Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/3/3138352e3235302e3232302e302f32322d3234203d3e2030.roa
File: 3138352e3235302e3232302e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: MGBgHXJRYIWIZ5ANUXUdXZi+7qONODUpTpOsIm222tQ=
Subject key identifier: C6:3B:DC:5D:77:C7:50:BB:B9:79:8B:C0:DE:7B:EF:A2:19:56:20:7F
Certificate issuer: /CN=22d29c996abcc72c72279ef78987951b825ae400
Certificate serial: 2088EF88D5A8A8C79DDE8B2C8E41AA11F182933A
Authority key identifier: 22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3235302e3232302e302f32322d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:42:42 +0000
ROA not before: Fri 03 Mar 2023 15:37:42 +0000
ROA not after: Fri 01 Mar 2024 15:42:42 +0000
asID: 0
IP address blocks: 185.250.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:88:ef:88:d5:a8:a8:c7:9d:de:8b:2c:8e:41:aa:11:f1:82:93:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d29c996abcc72c72279ef78987951b825ae400
Validity
Not Before: Mar 3 15:37:42 2023 GMT
Not After : Mar 1 15:42:42 2024 GMT
Subject: CN=C63BDC5D77C750BBB9798BC0DE7BEFA21956207F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4c:e7:f8:79:ef:6c:f0:00:58:90:fc:dc:67:
8b:60:dc:0c:60:fc:64:75:f8:e4:48:f1:38:a2:d5:
27:7d:93:4f:fa:b6:02:ad:95:9d:9f:aa:75:33:b8:
6f:42:7f:57:fc:51:bb:51:89:a2:43:97:58:07:f1:
be:9c:c7:b0:91:63:d2:bc:04:41:47:6f:44:17:40:
c7:32:d1:0e:60:e8:1b:3f:96:d5:94:b8:cb:9a:39:
20:6b:cb:9c:4b:83:4e:ba:8e:bc:7c:71:15:12:75:
fa:e3:3b:bc:d9:72:61:63:1a:df:e2:ca:dc:73:5a:
03:9d:6e:74:fa:a9:8a:f5:2d:be:96:1a:f7:c8:4b:
aa:38:7b:29:af:ae:d7:3c:5e:4d:1f:95:f5:99:8d:
d2:07:13:6e:a7:9f:2c:ab:dc:92:3a:0d:80:a1:0c:
be:aa:fa:93:b8:33:a5:79:71:da:56:8b:48:2b:bd:
f8:68:cc:d9:39:7d:7f:84:9f:54:62:12:09:10:49:
cf:b9:a7:63:aa:91:c0:b8:0e:d7:e3:ec:6f:26:55:
cf:6e:8e:0e:3e:2c:93:62:9e:1d:1a:88:82:36:cb:
0b:15:45:89:a1:0d:ad:3d:18:5b:b4:c4:bf:c1:b5:
20:7d:5a:c9:18:75:7f:37:96:4f:e3:27:35:bc:44:
bb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:3B:DC:5D:77:C7:50:BB:B9:79:8B:C0:DE:7B:EF:A2:19:56:20:7F
X509v3 Authority Key Identifier:
keyid:22:D2:9C:99:6A:BC:C7:2C:72:27:9E:F7:89:87:95:1B:82:5A:E4:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/22D29C996ABCC72C72279EF78987951B825AE400.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItKcmWq8xyxyJ573iYeVG4Ja5AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/3/3138352e3235302e3232302e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.220.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:15:79:81:b2:d2:b7:d5:d5:1d:22:ad:7c:b8:7e:b3:ea:ff:
c0:d2:ae:4b:0c:b3:28:b6:a9:14:1e:2a:74:6a:ff:e2:7a:11:
8d:ff:67:82:c9:0a:20:74:00:2b:6a:10:71:16:91:9c:f0:dc:
e2:16:4c:c8:81:9c:47:4b:c6:44:ab:5b:75:bd:aa:c3:87:f2:
47:dc:95:e5:0c:a9:a5:29:c1:19:2e:1b:93:c5:4b:d4:52:e1:
4c:62:41:86:80:69:a1:94:78:b0:62:34:63:b5:36:78:a0:4b:
35:b9:df:0b:58:b2:c5:ed:98:21:3c:aa:7b:d5:48:cc:9b:4d:
46:75:d9:fc:94:c4:66:ac:0e:87:6f:44:07:84:d4:e3:42:09:
ff:ba:e3:2b:49:80:fc:00:e6:67:2c:03:57:dc:ac:26:5f:e5:
d1:d4:f1:38:e0:6f:cb:19:3c:2b:fe:bd:8f:d0:b1:04:9d:a8:
0c:64:c8:5f:23:d1:63:33:9f:75:29:39:94:04:83:c4:59:57:
10:a4:71:01:b8:53:5f:7b:71:0c:a6:d3:ca:94:76:af:1e:87:
c3:27:fb:06:a3:e8:20:c9:dc:ed:08:2d:e7:71:23:8f:e3:6b:
0f:9d:d4:d5:35:f2:df:c8:e4:f9:de:06:fa:1d:05:66:84:e5:
1c:38:a6:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:48 2023 by rpki-client on console-fra.rpki-client.org