Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/108/322e35392e3135362e302f32342d3332203d3e203531313637.roa
File: 322e35392e3135362e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: n+QxwbpOoYLGPnKtqlnUmOJBzqbTufKrLuoBNhYgtiE=
Subject key identifier: 22:FB:57:6E:2F:D3:99:D0:07:51:F2:8B:22:1A:AC:31:59:EE:1E:28
Certificate issuer: /CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Certificate serial: 4D68B640F843E6CCE61B69DCB254C4029BB2839F
Authority key identifier: 79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/108/322e35392e3135362e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:33:40 +0000
ROA not before: Sat 22 Oct 2022 04:28:40 +0000
ROA not after: Sat 21 Oct 2023 04:33:40 +0000
asID: 51167
IP address blocks: 2.59.156.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:68:b6:40:f8:43:e6:cc:e6:1b:69:dc:b2:54:c4:02:9b:b2:83:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Validity
Not Before: Oct 22 04:28:40 2022 GMT
Not After : Oct 21 04:33:40 2023 GMT
Subject: CN=22FB576E2FD399D00751F28B221AAC3159EE1E28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:df:59:62:3b:f1:f4:9d:46:d3:d6:7d:9a:ca:
64:f0:c9:6d:d6:65:e8:dc:ea:5f:63:14:2a:20:96:
7d:70:13:82:4e:79:40:f8:48:b2:74:74:29:2a:33:
46:9f:46:df:73:33:b8:4b:26:a6:ff:d9:f0:b1:69:
f7:52:27:b6:b5:dc:c3:36:c8:cf:80:cd:aa:8b:e7:
f5:8b:31:e3:32:cb:73:02:9c:ca:db:6b:a1:20:35:
54:35:f5:10:10:c6:30:a1:41:40:a9:e9:0a:6d:13:
cc:a0:34:29:00:f6:b2:c4:99:6f:b2:68:f1:01:c1:
54:0a:9c:4b:c9:ae:3d:d6:ee:e9:05:13:ae:57:b3:
a8:bc:b2:8b:82:3c:eb:34:ee:78:fd:83:ca:0a:f9:
5f:c2:6c:14:ce:de:e5:6b:a8:45:ec:e6:de:df:e6:
3f:94:05:a3:ba:e7:fd:9a:77:ac:6b:c4:58:b7:ba:
70:cc:4f:03:49:ee:86:dd:b1:70:2a:dc:a3:95:ef:
09:8d:30:59:7b:71:70:d8:cd:e1:87:07:a0:82:a1:
42:33:de:4b:c6:65:05:cb:5a:23:4e:a7:36:50:de:
79:ff:26:9a:43:00:95:39:7c:4c:4b:39:33:fe:fc:
d2:46:d5:52:f5:d5:9d:16:f8:59:e3:2e:f8:fb:f3:
89:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FB:57:6E:2F:D3:99:D0:07:51:F2:8B:22:1A:AC:31:59:EE:1E:28
X509v3 Authority Key Identifier:
keyid:79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/79131A4E3CC0851C2ED1363D6982E7436D3DF9F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/322e35392e3135362e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.156.0/24
Signature Algorithm: sha256WithRSAEncryption
19:d1:2c:44:2f:98:8f:49:e4:55:68:b7:b8:d0:e8:b3:73:1f:
d1:1a:bb:f3:ab:5a:60:6e:1f:ed:81:23:29:ed:90:c0:df:41:
32:5d:6b:4f:e9:46:82:f8:87:88:9a:4d:e0:89:86:fd:4b:18:
db:97:7c:82:b2:a8:f1:16:d8:ba:3b:5c:29:33:1f:f6:2e:82:
d9:e2:57:4c:a1:7b:f5:af:89:70:2f:fc:6a:e4:d9:e9:84:7e:
77:e7:9a:86:e9:ea:00:ab:f8:06:5d:84:03:9b:52:0b:08:d2:
54:3e:d4:5e:f4:ba:23:40:e4:e5:fe:f1:d8:a9:d3:1b:06:52:
8a:2c:60:a2:89:1c:ba:0c:9c:92:f6:ca:4d:06:56:8d:82:55:
aa:90:a3:bc:5d:39:2d:a9:58:ad:81:2f:84:2c:c3:c6:01:e2:
31:41:ba:6c:fa:5d:ec:8e:90:d8:d5:0c:d0:5d:9a:13:ae:56:
f6:fa:5d:f4:ef:62:26:19:d4:33:78:b8:77:66:35:d6:38:51:
9e:99:f4:17:d5:ef:ee:d4:2f:30:5e:f9:4d:df:88:eb:25:34:
60:6c:83:90:21:9b:89:69:92:74:06:3f:f6:60:7d:c0:69:af:
36:ad:d5:8b:51:10:29:1a:d0:4b:72:44:c0:f9:01:cf:1a:d3:
4e:5d:6e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:06:23 2025 by rpki-client