Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/7/34352e3134312e32302e302f32332d3234203d3e203631333137.roa
File: 34352e3134312e32302e302f32332d3234203d3e203631333137.roa (raw, json)
Hash identifier: SmaVFn1Ec87LnglsBRe90qupwEWhHJGpJeQFY4c8ym0=
Subject key identifier: 9F:2A:01:7C:BF:FB:29:7D:1E:8D:71:9A:A4:00:17:D7:CF:52:8A:34
Certificate issuer: /CN=5dc970755824cb967cad6f3b964709b092d43069
Certificate serial: 5B0083F25702D71CA1C59E1AAF92FC94785F3A2A
Authority key identifier: 5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/7/34352e3134312e32302e302f32332d3234203d3e203631333137.roa
Signing time: Sat 22 Oct 2022 04:33:43 +0000
ROA not before: Sat 22 Oct 2022 04:28:43 +0000
ROA not after: Sat 21 Oct 2023 04:33:43 +0000
asID: 61317
IP address blocks: 45.141.20.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:00:83:f2:57:02:d7:1c:a1:c5:9e:1a:af:92:fc:94:78:5f:3a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc970755824cb967cad6f3b964709b092d43069
Validity
Not Before: Oct 22 04:28:43 2022 GMT
Not After : Oct 21 04:33:43 2023 GMT
Subject: CN=9F2A017CBFFB297D1E8D719AA40017D7CF528A34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9d:34:05:cf:6a:e4:08:6d:45:fd:4c:db:c2:
84:91:5e:8b:94:0d:da:98:a4:63:d2:99:37:08:fc:
3c:6b:63:e0:6c:13:83:c2:4f:c7:b3:d0:3a:26:aa:
34:ae:86:ee:c6:89:e1:10:e6:63:9a:64:2a:f2:41:
c2:9e:02:e8:4b:f8:e0:0e:f4:4f:f7:5c:ee:35:b4:
6c:44:00:eb:00:2f:e6:4e:b3:36:fe:b6:d4:52:1d:
4e:d1:43:f4:c3:91:67:bc:1a:40:f5:78:8f:f2:30:
ce:4e:05:62:c4:93:95:3c:c0:54:32:6a:7d:94:79:
68:bb:2c:93:5a:d5:8b:9f:eb:85:a1:09:b8:79:d4:
ac:81:9b:fc:7a:3b:d8:21:b9:b2:4f:cf:96:ba:62:
ca:c1:1b:50:07:a6:09:08:bf:27:e5:ee:16:71:b2:
c0:2b:b1:0a:33:a9:06:8d:fe:3c:e0:37:ff:28:c6:
ed:75:e2:03:6e:80:2e:bc:4a:a3:ac:d5:04:be:ad:
22:11:59:82:1c:9c:57:12:69:d9:ca:eb:89:1e:14:
a8:13:90:f6:c3:b8:82:7e:b9:3b:58:89:0d:2e:b1:
aa:c7:2e:8e:99:ca:4f:d3:ca:b2:78:a2:4a:c6:2f:
e6:70:1e:02:69:03:4e:43:5d:47:2b:3b:fc:bc:55:
c7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:2A:01:7C:BF:FB:29:7D:1E:8D:71:9A:A4:00:17:D7:CF:52:8A:34
X509v3 Authority Key Identifier:
keyid:5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/34352e3134312e32302e302f32332d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.20.0/23
Signature Algorithm: sha256WithRSAEncryption
24:6e:5e:99:f6:38:ea:23:71:80:42:55:f9:68:79:56:80:62:
80:4c:64:37:17:13:4f:82:32:83:4c:d5:2f:bb:e9:f0:88:9c:
7f:2d:11:b3:a4:97:e9:68:73:c4:75:33:8d:0b:2d:6d:3b:f5:
34:57:01:9a:1c:a3:55:36:c7:ff:87:ba:cf:93:5b:04:08:b3:
88:fd:cd:54:c3:ad:77:fa:77:71:86:45:d0:4f:0b:bc:90:65:
a0:cc:1b:f1:25:52:9f:a1:9c:e8:96:f2:e7:dd:77:c7:38:fb:
c6:31:9e:85:6c:aa:2a:c6:49:05:c2:1b:9c:75:27:1a:a0:d5:
21:8c:31:e8:d2:98:2d:09:31:5f:d6:3b:04:41:51:8e:5c:cf:
22:2e:74:09:3c:b9:05:47:e2:85:2b:e4:fc:40:fd:ff:89:5f:
3c:ab:c3:1c:51:4a:74:d4:39:3c:a1:c0:fb:f7:a9:f1:86:66:
b8:2d:13:bf:08:1d:2a:dc:1c:6e:2d:5c:f9:fc:af:11:29:3e:
d0:d7:69:77:1f:b4:a2:1d:fb:da:8d:12:35:90:91:b6:73:d6:
16:0c:f6:89:46:df:e2:ce:54:9d:ba:ad:1f:c7:10:8b:c0:e0:
77:45:e0:69:e0:67:46:f6:99:14:cc:73:c4:2c:cd:8f:aa:5f:
09:4c:03:fc
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUWwCD8lcC1xyhxZ4ar5L8lHhfOiowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWRjOTcwNzU1ODI0Y2I5NjdjYWQ2ZjNiOTY0NzA5YjA5
MmQ0MzA2OTAeFw0yMjEwMjIwNDI4NDNaFw0yMzEwMjEwNDMzNDNaMDMxMTAvBgNV
BAMTKDlGMkEwMTdDQkZGQjI5N0QxRThENzE5QUE0MDAxN0Q3Q0Y1MjhBMzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgnTQFz2rkCG1F/UzbwoSRXouU
DdqYpGPSmTcI/DxrY+BsE4PCT8ez0DomqjSuhu7GieEQ5mOaZCryQcKeAuhL+OAO
9E/3XO41tGxEAOsAL+ZOszb+ttRSHU7RQ/TDkWe8GkD1eI/yMM5OBWLEk5U8wFQy
an2UeWi7LJNa1Yuf64WhCbh51KyBm/x6O9ghubJPz5a6YsrBG1AHpgkIvyfl7hZx
ssArsQozqQaN/jzgN/8oxu114gNugC68SqOs1QS+rSIRWYIcnFcSadnK64keFKgT
kPbDuIJ+uTtYiQ0usarHLo6Zyk/TyrJ4okrGL+ZwHgJpA05DXUcrO/y8VcchAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUnyoBfL/7KX0ejXGapAAX189SijQwHwYDVR0j
BBgwFoAUXclwdVgky5Z8rW87lkcJsJLUMGkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzcvNURDOTcwNzU1ODI0Q0I5NjdDQUQ2RjNCOTY0NzA5QjA5
MkQ0MzA2OS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hjbHdkVmdreTVaOHJX
ODdsa2NKc0pMVU1Hay5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Ny8zNDM1MmUzMTM0MzEyZTMyMzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNjMx
MzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQBLY0UMA0GCSqGSIb3DQEBCwUAA4IBAQAkbl6Z9jjq
I3GAQlX5aHlWgGKATGQ3FxNPgjKDTNUvu+nwiJx/LRGzpJfpaHPEdTONCy1tO/U0
VwGaHKNVNsf/h7rPk1sECLOI/c1Uw613+ndxhkXQTwu8kGWgzBvxJVKfoZzolvLn
3XfHOPvGMZ6FbKoqxkkFwhucdScaoNUhjDHo0pgtCTFf1jsEQVGOXM8iLnQJPLkF
R+KFK+T8QP3/iV88q8McUUp01Dk8ocD796nxhma4LRO/CB0q3BxuLVz5/K8RKT7Q
12l3H7SiHfvajRI1kJG2c9YWDPaJRt/izlSduq0fxxCLwOB3ReBp4GdG9pkUzHPE
LM2Pql8JTAP8
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:42 2023 by rpki-client on console-ams.rpki-client.org