Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3137302e302f32342d3234203d3e2030.roa
File: 38342e32312e3137302e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: +tQvqcZ6uW9MVKgTGyVDQ6MBUSEgIxMsi6MS9StbX9Y=
Subject key identifier: 25:AC:1A:AB:CA:D0:7A:38:13:14:69:52:79:ED:85:AC:29:F4:7C:97
Certificate issuer: /CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Certificate serial: 733F3E5B353811CEE7D7673C43FFCF0E73959F2D
Authority key identifier: 1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3137302e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 16:10:52 +0000
ROA not before: Fri 03 Mar 2023 16:05:52 +0000
ROA not after: Fri 01 Mar 2024 16:10:52 +0000
asID: 0
IP address blocks: 84.21.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:3f:3e:5b:35:38:11:ce:e7:d7:67:3c:43:ff:cf:0e:73:95:9f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e793b5c1239231e08dedd6fb8060732cd063f4d
Validity
Not Before: Mar 3 16:05:52 2023 GMT
Not After : Mar 1 16:10:52 2024 GMT
Subject: CN=25AC1AABCAD07A381314695279ED85AC29F47C97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:89:23:f0:89:55:1b:a1:9f:aa:da:15:bd:d4:
13:76:4a:03:cf:52:4d:cf:9c:ce:5a:c0:ad:85:b9:
c4:ff:24:91:0b:c9:4b:50:91:d3:17:f2:0f:c7:6f:
25:6a:18:ce:53:c1:92:99:1c:a1:99:af:d3:f6:73:
e9:53:d3:8d:b4:0f:f2:1f:3c:46:0c:17:1c:4d:69:
42:67:d5:a8:d9:35:62:73:5b:2c:c4:95:b5:bf:51:
78:d4:2f:af:0a:24:77:a4:6c:71:2b:fd:9a:51:70:
5a:2a:c6:da:84:54:02:79:4f:85:6b:8c:04:39:10:
a1:4c:81:43:cf:f1:9f:f8:69:db:ae:f2:ad:22:83:
ee:21:47:a0:2a:ad:53:64:19:e0:0f:85:09:80:2a:
15:88:4e:8f:37:75:97:e4:5b:d3:ef:c3:b4:34:5d:
9a:94:58:0c:fd:4c:42:44:7e:ea:63:81:cb:b1:a1:
f6:8a:32:f2:d1:62:9e:d8:f8:8a:84:15:8e:ea:83:
0d:45:07:b3:b3:6f:82:6c:07:3f:56:e0:5e:2b:8e:
f2:d3:9e:6b:b7:e7:81:9d:07:62:ea:81:e7:b0:48:
4e:64:74:29:62:74:3d:7f:7b:27:27:bd:3c:1f:10:
a1:d8:8f:c9:1a:fc:cb:05:02:00:46:e5:22:1f:cb:
5b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AC:1A:AB:CA:D0:7A:38:13:14:69:52:79:ED:85:AC:29:F4:7C:97
X509v3 Authority Key Identifier:
keyid:1E:79:3B:5C:12:39:23:1E:08:DE:DD:6F:B8:06:07:32:CD:06:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/1E793B5C1239231E08DEDD6FB8060732CD063F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hnk7XBI5Ix4I3t1vuAYHMs0GP00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/8/38342e32312e3137302e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.21.170.0/24
Signature Algorithm: sha256WithRSAEncryption
58:64:ed:0f:0e:5b:5e:87:43:3e:3f:01:17:9c:ed:3e:4f:ec:
cd:9d:49:0f:3a:0d:52:90:30:8d:e8:17:49:56:44:03:97:00:
0e:b1:a2:e7:cb:22:27:48:d5:2d:15:5d:cb:24:26:f4:0e:79:
82:17:a2:81:de:fd:d5:2a:00:9d:ad:8f:61:22:f0:b2:b3:cc:
e9:45:68:51:5d:2b:c0:84:6b:80:e6:f6:84:a1:cc:f0:7d:ee:
4b:80:88:5e:78:b0:92:04:69:f1:a5:cf:b7:ad:1b:2b:27:81:
aa:23:c8:aa:fd:4b:bc:f8:27:b3:b1:a8:fb:39:af:e4:3f:66:
b4:a5:ed:6c:98:a6:7a:1a:f0:77:2b:91:6b:eb:94:ea:02:8d:
ae:47:cd:e8:30:f9:3a:9d:87:bb:36:25:b1:03:33:e5:8d:b1:
03:69:ef:91:17:84:78:2c:99:d7:62:94:36:96:f6:8d:b7:f4:
79:1c:98:19:93:84:29:64:91:ab:de:83:e2:a6:9e:5e:1a:77:
da:11:9e:ea:28:33:8e:19:d8:ef:c8:05:5d:3f:7b:8b:43:b4:
5e:48:08:b2:7d:35:b2:27:3e:d0:c0:34:5f:8b:59:90:7c:93:
dd:d9:32:14:94:85:32:ea:a4:74:d1:69:af:e7:89:93:d7:22:
da:23:f6:47
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUcz8+WzU4Ec7n12c8Q//PDnOVny0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMWU3OTNiNWMxMjM5MjMxZTA4ZGVkZDZmYjgwNjA3MzJj
ZDA2M2Y0ZDAeFw0yMzAzMDMxNjA1NTJaFw0yNDAzMDExNjEwNTJaMDMxMTAvBgNV
BAMTKDI1QUMxQUFCQ0FEMDdBMzgxMzE0Njk1Mjc5RUQ4NUFDMjlGNDdDOTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMiSPwiVUboZ+q2hW91BN2SgPP
Uk3PnM5awK2FucT/JJELyUtQkdMX8g/HbyVqGM5TwZKZHKGZr9P2c+lT0420D/If
PEYMFxxNaUJn1ajZNWJzWyzElbW/UXjUL68KJHekbHEr/ZpRcFoqxtqEVAJ5T4Vr
jAQ5EKFMgUPP8Z/4aduu8q0ig+4hR6AqrVNkGeAPhQmAKhWITo83dZfkW9Pvw7Q0
XZqUWAz9TEJEfupjgcuxofaKMvLRYp7Y+IqEFY7qgw1FB7Ozb4JsBz9W4F4rjvLT
nmu354GdB2LqgeewSE5kdClidD1/eycnvTwfEKHYj8ka/MsFAgBG5SIfy1tbAgMB
AAGjggHmMIIB4jAdBgNVHQ4EFgQUJawaq8rQejgTFGlSee2FrCn0fJcwHwYDVR0j
BBgwFoAUHnk7XBI5Ix4I3t1vuAYHMs0GP00wDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzgvMUU3OTNCNUMxMjM5MjMxRTA4REVERDZGQjgwNjA3MzJD
RDA2M0Y0RC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0huazdYQkk1SXg0STN0
MXZ1QVlITXMwR1AwMC5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJy
c3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC84
LzM4MzQyZTMyMzEyZTMxMzczMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAVBWqMA0GCSqGSIb3DQEBCwUAA4IBAQBYZO0PDlteh0M+PwEXnO0+
T+zNnUkPOg1SkDCN6BdJVkQDlwAOsaLnyyInSNUtFV3LJCb0DnmCF6KB3v3VKgCd
rY9hIvCys8zpRWhRXSvAhGuA5vaEoczwfe5LgIheeLCSBGnxpc+3rRsrJ4GqI8iq
/Uu8+Cezsaj7Oa/kP2a0pe1smKZ6GvB3K5Fr65TqAo2uR83oMPk6nYe7NiWxAzPl
jbEDae+RF4R4LJnXYpQ2lvaNt/R5HJgZk4QpZJGr3oPipp5eGnfaEZ7qKDOOGdjv
yAVdP3uLQ7ReSAiyfTWyJz7QwDRfi1mQfJPd2TIUlIUy6qR00Wmv54mT1yLaI/ZH
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:52 2023 by rpki-client on console-fra.rpki-client.org