Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/34352e36362e3133362e302f32322d3234203d3e2030.roa
File: 34352e36362e3133362e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: hJYR9iQnHHHNXJqPuZ4dXVAgUlOFmU8DyzmKukMwNac=
Subject key identifier: 1E:3B:57:0D:4E:21:F9:9C:2F:5D:0D:9E:71:CC:C4:06:AC:FB:D7:2A
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 35DACA95AE258D32FA1E3EF516C6D6A54C5F1079
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/34352e36362e3133362e302f32322d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:14:56 +0000
ROA not before: Fri 03 Mar 2023 16:09:56 +0000
ROA not after: Fri 01 Mar 2024 16:14:56 +0000
asID: 0
IP address blocks: 45.66.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:da:ca:95:ae:25:8d:32:fa:1e:3e:f5:16:c6:d6:a5:4c:5f:10:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Mar 3 16:09:56 2023 GMT
Not After : Mar 1 16:14:56 2024 GMT
Subject: CN=1E3B570D4E21F99C2F5D0D9E71CCC406ACFBD72A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:19:94:3c:7e:3a:ec:7d:39:8f:98:26:92:4d:
d9:44:e9:31:00:96:32:0e:f8:c7:42:5d:46:df:d4:
56:fc:9f:66:43:c2:59:2b:0f:b5:36:5c:41:32:52:
20:a5:4d:49:35:14:2f:a5:e4:09:af:7e:f4:a3:96:
90:1d:99:ba:3f:5a:38:dc:03:17:b0:d0:53:08:77:
7d:af:da:79:7f:50:39:08:93:b6:ef:90:2b:18:b9:
40:3b:51:16:57:74:53:2c:ca:a5:4d:f0:73:e0:98:
e5:04:e4:66:4c:dc:16:b7:49:80:b7:3a:fa:53:2c:
fc:05:3a:8f:63:b3:42:0f:f8:f2:31:63:c7:5c:bf:
e8:f3:ec:8a:99:3c:5e:b4:55:d6:9a:88:19:02:74:
17:d9:b1:9f:2b:49:12:59:a2:6e:2f:cd:64:83:e2:
20:3c:45:4c:9e:04:46:a6:f9:34:c6:bb:43:ea:e6:
a5:33:e5:d0:fc:01:d7:89:cf:7a:75:ff:25:c2:25:
48:11:cc:7e:da:82:a0:b2:f5:d6:52:08:63:61:e5:
27:d3:c4:7d:76:c2:5e:15:9d:08:ac:bd:9c:2e:3f:
79:1a:68:6c:cc:3e:9d:55:72:55:71:44:e6:d0:16:
5c:9e:66:55:13:a5:73:4c:8b:6c:19:5e:ab:ed:4f:
eb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:3B:57:0D:4E:21:F9:9C:2F:5D:0D:9E:71:CC:C4:06:AC:FB:D7:2A
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/34352e36362e3133362e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.136.0/22
Signature Algorithm: sha256WithRSAEncryption
59:32:99:c9:26:b8:a2:b9:28:09:7a:fc:2b:ef:f7:ca:02:02:
f0:05:84:1c:f8:c3:f4:ed:f5:4e:ec:33:6f:52:ec:cb:8e:9d:
61:c9:67:29:14:d9:10:50:53:d1:1c:93:0a:13:cb:db:20:53:
a8:c1:37:82:97:e7:c9:02:46:6e:bb:2e:cf:79:ab:0a:18:6c:
83:5f:b6:a5:d8:78:c5:d2:7f:93:c0:fe:f2:8b:c9:75:35:3b:
d0:db:90:8d:40:4c:46:e2:7b:ef:00:6d:33:3b:38:7e:85:26:
62:21:42:cd:06:92:32:0a:37:f1:6d:59:63:07:34:97:f8:9c:
a4:24:c6:f3:f4:d9:51:77:ff:d8:c9:c6:50:53:e7:49:eb:28:
8f:1a:f0:f4:d6:07:0f:67:4f:f3:f6:ae:56:ca:f7:34:81:05:
02:af:71:6b:47:dd:06:48:8b:72:1c:49:13:e5:ae:7a:48:14:
fc:69:e4:87:1b:7c:66:33:3b:26:89:a9:3f:37:c3:44:ef:46:
d0:5e:2a:99:10:8b:78:2a:d0:bd:d0:d1:ef:71:c4:f8:ba:71:
0e:3a:ff:83:3a:a6:6b:d2:92:ed:81:8b:e5:59:07:ca:e3:01:
70:de:1e:46:60:e4:3c:89:74:03:ed:a3:b5:fc:96:ca:92:19:
c6:ca:79:91
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUNdrKla4ljTL6Hj71FsbWpUxfEHkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMWU3OTNiNWMxMjM5MjMxZTA4ZGVkZDZmYjgwNjA3MzJj
ZDA2M2Y0ZDAeFw0yMzAzMDMxNjA5NTZaFw0yNDAzMDExNjE0NTZaMDMxMTAvBgNV
BAMTKDFFM0I1NzBENEUyMUY5OUMyRjVEMEQ5RTcxQ0NDNDA2QUNGQkQ3MkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXGZQ8fjrsfTmPmCaSTdlE6TEA
ljIO+MdCXUbf1Fb8n2ZDwlkrD7U2XEEyUiClTUk1FC+l5AmvfvSjlpAdmbo/Wjjc
Axew0FMId32v2nl/UDkIk7bvkCsYuUA7URZXdFMsyqVN8HPgmOUE5GZM3Ba3SYC3
OvpTLPwFOo9js0IP+PIxY8dcv+jz7IqZPF60VdaaiBkCdBfZsZ8rSRJZom4vzWSD
4iA8RUyeBEam+TTGu0Pq5qUz5dD8AdeJz3p1/yXCJUgRzH7agqCy9dZSCGNh5SfT
xH12wl4VnQisvZwuP3kaaGzMPp1VclVxRObQFlyeZlUTpXNMi2wZXqvtT+t1AgMB
AAGjggHmMIIB4jAdBgNVHQ4EFgQUHjtXDU4h+ZwvXQ2ecczEBqz71yowHwYDVR0j
BBgwFoAUHnk7XBI5Ix4I3t1vuAYHMs0GP00wDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzgvMUU3OTNCNUMxMjM5MjMxRTA4REVERDZGQjgwNjA3MzJD
RDA2M0Y0RC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0huazdYQkk1SXg0STN0
MXZ1QVlITXMwR1AwMC5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJy
c3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC84
LzM0MzUyZTM2MzYyZTMxMzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMwLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQCLUKIMA0GCSqGSIb3DQEBCwUAA4IBAQBZMpnJJriiuSgJevwr7/fK
AgLwBYQc+MP07fVO7DNvUuzLjp1hyWcpFNkQUFPRHJMKE8vbIFOowTeCl+fJAkZu
uy7PeasKGGyDX7al2HjF0n+TwP7yi8l1NTvQ25CNQExG4nvvAG0zOzh+hSZiIULN
BpIyCjfxbVljBzSX+JykJMbz9NlRd//YycZQU+dJ6yiPGvD01gcPZ0/z9q5Wyvc0
gQUCr3FrR90GSItyHEkT5a56SBT8aeSHG3xmMzsmiak/N8NE70bQXiqZEIt4KtC9
0NHvccT4unEOOv+DOqZr0pLtgYvlWQfK4wFw3h5GYOQ8iXQD7aO1/JbKkhnGynmR
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:42 2023 by rpki-client on console-ams.rpki-client.org