Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/7/322e35382e37342e302f32342d3234203d3e2030.roa
File: 322e35382e37342e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: gjI463BAMGdEbTrKt3+fGOOR4eKbCgZiI31O1rTcV90=
Subject key identifier: F9:EA:85:C7:04:20:52:E2:24:F0:D7:50:7A:A9:53:3F:19:EB:32:4A
Certificate issuer: /CN=5dc970755824cb967cad6f3b964709b092d43069
Certificate serial: 4D065A34920B15638A76DBD5645E2BD3A365A756
Authority key identifier: 5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/7/322e35382e37342e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:59:15 +0000
ROA not before: Fri 03 Mar 2023 15:54:15 +0000
ROA not after: Fri 01 Mar 2024 15:59:15 +0000
asID: 0
IP address blocks: 2.58.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:06:5a:34:92:0b:15:63:8a:76:db:d5:64:5e:2b:d3:a3:65:a7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc970755824cb967cad6f3b964709b092d43069
Validity
Not Before: Mar 3 15:54:15 2023 GMT
Not After : Mar 1 15:59:15 2024 GMT
Subject: CN=F9EA85C7042052E224F0D7507AA9533F19EB324A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a2:00:ea:13:e7:47:67:18:d5:38:98:bf:aa:
17:70:9a:a5:0b:75:a3:48:c3:da:22:cc:27:1a:0b:
c5:e6:a1:29:62:b4:ce:c7:4d:f3:28:3b:37:0a:bd:
b2:b5:d6:d4:2b:40:55:0d:78:14:2a:70:ec:58:da:
25:64:91:4c:d2:97:d3:1a:ab:fa:a9:24:fe:6d:55:
1f:86:23:0b:78:fa:00:98:bc:4d:64:cd:94:7a:fb:
61:48:01:3b:dc:53:f9:c0:19:41:48:94:68:85:87:
a0:79:1c:77:be:7d:55:af:8b:72:2f:5e:12:7a:82:
4c:d7:15:9c:88:de:32:b2:58:bc:b6:83:9c:53:2c:
ed:eb:c1:c2:d8:39:9a:23:34:dc:01:d4:79:9d:18:
dd:d1:ec:9c:27:56:d6:e2:a2:e6:b5:f5:fb:27:96:
22:a6:79:dc:9f:b6:e2:9a:91:31:6b:84:79:db:64:
7c:15:c6:79:b6:47:6c:68:86:a7:d6:53:38:d0:d6:
15:c7:cf:10:0c:d5:0a:4b:7e:ac:b5:b6:23:c1:72:
a0:7e:fb:11:cc:69:1a:03:1f:5f:01:b1:2e:43:8b:
74:6a:5d:48:53:c6:e3:d2:09:ae:32:4f:e9:8c:e7:
bb:74:a0:9f:dd:4d:a5:ac:a8:2c:69:ef:42:d8:d1:
dc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EA:85:C7:04:20:52:E2:24:F0:D7:50:7A:A9:53:3F:19:EB:32:4A
X509v3 Authority Key Identifier:
keyid:5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/322e35382e37342e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.74.0/24
Signature Algorithm: sha256WithRSAEncryption
03:07:5b:18:6f:0d:c8:77:e3:ff:ac:93:9d:ac:a0:0b:51:61:
42:7f:18:a5:c3:27:04:d0:b2:21:0e:47:39:c1:85:e4:22:a5:
eb:e3:d9:45:1c:85:6c:5d:02:b7:7a:c8:01:c6:6a:7a:e8:bd:
24:08:77:86:23:42:8f:b4:16:e5:0e:c7:48:ad:47:21:45:f0:
4b:6f:9c:40:b1:91:1f:f0:98:43:42:68:d7:26:a1:0c:fe:cd:
10:25:f1:ce:ee:88:aa:29:5e:38:6a:bb:07:23:6f:24:75:f4:
bb:cc:2a:10:31:dc:95:96:62:19:11:44:82:61:a2:0d:29:eb:
37:bc:65:2a:55:23:f9:e1:40:3a:bf:48:19:ab:66:1b:df:88:
da:a2:99:44:38:33:07:ac:5b:b2:74:a1:82:93:74:93:48:40:
c1:72:f0:54:ea:bf:fb:d7:87:b6:32:07:91:09:55:da:28:e5:
6e:9f:ec:72:9f:4c:64:5b:f6:c9:e6:d6:1e:58:49:50:09:ff:
af:f5:08:85:d7:51:5c:f9:81:ff:c7:6a:11:ba:f8:65:59:fb:
61:1f:bd:ff:2a:27:47:c5:68:ee:4b:7e:44:33:e0:43:5e:eb:
56:e3:8d:93:87:ba:07:70:c9:cb:b9:ac:64:69:22:2a:f5:43:
4b:a2:42:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:52 2023 by rpki-client on console-fra.rpki-client.org