Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/37372e3234332e38362e302f32332d3234203d3e2030.roa
File: 37372e3234332e38362e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: 9Zyf/wJs9KvCpdSadZnnKZGPjU/bc1YKUhPa/o6td8g=
Subject key identifier: A8:BE:D9:BE:0E:E5:BE:5F:A4:06:5C:3B:A2:74:24:ED:8A:B7:ED:89
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 63F6D2B98A91C45BF83E2DB813351D38B48EB098
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/37372e3234332e38362e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:48:19 +0000
ROA not before: Fri 03 Mar 2023 15:43:19 +0000
ROA not after: Fri 01 Mar 2024 15:48:19 +0000
asID: 0
IP address blocks: 77.243.86.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:f6:d2:b9:8a:91:c4:5b:f8:3e:2d:b8:13:35:1d:38:b4:8e:b0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:43:19 2023 GMT
Not After : Mar 1 15:48:19 2024 GMT
Subject: CN=A8BED9BE0EE5BE5FA4065C3BA27424ED8AB7ED89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ae:87:d4:0e:ce:32:fc:13:55:38:49:c9:8a:
51:5a:55:a2:90:87:ba:b9:7b:0d:e9:85:4a:0d:6a:
64:a9:3b:97:7a:c3:f2:be:f2:71:6c:bd:ab:dd:46:
bb:08:9a:66:eb:d7:b3:15:fa:97:19:f8:4e:a8:7c:
b8:7b:8b:ec:3c:62:21:6f:d2:57:a7:de:f7:ba:21:
77:de:53:28:13:f1:b4:1a:a1:b5:15:ee:ea:e2:f9:
f8:2b:a6:51:cb:0c:80:3c:39:27:73:76:70:59:a9:
e1:a2:d8:65:d5:b7:e7:d0:e2:13:84:c7:7e:91:27:
63:4d:06:52:bf:03:06:55:c3:52:3c:94:91:8e:8f:
32:36:0e:cf:d2:4f:22:7a:95:c0:59:86:3b:b2:f4:
fc:1e:f9:bd:f3:4b:aa:a2:b6:5d:fd:07:ff:12:f6:
ea:a9:06:cf:b0:09:91:85:2c:59:46:38:7a:89:2e:
64:8a:56:85:54:99:7b:c8:b1:cf:b1:78:b1:06:00:
f9:a1:6b:cd:39:e0:9e:c4:b6:9b:5f:fc:0a:df:e8:
04:42:9d:ff:a0:41:23:68:af:d2:3a:42:49:08:ff:
d2:ab:62:28:f6:ce:d4:04:2d:ce:53:72:2c:2e:86:
e0:4c:f3:58:d0:f2:5c:c5:7e:d3:54:e9:81:f1:64:
67:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:BE:D9:BE:0E:E5:BE:5F:A4:06:5C:3B:A2:74:24:ED:8A:B7:ED:89
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/37372e3234332e38362e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.86.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:99:64:50:23:c6:fd:71:2d:e7:c0:b7:04:47:b5:07:e6:a5:
56:25:72:f7:9c:f8:5f:5f:9d:1d:a7:74:9d:47:d6:39:0e:2d:
f5:25:c5:29:d4:09:bb:14:0e:3c:86:e1:ff:c8:c6:7c:0d:d4:
30:7e:e2:e5:5b:06:29:65:2c:b7:52:a2:2b:8c:86:37:d2:3d:
e2:47:08:67:af:37:26:b8:88:d9:22:ad:91:88:63:fa:e0:07:
fc:f9:b0:0c:46:dc:b5:79:cf:cb:73:43:a4:88:e2:73:e3:c5:
ea:86:ed:32:96:5a:e0:6b:64:d2:84:22:d8:b9:2d:a3:15:30:
8e:7f:ec:86:56:aa:a9:ea:77:4b:5b:2c:f7:19:d6:01:ed:5e:
4b:bc:03:f6:27:32:00:a6:96:93:f7:a0:1e:42:dc:80:89:7c:
86:15:6e:b0:38:c2:19:3a:a5:2c:73:66:8a:64:2b:bb:7b:a3:
1c:b3:b6:9a:c2:88:50:f1:fa:26:5e:66:0a:c6:3e:7d:b6:6e:
ae:fc:c7:c4:68:58:c9:24:ec:56:8c:3f:d1:b6:5c:67:ff:b8:
64:c4:f0:7e:44:cb:bc:67:73:bd:20:53:10:0b:1b:45:f4:5d:
26:cf:d6:3b:a7:02:b9:06:ee:df:61:e7:ea:7b:46:4a:bc:a9:
c3:9a:bb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:48 2023 by rpki-client on console-fra.rpki-client.org