Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3136382e302f32332d3234203d3e2030.roa
File: 38342e32312e3136382e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: EUyz/LNxOVf4suhDAeydQ0pRyR+M4tKXUYJgv6zJWiQ=
Subject key identifier: 68:A8:68:A9:A8:A7:03:CB:28:71:2A:88:30:BD:30:89:54:A2:2B:6C
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 658E735C9C794726C93A3A1857DFA100B8FE5DD5
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3136382e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:10:34 +0000
ROA not before: Fri 03 Mar 2023 16:05:34 +0000
ROA not after: Fri 01 Mar 2024 16:10:34 +0000
asID: 0
IP address blocks: 84.21.168.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:8e:73:5c:9c:79:47:26:c9:3a:3a:18:57:df:a1:00:b8:fe:5d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Mar 3 16:05:34 2023 GMT
Not After : Mar 1 16:10:34 2024 GMT
Subject: CN=68A868A9A8A703CB28712A8830BD308954A22B6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0a:0a:55:fe:5b:cf:c0:c2:a0:93:01:1b:8c:
cf:28:b1:74:5c:43:9b:38:df:c7:d7:f1:06:ec:4a:
bf:a8:a4:a0:1d:a2:77:b7:3c:75:8d:21:aa:d2:38:
3f:81:a8:6e:6a:ce:4c:fe:bc:08:0a:3b:a6:6b:e5:
71:c0:c5:c1:33:6a:54:f4:a9:13:23:d1:4c:b3:ab:
49:f8:63:b3:24:71:ba:30:bb:17:be:00:a1:86:e5:
c6:70:ed:aa:f0:1f:a8:c1:ce:a6:58:ea:6f:d3:59:
49:95:7c:2d:d7:c4:ed:fa:6d:87:d4:d9:99:bd:84:
26:1a:bb:5b:0a:66:e8:5e:47:bd:1c:18:0c:ce:66:
16:c6:70:04:82:84:9b:c6:6f:6d:a1:31:5f:7c:f5:
71:8c:39:e4:40:b1:3d:42:b9:92:db:17:99:2f:5a:
ff:00:de:4d:e5:36:a1:40:1a:6d:18:d6:24:27:94:
9a:3f:85:2d:d5:1e:b4:7b:70:ec:c2:9d:cd:e1:32:
52:6e:9b:c5:14:6a:73:ce:37:33:1d:9e:56:9e:fd:
1c:b8:9e:b3:f6:78:0a:20:64:92:84:05:3a:cb:a6:
da:99:25:c8:94:44:54:7b:a2:e7:f8:62:15:db:6f:
ed:4c:4d:1e:2e:1d:78:23:26:a4:29:0a:dc:19:3b:
97:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A8:68:A9:A8:A7:03:CB:28:71:2A:88:30:BD:30:89:54:A2:2B:6C
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3136382e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.21.168.0/23
Signature Algorithm: sha256WithRSAEncryption
19:75:51:4e:6f:a6:b4:6e:73:3e:7f:4e:6a:ab:e8:7c:50:47:
45:a7:5f:5d:b5:8c:bf:33:a4:91:1b:af:12:f1:20:97:03:50:
69:cd:34:eb:16:94:ca:51:31:54:d1:60:fb:be:56:42:ae:c8:
14:70:a6:a0:d4:a4:f6:ae:40:a2:22:76:2e:c6:06:77:ec:0a:
47:05:1a:2d:9e:3e:af:20:c4:a1:b3:f6:6f:36:07:b6:9e:4c:
cb:e3:a5:49:0a:a1:65:8a:13:ee:19:19:81:96:83:7c:13:9b:
2e:7b:22:f8:12:fb:87:18:47:2f:73:73:d5:6c:4f:1a:94:18:
64:72:61:6a:0c:cc:bb:7c:7c:34:bf:4b:5f:16:6e:3a:a4:65:
7e:5b:9d:52:1e:d4:6b:0a:3a:ff:ca:77:c3:70:30:00:ec:14:
f9:44:30:e3:d9:6d:7c:59:6f:06:12:57:96:97:de:3e:81:58:
52:18:62:10:74:89:bf:95:fb:df:cd:46:1e:e1:65:70:e7:f3:
0f:fc:44:96:4f:7c:85:e0:ee:96:22:f9:24:df:fe:f1:e2:51:
74:e9:79:f4:4d:6e:62:67:06:ab:d6:dc:d2:98:66:65:ec:06:
f0:e1:81:74:36:17:74:db:af:b7:90:69:47:7f:d1:ea:79:54:
c0:30:fd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:52 2023 by rpki-client on console-fra.rpki-client.org