Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/3/3138352e3232302e32312e302f32342d3332203d3e20313336373837.roa
File: 3138352e3232302e32312e302f32342d3332203d3e20313336373837.roa (raw, json)
Hash identifier: G7K0imGNxQyeVs/rgyMYrCb+/QCW/J4Fm4fNtjaqUOY=
Subject key identifier: 8F:CF:4F:AA:4F:7B:D2:08:14:D8:ED:15:79:5C:3A:14:D9:72:26:90
Certificate issuer: /CN=22d29c996abcc72c72279ef78987951b825ae400
Certificate serial: 20B60A199825B2E81E7E4771DFD1161A0DBA3F21
Authority key identifier: 22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3232302e32312e302f32342d3332203d3e20313336373837.roa
Signing time: Wed 28 Dec 2022 09:25:27 +0000
ROA not before: Wed 28 Dec 2022 09:20:27 +0000
ROA not after: Wed 27 Dec 2023 09:25:27 +0000
asID: 136787
IP address blocks: 185.220.21.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:b6:0a:19:98:25:b2:e8:1e:7e:47:71:df:d1:16:1a:0d:ba:3f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d29c996abcc72c72279ef78987951b825ae400
Validity
Not Before: Dec 28 09:20:27 2022 GMT
Not After : Dec 27 09:25:27 2023 GMT
Subject: CN=8FCF4FAA4F7BD20814D8ED15795C3A14D9722690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9b:2e:89:9b:20:8f:56:c9:cc:5b:31:c9:c8:
ca:fe:77:12:51:70:b4:19:04:35:66:91:99:5e:3f:
05:52:5b:c2:7f:ea:21:8d:2a:5a:83:b2:e6:a3:c1:
6a:41:90:ff:fb:20:18:f9:b1:32:bf:39:ae:6d:90:
a5:e9:09:2b:3d:5e:da:2b:26:17:87:bf:02:4b:77:
7c:95:db:bf:e3:b9:ae:6b:37:a6:50:07:44:0b:23:
c2:9e:dc:c0:b7:04:d4:d2:2b:55:e4:e6:53:02:35:
f9:cb:61:b1:a2:92:cd:f3:26:96:3e:3d:50:d6:63:
b3:b7:9e:23:21:e9:2f:5d:63:1b:3a:fa:5a:eb:87:
0d:1b:92:30:23:24:42:b0:ba:97:c5:70:cf:c2:b3:
96:dc:c6:ef:cc:0d:bf:11:f6:25:5e:d9:28:50:a6:
59:20:db:89:14:15:9f:13:42:98:20:e6:ed:a9:df:
e0:5b:4a:2f:61:ca:97:32:9a:1b:56:ba:d4:48:a8:
59:36:f6:d9:2a:92:c8:06:8d:c0:94:1d:46:ff:ef:
78:42:43:84:f6:7b:22:60:cd:1a:5b:3c:3c:d6:17:
ca:f0:f3:ae:b0:be:6d:77:5b:d5:7e:89:8d:42:c8:
e9:bd:1b:68:7d:ef:53:3e:e8:be:d1:0f:0d:6f:0a:
e0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:CF:4F:AA:4F:7B:D2:08:14:D8:ED:15:79:5C:3A:14:D9:72:26:90
X509v3 Authority Key Identifier:
keyid:22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/22D29C996ABCC72C72279EF78987951B825AE400.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3232302e32312e302f32342d3332203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.21.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c9:0f:f5:74:ec:ed:64:23:5c:90:b8:14:24:7c:4b:e2:93:
4e:53:01:2e:1d:cd:dd:95:9d:f2:3b:bb:0f:37:b3:e2:52:12:
2f:9e:72:0c:ee:9c:d4:1b:c6:90:2f:52:b8:77:07:fa:61:b9:
e1:4b:c4:f6:d9:af:8a:ab:04:66:8e:eb:40:80:66:ec:ae:07:
3b:d6:c8:de:72:b0:6a:02:4d:20:96:75:50:2c:da:d4:25:42:
5f:97:b7:25:55:bd:f3:09:97:e7:57:f4:17:83:0b:5d:63:75:
58:5d:b3:82:36:6e:37:7f:67:39:03:7d:f9:62:f5:1e:4e:be:
fc:ef:86:47:94:01:e9:a6:5c:75:d1:b5:bc:10:55:c7:3c:0a:
8a:87:5c:88:dc:b5:d3:64:a2:9c:f0:42:71:79:33:89:75:f2:
48:3c:66:08:7b:49:2c:ac:60:a3:51:cc:8e:63:59:1f:83:53:
37:f1:98:fb:cf:f2:7b:73:33:28:1d:e2:81:8b:a5:cd:c5:8a:
a0:6e:8a:34:ec:b6:36:d0:c2:4c:82:2a:13:86:48:fd:96:2b:
2e:55:4f:82:b6:51:51:7c:82:6d:c4:a5:54:29:71:4a:7e:73:
27:3b:3d:19:5e:e7:9b:16:8a:ef:9e:26:75:67:78:f6:af:75:
f7:b7:22:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org