Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/39322e3131382e35322e302f32322d3234203d3e2030.roa
File: 39322e3131382e35322e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: 8/YtA6LbV5ULo5Y/EtfqNGkpmfJZuAmqanaoM96bIqU=
Subject key identifier: 5A:FB:A6:6C:19:7D:AC:B9:9B:F6:9B:C8:98:7A:55:8E:E2:64:08:03
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 71CBBD1081AA65823B877A79E0C432D0B3230E31
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/39322e3131382e35322e302f32322d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:15:13 +0000
ROA not before: Fri 03 Mar 2023 16:10:13 +0000
ROA not after: Fri 01 Mar 2024 16:15:13 +0000
asID: 0
IP address blocks: 92.118.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:cb:bd:10:81:aa:65:82:3b:87:7a:79:e0:c4:32:d0:b3:23:0e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Mar 3 16:10:13 2023 GMT
Not After : Mar 1 16:15:13 2024 GMT
Subject: CN=5AFBA66C197DACB99BF69BC8987A558EE2640803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5f:5f:12:32:60:d3:49:f4:c5:f7:0f:a3:8f:
5b:57:36:95:29:20:22:11:76:90:6f:d1:76:ba:d2:
6c:ca:fe:d9:f9:a3:d2:16:ff:59:b4:ec:5f:13:f0:
cd:a5:8e:c2:1d:87:f7:34:23:83:a9:b5:b1:13:d2:
6a:90:7e:f5:fa:ad:cd:c9:6d:73:34:83:a0:44:0c:
26:37:7c:ea:f9:1c:28:d5:1a:21:13:eb:f4:20:e1:
79:fa:a1:1a:e3:1a:11:53:b8:a1:50:d1:c8:39:83:
00:83:e0:bb:65:bf:67:18:4f:b2:ba:43:16:b8:c1:
4d:c1:b9:8e:6a:e9:32:7d:69:07:96:ff:1c:92:54:
ad:1a:3a:45:6a:e9:e6:2e:63:81:3d:c8:38:74:b4:
ca:b5:9b:14:1e:70:96:f3:c9:a6:71:82:cb:df:31:
bd:9b:8e:2a:c1:bd:db:9b:8b:52:91:c1:a2:c0:61:
a9:31:90:b8:ea:ce:79:f5:8b:fa:7e:5e:86:3b:57:
b7:7c:1e:57:aa:0b:f7:cf:aa:7d:46:95:c4:a8:91:
21:13:ed:59:e2:d9:ef:b9:25:15:f7:ba:d2:57:39:
c8:b7:9e:17:cd:00:43:80:ee:96:53:52:54:91:09:
7b:1c:f6:9e:17:ac:fe:1c:b9:d6:5d:4c:41:40:b2:
9d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:FB:A6:6C:19:7D:AC:B9:9B:F6:9B:C8:98:7A:55:8E:E2:64:08:03
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/39322e3131382e35322e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.52.0/22
Signature Algorithm: sha256WithRSAEncryption
73:7e:92:7d:66:a8:09:47:3a:1b:06:ef:fc:e2:95:74:60:f2:
f3:5d:81:6a:36:ba:a7:61:d2:0e:1b:5e:c6:69:c5:38:f3:af:
3a:39:94:6f:3b:3f:8f:e7:1b:12:ef:73:73:57:7c:6c:50:81:
4a:53:2c:ca:c1:df:25:00:6e:2c:54:66:43:73:af:0c:88:7d:
39:f6:32:8b:8d:e2:79:1c:7f:06:41:d1:9e:bc:1b:5a:6b:29:
7b:0e:d5:b1:c6:12:dc:ad:8f:53:75:3b:c6:5f:b2:e9:dd:59:
8b:d2:2b:9f:2d:a4:e8:fc:0a:73:4a:ab:20:14:20:bf:48:40:
77:71:3a:f2:e0:f0:92:9f:b6:8b:96:55:e6:40:da:e4:cf:5b:
08:54:bf:53:bc:78:0b:76:c8:c0:44:d5:d9:a0:a8:6b:2b:90:
fa:c5:f0:79:ce:46:c3:98:c7:ce:28:82:28:4a:06:b8:4d:83:
f7:5a:60:31:8f:78:79:34:95:da:eb:8c:e3:9f:8b:4f:89:f5:
d4:5a:fc:e1:f3:34:21:6e:a4:84:3b:11:28:0e:a6:f7:8d:d2:
db:f8:7f:60:e2:00:8b:72:9c:10:0e:86:3c:9c:62:de:59:db:
55:35:89:b1:4c:7f:9b:62:af:2e:20:d1:ee:be:8e:69:78:f2:
34:c5:e1:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net