Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/3139342e352e3135342e302f32332d3234203d3e2030.roa
File: 3139342e352e3135342e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: ttiDKAy25LcFaRTXWE4wpg9TrBBF5M9i2vhGk9tKS8U=
Subject key identifier: 13:7C:49:44:7D:3C:C2:42:34:42:24:A1:80:D1:FE:7F:00:F5:9F:38
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 46E20C75F7273E103BAA74B4C548EE6E53F6FB6A
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/3139342e352e3135342e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:06:45 +0000
ROA not before: Fri 03 Mar 2023 16:01:45 +0000
ROA not after: Fri 01 Mar 2024 16:06:45 +0000
asID: 0
IP address blocks: 194.5.154.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:e2:0c:75:f7:27:3e:10:3b:aa:74:b4:c5:48:ee:6e:53:f6:fb:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Mar 3 16:01:45 2023 GMT
Not After : Mar 1 16:06:45 2024 GMT
Subject: CN=137C49447D3CC242344224A180D1FE7F00F59F38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:63:46:a1:3a:20:22:24:b1:c7:a8:74:a1:81:
e4:24:c6:07:5e:c2:1d:1d:34:03:6c:a9:42:08:42:
f6:9f:66:a6:6c:59:eb:e6:9e:70:3a:20:79:88:68:
5f:0c:db:cb:af:49:87:b4:97:e8:c3:6f:06:f2:7c:
48:e8:8d:e4:51:b1:56:15:b0:63:05:6e:e3:b4:04:
da:29:71:1f:93:19:88:62:0b:40:ac:d0:ae:e7:7f:
45:e3:a5:1f:06:3b:d1:cd:7e:6e:79:2d:b1:8d:b3:
44:05:f6:25:e8:62:e7:2c:61:bb:0f:5a:ff:45:55:
a6:df:12:6d:df:64:c1:5a:ce:c8:d1:1d:48:53:1f:
5c:39:d9:9d:7f:05:08:7d:aa:eb:fe:46:11:00:e0:
09:f7:6b:93:0d:19:3f:90:16:7e:12:3a:cd:92:f9:
fa:36:dd:f9:84:ab:04:89:71:6d:b2:4d:e8:32:81:
40:07:6c:0a:5f:f2:81:b9:ca:c0:f5:fe:54:93:0f:
3a:71:e8:37:9b:8d:ba:7c:b8:09:61:52:9c:f4:bb:
aa:e1:19:fe:0e:72:3c:2f:91:52:ff:0e:97:2d:5f:
79:4f:c1:82:ab:4d:cf:c8:7e:d8:97:9b:8c:cb:45:
6a:0a:51:be:b6:0c:62:40:19:ee:c7:26:7f:a0:51:
12:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7C:49:44:7D:3C:C2:42:34:42:24:A1:80:D1:FE:7F:00:F5:9F:38
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/3139342e352e3135342e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.154.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:e9:fe:ad:8a:12:71:a7:c5:68:4a:bf:5e:23:c6:33:b6:4b:
71:32:07:fd:bb:32:df:da:68:88:61:da:a5:d2:02:3e:29:74:
fe:b4:d6:6d:3e:ce:79:37:07:22:f7:74:16:5d:1b:21:58:6e:
53:53:81:bc:fb:c0:c1:5d:90:df:23:ad:ad:a0:33:ec:5c:13:
17:b7:4c:dc:5f:1d:8f:33:b5:b5:32:40:71:02:37:7b:2b:d2:
ad:70:a8:98:f9:fd:96:65:f7:cc:c2:87:3e:d9:27:9c:4b:52:
bc:ac:04:1e:02:15:18:6b:7e:fd:56:a6:15:d7:a1:cb:fd:c7:
15:2d:8e:91:f5:0f:f0:6e:d2:52:fe:85:06:cc:5d:2a:4e:d9:
22:42:aa:dc:55:4c:2f:3f:c7:db:8e:a8:8b:d7:63:ee:cd:5e:
5a:29:8c:28:e2:68:8d:a5:38:34:7a:fa:9f:6e:0a:1b:81:54:
6c:00:81:85:95:48:c6:05:ae:4b:65:74:fd:68:df:32:7b:ae:
39:11:c0:99:89:16:fe:8f:0a:1f:e5:b2:55:7e:80:ed:35:5e:
d1:a1:7e:d3:8a:d6:8f:f1:64:7e:a2:db:85:1d:5b:2c:d2:9c:
5d:c7:49:39:d6:b8:d0:b5:7d:d7:1a:81:dc:1c:3d:16:fa:93:
64:35:0b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:58 2024 by rpki-client on console-ams.rpki-client.org