Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/3/3138352e3231312e33352e302f32342d3234203d3e2030.roa
File: 3138352e3231312e33352e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: x6ncMouT1zT/GaiV1EbAbumy/xn8BQo8MvPOxoQT+14=
Subject key identifier: 9F:F4:2F:1F:EE:E1:99:1E:43:60:72:F7:A6:E4:33:D8:07:68:1D:C0
Certificate issuer: /CN=22d29c996abcc72c72279ef78987951b825ae400
Certificate serial: 545CC68D03A3C0EE3994B73B12B72CD443062332
Authority key identifier: 22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3231312e33352e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:35:36 +0000
ROA not before: Fri 03 Mar 2023 15:30:36 +0000
ROA not after: Fri 01 Mar 2024 15:35:36 +0000
asID: 0
IP address blocks: 185.211.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:5c:c6:8d:03:a3:c0:ee:39:94:b7:3b:12:b7:2c:d4:43:06:23:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d29c996abcc72c72279ef78987951b825ae400
Validity
Not Before: Mar 3 15:30:36 2023 GMT
Not After : Mar 1 15:35:36 2024 GMT
Subject: CN=9FF42F1FEEE1991E436072F7A6E433D807681DC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0f:26:9c:9f:ba:97:3d:c5:40:4f:d3:68:ea:
33:53:df:44:47:e9:5b:d7:26:26:66:be:f5:84:b5:
4d:e4:a4:77:fb:b1:cf:82:69:1e:0a:ee:d0:d4:5f:
33:44:9d:56:da:fc:19:ae:5b:6b:d9:f9:f2:f3:96:
96:d8:e3:b7:87:be:a0:4e:04:c3:dd:b1:f5:3e:37:
ec:25:e1:d5:dc:05:ea:1a:21:d6:42:57:f1:49:34:
6c:fa:1f:6e:73:95:fe:93:ee:31:2d:3c:91:13:48:
bf:60:83:80:48:b3:03:cb:e9:72:a4:e8:46:23:ba:
f8:f9:70:82:e7:d5:4b:d2:cc:95:21:fd:b8:fc:34:
1a:ac:86:34:ea:0b:75:fb:f3:a9:88:2f:15:64:18:
9b:f3:7e:f4:f9:68:e2:8b:72:6f:ff:af:71:ca:be:
76:1f:20:5c:e9:70:71:aa:12:84:26:66:71:ed:ec:
e8:41:39:4c:ee:87:bd:bd:79:4c:e3:5b:6f:f6:63:
34:ec:f5:e7:7d:0d:94:ff:9c:c0:a2:74:e6:d2:d5:
e4:c6:46:79:12:e6:e2:b4:0a:88:31:39:ea:c4:56:
9e:5f:99:f2:09:6b:aa:35:62:07:06:bd:19:63:c0:
27:49:8e:50:10:c7:ab:11:88:4d:1d:48:60:33:b5:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F4:2F:1F:EE:E1:99:1E:43:60:72:F7:A6:E4:33:D8:07:68:1D:C0
X509v3 Authority Key Identifier:
keyid:22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/22D29C996ABCC72C72279EF78987951B825AE400.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3231312e33352e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.35.0/24
Signature Algorithm: sha256WithRSAEncryption
95:c2:ef:2e:8c:9e:f3:7a:83:d7:40:f1:be:1a:19:6a:a7:6a:
ab:2e:2f:2a:e1:cf:f0:1b:c4:ac:3e:cb:7f:f8:42:05:4c:6c:
24:e6:a1:5d:d7:82:12:01:25:25:10:08:ed:31:95:0a:21:ac:
46:63:52:58:74:17:b0:0f:64:de:b5:59:d4:44:9c:15:8e:74:
ad:38:cc:8b:3a:53:9e:9b:7b:8a:05:06:89:4e:9b:db:c1:98:
40:70:f9:48:91:bb:51:b9:cc:25:43:6a:5a:02:14:da:f9:fe:
37:ad:c5:07:e1:21:f1:89:ce:09:14:a6:47:5a:23:c2:51:1e:
5b:19:9a:e9:d5:8a:59:5d:2a:8d:25:5b:11:29:c5:1c:b1:53:
4e:0c:05:58:a6:ef:4b:6d:dd:be:c6:9d:69:08:7d:09:ed:3e:
b8:27:1f:da:47:70:16:ea:2e:e4:90:23:f3:cc:26:c1:85:bb:
d4:58:da:f4:25:7e:8a:6e:2c:9b:f3:98:a4:28:fb:e1:a9:47:
7e:9a:b8:8d:aa:95:fc:d3:87:84:28:b1:4a:95:12:64:1e:ce:
9d:f3:34:0f:5d:24:ba:bf:f4:2e:d0:2a:24:b0:c6:78:29:97:
11:eb:59:af:29:f5:8f:a4:ad:78:41:c5:42:af:ce:e1:b1:0b:
77:95:68:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:28 2024 by rpki-client on console-fra.rpki-client.org