1:
f6:d3:4c:a7:3f:9c:66:c4:48:9e:98:d7:60:4a:5c:
61:54:19:d4:49:09:87:50:7a:7e:a6:66:19:1c:5c:
52:b2:a3:b7:9a:fe:0c:32:c8:a6:b4:12:32:10:20:
e4:90:bc:c2:85:5a:2a:5d:3e:f6:cc:e0:bd:6f:b7:
c7:e8:34:e4:72:74:59:0b:a7:47:40:72:27:3a:ba:
cf:34:9d:15:3f:36:c8:3e:bf:0e:a1:b3:83:d1:93:
b2:d3:b3:b0:82:1b:05:c6:2f:00:f5:12:ef:65:f9:
0a:bc:45:f2:2d:42:91:96:78:66:8e:2b:e6:f0:e2:
e6:62:e6:d5:ac:98:cc:bd:48:fb:4c:cc:96:62:4b:
0b:00:39:b8:60:86:e1:4c:8e:06:54:5c:54:54:35:
5f:f6:48:84:0c:25:7c:58:62:23:3d:1c:a4:20:4d:
47:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:03:B3:D9:55:0F:A2:BA:44:5C:5A:96:FF:14:6D:5B:50:F7:DF:87
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/34352e38382e3139362e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.196.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:2d:83:34:de:b0:10:84:86:75:40:83:3a:43:f8:40:60:9f:
59:05:33:f1:8b:09:26:89:eb:d7:15:59:b1:6d:6a:d0:e9:ca:
52:38:f8:f9:a4:08:83:50:3e:4b:b1:9e:75:a8:56:f3:8d:94:
84:af:4f:4f:59:f7:97:e4:9a:cc:c5:dc:e2:f1:28:ef:4b:8f:
f8:4c:44:14:8c:77:e4:14:7e:e3:e6:50:3f:85:46:c9:d3:4e:
5a:fa:7e:e4:19:9a:0d:9d:96:96:37:65:de:a6:30:09:25:a3:
c1:a3:3e:73:7c:6d:b6:5c:17:bf:8d:a6:d9:52:0f:dd:85:fe:
d7:8f:37:d3:a1:9b:e3:b0:71:31:85:36:3d:73:3d:5f:33:ba:
1c:e1:ab:f7:4b:fa:e8:3f:fb:f1:bd:d4:67:ad:f7:ab:33:f3:
10:17:7b:90:30:d8:56:1a:59:5c:80:61:53:5f:45:29:99:3a:
9a:68:58:5f:27:36:bf:99:e4:8e:48:2c:4a:df:3c:d4:ee:2a:
80:5d:01:58:99:0f:9a:20:ce:02:8c:9e:38:98:18:19:36:57:
37:88:8e:78:55:a9:0a:7a:f7:72:e1:02:27:84:c7:0f:84:1b:
6b:45:31:52:58:00:bd:74:c8:8b:37:00:d5:7a:7a:9f:b4:33:
f2:be:1c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net