Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3137312e302f32342d3332203d3e203531313637.roa
File: 38342e32312e3137312e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: +j0vpR0vWyyPIExick9xPVTDczgAzc9u2C8OUwgcABU=
Subject key identifier: 1B:8C:3E:70:66:DF:CB:DF:5F:1D:9D:BC:B8:EF:A8:CC:F8:94:B2:F7
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 7BB46B6D61CB5D6E6387DB20D5EE94017E6567D3
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3137312e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:34:03 +0000
ROA not before: Sat 22 Oct 2022 04:29:03 +0000
ROA not after: Sat 21 Oct 2023 04:34:03 +0000
asID: 51167
IP address blocks: 84.21.171.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:b4:6b:6d:61:cb:5d:6e:63:87:db:20:d5:ee:94:01:7e:65:67:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Oct 22 04:29:03 2022 GMT
Not After : Oct 21 04:34:03 2023 GMT
Subject: CN=1B8C3E7066DFCBDF5F1D9DBCB8EFA8CCF894B2F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:fd:28:82:54:cd:1d:b5:cb:8e:3c:b6:02:
fd:ba:29:9b:cd:ca:02:d6:ba:b7:ab:93:f1:e5:48:
26:86:f2:d6:76:ee:62:d5:fa:a1:cf:0c:be:2a:9b:
e0:a1:e7:a5:a7:82:a2:a3:36:0a:b9:98:69:78:62:
5d:70:b6:c1:a2:19:3f:00:bd:41:f9:fa:52:fe:1a:
d7:06:31:7f:a5:c4:6a:76:74:37:c8:23:cf:f9:cb:
cf:66:aa:8a:15:58:f8:5f:54:ef:63:aa:36:70:ed:
13:a7:9f:5b:84:d0:98:d6:74:c2:86:64:a5:af:5e:
2b:7f:14:27:00:4a:32:0e:bb:22:f0:4e:59:c9:1f:
0d:c1:38:28:c0:03:a3:51:6c:69:bd:38:b7:ac:9d:
82:d8:64:96:ae:b3:ff:a6:46:a7:22:ae:93:62:a1:
02:8b:e6:06:bc:da:f1:7b:12:55:7b:d2:da:9f:11:
bd:37:55:f4:81:61:b0:12:30:36:10:9b:52:e3:8f:
fd:a7:66:4c:f8:ad:be:a5:c4:d5:7f:ab:85:83:74:
78:64:2e:be:db:19:8b:f4:47:1e:ff:7d:37:ce:67:
f5:b5:a2:49:ec:4c:ef:5a:17:0d:1b:c8:c9:17:4b:
39:ce:4a:ea:e7:70:7c:fc:7a:3c:15:7f:dd:d7:aa:
54:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:8C:3E:70:66:DF:CB:DF:5F:1D:9D:BC:B8:EF:A8:CC:F8:94:B2:F7
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3137312e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.21.171.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b5:6c:24:27:bf:0c:49:6f:39:fb:b1:cf:c5:0f:1a:f7:cd:
a8:33:0b:f0:19:0b:bf:1e:69:15:e8:e2:b9:85:7b:dc:1f:2a:
bf:02:03:4a:af:f8:22:0e:fd:2a:6f:dd:c4:d6:79:05:ee:ff:
b1:25:43:a4:90:8c:5d:c3:1a:0f:fb:db:bd:bc:1c:54:11:6a:
97:4e:90:45:3d:4d:2f:1d:8f:06:da:c5:0c:17:16:2a:47:56:
10:ec:27:3b:27:b6:f8:82:d9:a1:bd:6c:4a:de:bb:89:8c:89:
1a:d6:8d:05:50:5b:62:8d:c1:a7:83:5e:45:6c:73:a0:7d:b9:
06:d6:73:cb:71:0a:2d:f0:c1:53:fd:ca:1f:cd:1a:0f:14:56:
8e:21:86:54:cb:b2:54:a5:8e:64:03:82:46:13:d4:0c:84:5c:
76:6c:67:41:ac:2c:86:d9:39:d6:48:b0:72:12:72:92:e7:5e:
1d:4d:f4:0b:a8:3e:55:f9:40:5b:06:6c:79:06:66:ce:c0:e3:
76:bb:6c:17:07:6e:51:d6:9d:3f:ad:96:0e:65:00:5d:ff:b5:
7e:2b:ad:ce:cf:1c:0a:0d:94:7b:b3:46:98:ff:a1:c3:55:63:
ea:56:db:61:39:35:fc:13:87:d4:9a:e9:30:bf:18:63:25:51:
77:7f:6e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net