Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/108/322e35392e3135372e302f32342d3234203d3e2037383431.roa
File: 322e35392e3135372e302f32342d3234203d3e2037383431.roa (raw, json)
Hash identifier: Dd6yIzWhtZOVM/n22pQIjMEUwKFlH7EdVLx+ePG7jFg=
Subject key identifier: 9B:17:78:8A:29:42:7E:A2:0D:DB:80:CE:61:78:EC:A7:41:11:3F:D5
Certificate issuer: /CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Certificate serial: 1B710E498614C88F6A229E49530622F1C447F720
Authority key identifier: 79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/108/322e35392e3135372e302f32342d3234203d3e2037383431.roa
Signing time: Sat 22 Oct 2022 04:33:39 +0000
ROA not before: Sat 22 Oct 2022 04:28:39 +0000
ROA not after: Sat 21 Oct 2023 04:33:39 +0000
asID: 7841
IP address blocks: 2.59.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:71:0e:49:86:14:c8:8f:6a:22:9e:49:53:06:22:f1:c4:47:f7:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Validity
Not Before: Oct 22 04:28:39 2022 GMT
Not After : Oct 21 04:33:39 2023 GMT
Subject: CN=9B17788A29427EA20DDB80CE6178ECA741113FD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:56:fc:72:03:ec:b3:cf:9a:61:74:b0:d6:
45:e2:2c:3d:e8:0f:7d:81:2e:0a:8f:81:48:bf:4a:
0e:22:42:d9:9e:41:ba:37:2a:d4:b7:62:19:32:e9:
67:f0:a2:ec:cd:8e:01:73:bf:35:a1:f6:3c:af:13:
7b:a8:65:1a:6a:da:2c:3e:ae:06:f4:b3:9c:f7:2b:
cb:27:f3:49:64:10:66:f6:ad:71:e6:7c:01:b7:7a:
6c:11:40:59:0c:6b:00:f4:49:28:15:8c:60:b9:55:
aa:d0:de:02:e1:af:d0:cd:3b:25:c4:c0:88:9c:43:
d1:2e:72:ea:2e:f3:11:fe:50:09:d8:26:8a:3a:cf:
00:90:8f:6a:57:e0:fb:e0:51:f5:7c:25:ef:0b:62:
df:ec:14:49:a7:ed:f9:4f:7e:da:09:f0:2a:ab:90:
b6:ed:c1:3a:9f:78:a0:51:2a:12:e2:bb:2e:d4:24:
46:ac:46:0b:bc:f1:43:33:7d:f2:6e:38:e7:4c:f8:
b4:8c:f3:86:59:0a:eb:18:82:1d:79:fe:78:af:27:
9c:6d:c0:b4:91:b3:92:d7:10:f1:a1:83:7c:58:3e:
7a:3e:b0:b2:f0:65:ff:7b:a4:5a:c2:0f:57:2e:b8:
4e:66:f3:e3:7d:a5:27:7d:e8:9a:79:60:4a:94:65:
30:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:17:78:8A:29:42:7E:A2:0D:DB:80:CE:61:78:EC:A7:41:11:3F:D5
X509v3 Authority Key Identifier:
keyid:79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/79131A4E3CC0851C2ED1363D6982E7436D3DF9F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/322e35392e3135372e302f32342d3234203d3e2037383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.157.0/24
Signature Algorithm: sha256WithRSAEncryption
89:1b:8d:85:56:29:7b:f2:37:6c:7b:86:9a:6d:e2:6f:bd:11:
43:1d:b7:24:ac:d4:b4:0e:75:f1:65:b9:32:39:18:81:75:40:
41:2e:72:02:7e:37:07:50:5a:cb:08:f9:23:f3:5d:97:4b:21:
d1:47:6e:f3:5c:10:0a:77:07:d8:91:28:2c:68:d3:81:e4:d2:
8a:ad:14:34:1a:b9:55:aa:c6:65:33:a9:cc:68:45:97:9d:f9:
ac:ee:f4:9e:92:26:34:11:6e:23:a2:52:f3:52:c3:96:be:ac:
24:90:9b:fd:18:7d:e3:9b:e8:f2:29:a2:7b:d6:46:36:7d:97:
55:fa:5a:78:cf:fa:3b:2a:18:02:41:22:9d:81:fc:ed:2c:88:
74:18:5c:f1:f0:bd:ac:aa:2d:7a:df:3d:76:c2:91:f8:12:45:
f1:76:cf:0a:01:97:e5:78:d2:f4:f7:4d:ff:3b:95:62:cf:24:
3f:32:be:a2:26:a2:7c:ae:b1:5d:f9:76:80:dd:47:bf:ab:6c:
dd:2e:2d:35:5a:6d:f9:44:69:a9:39:fd:15:d8:6b:3e:b9:ce:
b4:24:af:d0:9f:7d:5c:16:2a:9e:18:ff:5c:a0:fe:02:f9:cd:
a8:e3:1c:46:87:b2:8d:7c:bb:c9:37:39:6e:19:ce:4a:16:77:
b5:8b:51:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:54 2024 by rpki-client on console-ams.rpki-client.org