Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/352e3235322e3134302e302f32322d3234203d3e2030.roa
File: 352e3235322e3134302e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: 6ioLKojEBwvYzVtKYPsNlZmOo0FJuzeYMCOGwnOXdEo=
Subject key identifier: C3:E2:73:60:04:15:7F:0A:7B:47:57:6B:4A:A5:3E:E4:52:65:39:D2
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 316A754AF34A3BBF1A8F522408778ACDCE0A3D7E
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/352e3235322e3134302e302f32322d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:14:38 +0000
ROA not before: Fri 03 Mar 2023 16:09:38 +0000
ROA not after: Fri 01 Mar 2024 16:14:38 +0000
asID: 0
IP address blocks: 5.252.140.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:6a:75:4a:f3:4a:3b:bf:1a:8f:52:24:08:77:8a:cd:ce:0a:3d:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Mar 3 16:09:38 2023 GMT
Not After : Mar 1 16:14:38 2024 GMT
Subject: CN=C3E2736004157F0A7B47576B4AA53EE4526539D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:06:9c:df:8a:a2:50:f6:70:a6:ea:53:06:ac:
e6:9a:ec:4b:a6:41:aa:bd:17:bd:71:cb:b5:aa:fa:
49:de:35:f6:b2:dc:c5:aa:e1:8d:ed:d9:42:17:88:
a0:84:93:b9:fd:6c:8d:d6:08:c0:34:49:e0:b4:90:
25:c9:5a:7e:5d:36:08:58:54:15:25:dc:d1:6a:d7:
e8:7a:01:a2:6f:98:50:27:22:19:bc:31:a5:2d:a9:
38:58:c1:93:97:0d:37:00:4d:19:2d:56:e4:a1:52:
1d:5f:1a:c6:de:da:9b:cb:29:92:3e:ca:a4:6d:1a:
a0:8a:c2:59:c3:bd:fd:79:86:6b:f4:69:c2:0c:43:
dd:f9:cf:d8:23:1a:ad:99:f0:3b:c6:dc:ab:44:8c:
f9:da:d3:8b:2f:a2:f6:9d:4b:64:a6:86:af:dc:07:
99:79:d3:d6:72:94:25:11:91:c4:64:6f:dc:95:62:
2c:e1:e6:3b:b9:a7:06:10:2e:e5:00:5d:f0:77:56:
9d:92:4d:65:71:92:9c:00:62:4e:eb:af:53:65:4a:
01:91:94:18:d4:1b:75:91:97:71:98:a8:2d:51:c9:
57:b7:06:43:f8:69:73:57:d7:fa:f6:f2:22:60:09:
62:8b:33:fd:a7:b0:79:5f:2d:ac:2d:52:0b:03:a1:
ff:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E2:73:60:04:15:7F:0A:7B:47:57:6B:4A:A5:3E:E4:52:65:39:D2
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/352e3235322e3134302e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.140.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:32:d7:cf:ac:dd:7e:c7:f5:12:71:90:cf:d6:a4:11:2f:1a:
a5:8f:98:e4:41:ca:ee:2b:07:54:e5:29:be:84:e9:15:c1:81:
ce:aa:45:cc:36:f5:93:2f:f0:80:c9:4e:d2:ea:94:d5:05:a3:
91:2b:5b:2a:5a:7e:ea:c1:ec:a0:ce:61:5a:f9:6b:06:76:21:
a7:fd:4d:fd:a9:76:b0:23:f1:91:58:24:b3:6c:6b:33:56:a6:
96:ef:b1:2c:0e:44:96:0e:91:d1:41:4e:5b:11:dc:7c:66:07:
59:78:9f:ca:a7:b1:4c:a2:ba:ea:b7:6e:a2:33:dd:a9:06:19:
74:21:a1:a5:b3:78:6c:7f:d6:49:6a:2c:ec:1c:3a:2a:e7:0a:
ae:f0:6c:20:fe:d0:1c:02:48:4e:2a:8f:89:de:7b:3b:6f:6f:
a3:3e:46:d2:96:2e:f2:34:25:e4:e1:42:4a:c0:35:26:d9:58:
ff:be:f9:5f:27:e6:9f:31:3f:de:e7:8f:e1:e5:aa:72:a7:56:
d2:12:01:31:cd:18:7c:1d:f3:f5:52:5b:62:06:f3:fd:52:cf:
b9:da:72:f8:18:4e:af:c8:c9:37:cf:23:b4:99:1d:03:9b:eb:
2f:af:26:d0:a3:7e:4f:54:89:a8:b0:60:6f:af:2f:bb:f1:57:
89:cc:03:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net