Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/7/3137362e3232372e3234322e302f32342d3234203d3e2030.roa
File: 3137362e3232372e3234322e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: cuk89U45u4rnJGARLrJ80vt0URBbb8cw2V0b8e1iP14=
Subject key identifier: 72:BA:3C:28:FB:5D:38:F0:0E:3F:86:74:9D:45:94:48:B4:3A:DB:FB
Certificate issuer: /CN=5dc970755824cb967cad6f3b964709b092d43069
Certificate serial: 477EAE536A1E172D42391CE74AE67C979AE9A90D
Authority key identifier: 5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/7/3137362e3232372e3234322e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:54:45 +0000
ROA not before: Fri 03 Mar 2023 15:49:45 +0000
ROA not after: Fri 01 Mar 2024 15:54:45 +0000
asID: 0
IP address blocks: 176.227.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:7e:ae:53:6a:1e:17:2d:42:39:1c:e7:4a:e6:7c:97:9a:e9:a9:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc970755824cb967cad6f3b964709b092d43069
Validity
Not Before: Mar 3 15:49:45 2023 GMT
Not After : Mar 1 15:54:45 2024 GMT
Subject: CN=72BA3C28FB5D38F00E3F86749D459448B43ADBFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0e:8b:2f:10:69:fe:92:67:7f:0f:3b:3b:9d:
a9:24:a4:93:1b:9e:e8:1b:47:4e:2c:ea:10:c8:50:
3a:cf:73:9e:e3:4f:c4:a0:c3:2b:f5:78:98:a2:a7:
aa:69:a2:21:4f:b7:9e:5d:5b:3c:cc:7c:1a:46:05:
4a:0d:9a:72:2c:3b:3d:e0:c8:3d:9d:a6:56:04:23:
9d:30:1e:10:bc:42:ff:e8:a4:d6:bb:c9:45:f3:24:
2a:f6:b4:b3:a1:35:63:d9:d4:ac:58:f1:34:b9:a8:
6a:35:5f:18:3a:09:19:dc:68:f4:e8:f2:7d:e5:c6:
f6:7f:44:42:b8:fe:23:5f:56:d0:a1:5e:60:cb:b1:
57:36:70:7b:ce:b7:ba:f6:bf:20:98:74:69:dc:c3:
39:bc:71:0a:0a:d0:2e:f5:f1:51:7d:86:fc:e4:48:
a3:d0:c0:9f:c6:c0:b0:51:4e:70:e6:0a:bf:13:2b:
92:7d:a1:5f:52:0c:71:b5:06:db:e6:e9:5c:5e:96:
cb:f2:33:40:ba:9d:94:ec:9f:b1:06:29:ff:d7:b1:
2c:7b:73:7f:e7:0f:ee:1c:8d:f3:8e:56:63:46:97:
83:de:d4:27:e7:9a:8e:8c:4e:6a:6f:c0:bf:48:e5:
8f:c0:4e:1d:c3:be:ca:54:70:75:4d:f6:bf:18:c3:
37:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BA:3C:28:FB:5D:38:F0:0E:3F:86:74:9D:45:94:48:B4:3A:DB:FB
X509v3 Authority Key Identifier:
keyid:5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/3137362e3232372e3234322e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.227.242.0/24
Signature Algorithm: sha256WithRSAEncryption
42:aa:b7:c2:85:61:01:b3:32:a5:49:b4:bc:7d:d5:62:ad:42:
b5:14:a6:09:6c:e8:4c:e8:39:9f:c8:81:fc:d3:36:28:a9:ac:
c7:a7:99:84:8c:ee:5f:6c:4e:87:e3:67:26:68:58:72:23:b1:
b8:a3:88:8d:20:02:d8:30:4f:c4:84:1c:5c:27:c6:a2:cc:c3:
9a:ec:2b:68:e2:8c:f4:08:32:be:33:64:a7:33:03:52:75:29:
82:81:ad:00:8f:d4:21:d0:13:43:d6:f3:eb:60:1b:c0:60:8d:
fa:d5:d7:98:36:62:f3:ca:2d:e0:21:a0:12:77:44:4d:b9:aa:
c0:dc:c5:5c:cf:46:7d:18:94:e5:0a:5f:11:2b:76:93:24:15:
2f:c1:06:43:40:25:24:d4:dc:7b:ef:c2:e6:62:a7:fa:80:44:
6a:e6:3c:4a:a0:3b:3f:c0:c3:50:4b:e8:f2:ab:bc:26:e1:1e:
34:ec:b9:fa:91:f3:4c:41:08:98:ef:61:fc:e6:b2:84:87:c1:
80:84:c6:d8:86:e5:9a:54:11:ab:3f:3e:a9:93:57:06:d8:57:
a5:f4:7f:f7:93:6f:93:34:2a:90:24:53:31:2a:5e:c8:3d:4c:
44:5a:3e:dd:5e:ea:7c:89:55:c2:10:72:76:48:37:ab:49:55:
11:a8:64:27
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgIUR36uU2oeFy1CORznSuZ8l5rpqQ0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWRjOTcwNzU1ODI0Y2I5NjdjYWQ2ZjNiOTY0NzA5YjA5
MmQ0MzA2OTAeFw0yMzAzMDMxNTQ5NDVaFw0yNDAzMDExNTU0NDVaMDMxMTAvBgNV
BAMTKDcyQkEzQzI4RkI1RDM4RjAwRTNGODY3NDlENDU5NDQ4QjQzQURCRkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVDosvEGn+kmd/Dzs7nakkpJMb
nugbR04s6hDIUDrPc57jT8Sgwyv1eJiip6ppoiFPt55dWzzMfBpGBUoNmnIsOz3g
yD2dplYEI50wHhC8Qv/opNa7yUXzJCr2tLOhNWPZ1KxY8TS5qGo1Xxg6CRncaPTo
8n3lxvZ/REK4/iNfVtChXmDLsVc2cHvOt7r2vyCYdGncwzm8cQoK0C718VF9hvzk
SKPQwJ/GwLBRTnDmCr8TK5J9oV9SDHG1Btvm6VxelsvyM0C6nZTsn7EGKf/XsSx7
c3/nD+4cjfOOVmNGl4Pe1Cfnmo6MTmpvwL9I5Y/ATh3DvspUcHVN9r8YwzclAgMB
AAGjggHrMIIB5zAdBgNVHQ4EFgQUcro8KPtdOPAOP4Z0nUWUSLQ62/swHwYDVR0j
BBgwFoAUXclwdVgky5Z8rW87lkcJsJLUMGkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzcvNURDOTcwNzU1ODI0Q0I5NjdDQUQ2RjNCOTY0NzA5QjA5
MkQ0MzA2OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hjbHdkVmdreTVaOHJX
ODdsa2NKc0pMVU1Hay5jZXIwgYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4Zm
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Ny8zMTM3MzYyZTMyMzIzNzJlMzIzNDMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIw
MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBACw4/IwDQYJKoZIhvcNAQELBQADggEBAEKqt8KFYQGzMqVJ
tLx91WKtQrUUpgls6EzoOZ/IgfzTNiiprMenmYSM7l9sTofjZyZoWHIjsbijiI0g
AtgwT8SEHFwnxqLMw5rsK2jijPQIMr4zZKczA1J1KYKBrQCP1CHQE0PW8+tgG8Bg
jfrV15g2YvPKLeAhoBJ3RE25qsDcxVzPRn0YlOUKXxErdpMkFS/BBkNAJSTU3Hvv
wuZip/qARGrmPEqgOz/Aw1BL6PKrvCbhHjTsufqR80xBCJjvYfzmsoSHwYCExtiG
5ZpUEas/PqmTVwbYV6X0f/eTb5M0KpAkUzEqXsg9TERaPt1e6nyJVcIQcnZIN6tJ
VRGoZCc=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:42 2023 by rpki-client on console-ams.rpki-client.org