Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/34352e39302e3232382e302f32322d3234203d3e203437353833.roa
File: 34352e39302e3232382e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: r3LEfFgpg9bYM6EXqmk9Hzg1dPYK8XuFqIv3BBh2oPI=
Subject key identifier: 91:A5:EE:B5:39:58:F5:40:50:EE:FC:1C:7F:DA:7D:F5:9C:B6:AC:1F
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 1E5E5B0ABE80E8799AC0F5CFCE55EA91D154DBAD
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/34352e39302e3232382e302f32322d3234203d3e203437353833.roa
Signing time: Sat 22 Oct 2022 04:34:02 +0000
ROA not before: Sat 22 Oct 2022 04:29:02 +0000
ROA not after: Sat 21 Oct 2023 04:34:02 +0000
asID: 47583
IP address blocks: 45.90.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:5e:5b:0a:be:80:e8:79:9a:c0:f5:cf:ce:55:ea:91:d1:54:db:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Oct 22 04:29:02 2022 GMT
Not After : Oct 21 04:34:02 2023 GMT
Subject: CN=91A5EEB53958F54050EEFC1C7FDA7DF59CB6AC1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a7:43:c5:67:8a:44:c1:7a:24:92:1b:a9:62:
4d:1b:4d:76:12:63:b1:94:7a:7d:5d:b7:52:20:a7:
a9:5f:e4:e4:d7:01:1f:8b:8c:13:1e:d9:58:a2:87:
09:c1:ef:15:cf:a6:a5:99:1b:88:98:ac:d2:31:c1:
b5:de:11:45:d7:c0:df:a7:b0:05:87:a0:1b:53:03:
7b:d6:c5:fa:49:de:fb:e1:a3:8b:d9:11:1d:89:b2:
5a:d8:4d:5e:44:29:34:45:53:64:df:39:b6:e6:24:
15:3f:66:66:35:7e:68:4a:2b:a9:a5:31:6a:1b:35:
11:5b:57:48:f6:f1:f1:9d:25:b0:f7:e0:23:dc:c3:
13:5d:bd:a4:7c:67:26:45:5a:25:ef:47:4a:b0:85:
22:0c:7e:9b:98:96:68:fa:a8:57:5a:00:f2:fa:60:
da:a0:82:57:5c:46:cb:90:43:14:d4:22:9b:5d:68:
69:22:b5:2f:38:20:be:ff:a4:7e:6d:4a:5a:1f:e9:
f4:02:94:68:d1:72:f0:fe:d0:e2:b2:c7:f0:be:20:
1f:f3:bb:0a:bd:dd:17:f3:db:4b:2f:6c:89:cb:13:
46:b8:36:d8:a3:e7:07:31:c3:3b:1c:b3:c5:7c:9a:
9e:78:60:7d:68:e9:4e:02:a5:b8:d7:5b:b9:37:a4:
1c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A5:EE:B5:39:58:F5:40:50:EE:FC:1C:7F:DA:7D:F5:9C:B6:AC:1F
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/34352e39302e3232382e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.228.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:2f:84:e5:09:74:08:f0:e3:3e:93:8b:99:99:f5:b3:ba:d8:
ba:fb:36:90:8b:c6:36:24:1f:28:43:7c:24:90:2f:9c:79:54:
97:ac:be:93:ff:75:2e:8f:ba:6b:79:97:7f:43:6e:fb:e0:4e:
46:5e:32:ac:bc:b6:35:83:1c:30:b4:a7:c6:5f:8d:f7:8f:e7:
88:1a:17:54:ba:38:f9:58:f2:47:c6:16:90:8d:c6:8f:d6:1a:
42:63:9a:51:f4:5c:4e:7d:30:91:f1:8b:ea:49:06:6b:95:fd:
77:59:03:ad:b4:af:c1:00:58:78:d7:05:53:89:18:bc:68:57:
03:03:08:05:9d:5f:b3:cd:89:0f:de:52:9a:74:e3:ae:9e:6d:
9e:e1:c2:0f:c7:4a:44:c0:97:29:3c:2b:58:0d:7b:45:7b:8c:
c9:a5:5b:e9:9d:55:ee:61:f6:78:27:ec:8a:89:5f:77:d3:f1:
6b:00:b0:d2:36:e1:87:94:44:de:c7:4e:b8:54:39:af:a4:e5:
7f:46:da:16:8f:8c:e1:79:e0:e7:74:fa:c6:8a:5f:c3:13:0d:
f9:48:ca:97:7f:a6:33:de:32:f4:81:ca:14:3d:16:ce:cb:29:
28:cb:0c:0e:02:4b:dd:19:a6:c4:c8:cc:cc:dd:2f:14:12:af:
f5:71:86:a7
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUHl5bCr6A6HmawPXPzlXqkdFU260wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMWU3OTNiNWMxMjM5MjMxZTA4ZGVkZDZmYjgwNjA3MzJj
ZDA2M2Y0ZDAeFw0yMjEwMjIwNDI5MDJaFw0yMzEwMjEwNDM0MDJaMDMxMTAvBgNV
BAMTKDkxQTVFRUI1Mzk1OEY1NDA1MEVFRkMxQzdGREE3REY1OUNCNkFDMUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8p0PFZ4pEwXokkhupYk0bTXYS
Y7GUen1dt1Igp6lf5OTXAR+LjBMe2ViihwnB7xXPpqWZG4iYrNIxwbXeEUXXwN+n
sAWHoBtTA3vWxfpJ3vvho4vZER2JslrYTV5EKTRFU2TfObbmJBU/ZmY1fmhKK6ml
MWobNRFbV0j28fGdJbD34CPcwxNdvaR8ZyZFWiXvR0qwhSIMfpuYlmj6qFdaAPL6
YNqggldcRsuQQxTUIptdaGkitS84IL7/pH5tSlof6fQClGjRcvD+0OKyx/C+IB/z
uwq93Rfz20svbInLE0a4Ntij5wcxwzscs8V8mp54YH1o6U4CpbjXW7k3pBwFAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUkaXutTlY9UBQ7vwcf9p99Zy2rB8wHwYDVR0j
BBgwFoAUHnk7XBI5Ix4I3t1vuAYHMs0GP00wDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzgvMUU3OTNCNUMxMjM5MjMxRTA4REVERDZGQjgwNjA3MzJD
RDA2M0Y0RC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0huazdYQkk1SXg0STN0
MXZ1QVlITXMwR1AwMC5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
OC8zNDM1MmUzOTMwMmUzMjMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3
MzUzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCLVrkMA0GCSqGSIb3DQEBCwUAA4IBAQBML4TlCXQI
8OM+k4uZmfWzuti6+zaQi8Y2JB8oQ3wkkC+ceVSXrL6T/3Uuj7preZd/Q2774E5G
XjKsvLY1gxwwtKfGX433j+eIGhdUujj5WPJHxhaQjcaP1hpCY5pR9FxOfTCR8Yvq
SQZrlf13WQOttK/BAFh41wVTiRi8aFcDAwgFnV+zzYkP3lKadOOunm2e4cIPx0pE
wJcpPCtYDXtFe4zJpVvpnVXuYfZ4J+yKiV930/FrALDSNuGHlETex064VDmvpOV/
RtoWj4zheeDndPrGil/DEw35SMqXf6Yz3jL0gcoUPRbOyykoywwOAkvdGabEyMzM
3S8UEq/1cYan
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net