Route Origin Authorization

$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/3/3138352e3231312e33352e302f32342d3234203d3e2030.roa
File:                     3138352e3231312e33352e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier:          x6ncMouT1zT/GaiV1EbAbumy/xn8BQo8MvPOxoQT+14=
Subject key identifier:   9F:F4:2F:1F:EE:E1:99:1E:43:60:72:F7:A6:E4:33:D8:07:68:1D:C0
Certificate issuer:       /CN=22d29c996abcc72c72279ef78987951b825ae400
Certificate serial:       545CC68D03A3C0EE3994B73B12B72CD443062332
Authority key identifier: 22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject info access:      rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3231312e33352e302f32342d3234203d3e2030.roa
Signing time:             Fri 03 Mar 2023 15:35:36 +0000
ROA not before:           Fri 03 Mar 2023 15:30:36 +0000
ROA not after:            Fri 01 Mar 2024 15:35:36 +0000
asID:                     0
IP address blocks:        185.211.35.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:5c:c6:8d:03:a3:c0:ee:39:94:b7:3b:12:b7:2c:d4:43:06:23:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=22d29c996abcc72c72279ef78987951b825ae400
        Validity
            Not Before: Mar  3 15:30:36 2023 GMT
            Not After : Mar  1 15:35:36 2024 GMT
        Subject: CN=9FF42F1FEEE1991E436072F7A6E433D807681DC0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:0f:26:9c:9f:ba:97:3d:c5:40:4f:d3:68:ea:
                    33:53:df:44:47:e9:5b:d7:26:26:66:be:f5:84:b5:
                    4d:e4:a4:77:fb:b1:cf:82:69:1e:0a:ee:d0:d4:5f:
                    33:44:9d:56:da:fc:19:ae:5b:6b:d9:f9:f2:f3:96:
                    96:d8:e3:b7:87:be:a0:4e:04:c3:dd:b1:f5:3e:37:
                    ec:25:e1:d5:dc:05:ea:1a:21:d6:42:57:f1:49:34:
                    6c:fa:1f:6e:73:95:fe:93:ee:31:2d:3c:91:13:48:
                    bf:60:83:80:48:b3:03:cb:e9:72:a4:e8:46:23:ba:
                    f8:f9:70:82:e7:d5:4b:d2:cc:95:21:fd:b8:fc:34:
                    1a:ac:86:34:ea:0b:75:fb:f3:a9:88:2f:15:64:18:
                    9b:f3:7e:f4:f9:68:e2:8b:72:6f:ff:af:71:ca:be:
                    76:1f:20:5c:e9:70:71:aa:12:84:26:66:71:ed:ec:
                    e8:41:39:4c:ee:87:bd:bd:79:4c:e3:5b:6f:f6:63:
                    34:ec:f5:e7:7d:0d:94:ff:9c:c0:a2:74:e6:d2:d5:
                    e4:c6:46:79:12:e6:e2:b4:0a:88:31:39:ea:c4:56:
                    9e:5f:99:f2:09:6b:aa:35:62:07:06:bd:19:63:c0:
                    27:49:8e:50:10:c7:ab:11:88:4d:1d:48:60:33:b5:
                    9a:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:F4:2F:1F:EE:E1:99:1E:43:60:72:F7:A6:E4:33:D8:07:68:1D:C0
            X509v3 Authority Key Identifier:
                keyid:22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/22D29C996ABCC72C72279EF78987951B825AE400.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3231312e33352e302f32342d3234203d3e2030.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.211.35.0/24

    Signature Algorithm: sha256WithRSAEncryption
         95:c2:ef:2e:8c:9e:f3:7a:83:d7:40:f1:be:1a:19:6a:a7:6a:
         ab:2e:2f:2a:e1:cf:f0:1b:c4:ac:3e:cb:7f:f8:42:05:4c:6c:
         24:e6:a1:5d:d7:82:12:01:25:25:10:08:ed:31:95:0a:21:ac:
         46:63:52:58:74:17:b0:0f:64:de:b5:59:d4:44:9c:15:8e:74:
         ad:38:cc:8b:3a:53:9e:9b:7b:8a:05:06:89:4e:9b:db:c1:98:
         40:70:f9:48:91:bb:51:b9:cc:25:43:6a:5a:02:14:da:f9:fe:
         37:ad:c5:07:e1:21:f1:89:ce:09:14:a6:47:5a:23:c2:51:1e:
         5b:19:9a:e9:d5:8a:59:5d:2a:8d:25:5b:11:29:c5:1c:b1:53:
         4e:0c:05:58:a6:ef:4b:6d:dd:be:c6:9d:69:08:7d:09:ed:3e:
         b8:27:1f:da:47:70:16:ea:2e:e4:90:23:f3:cc:26:c1:85:bb:
         d4:58:da:f4:25:7e:8a:6e:2c:9b:f3:98:a4:28:fb:e1:a9:47:
         7e:9a:b8:8d:aa:95:fc:d3:87:84:28:b1:4a:95:12:64:1e:ce:
         9d:f3:34:0f:5d:24:ba:bf:f4:2e:d0:2a:24:b0:c6:78:29:97:
         11:eb:59:af:29:f5:8f:a4:ad:78:41:c5:42:af:ce:e1:b1:0b:
         77:95:68:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:28 2024 by rpki-client on console-fra.rpki-client.org