Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/180/34352e38342e3230342e302f32322d3234203d3e203437353833.roa
File: 34352e38342e3230342e302f32322d3234203d3e203437353833.roa (raw, json)
Hash identifier: 7ZevU79mD5t26aIMr96K88JPKHbvjqX3litETE2zIBY=
Subject key identifier: 2B:C8:01:CA:2F:79:CF:DB:B7:32:B8:88:1E:1D:0F:F9:A7:86:E1:22
Certificate issuer: /CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Certificate serial: 26FCE82459494CD91C714AAAC79716E8EBD91084
Authority key identifier: DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e38342e3230342e302f32322d3234203d3e203437353833.roa
Signing time: Sat 22 Oct 2022 04:33:48 +0000
ROA not before: Sat 22 Oct 2022 04:28:48 +0000
ROA not after: Sat 21 Oct 2023 04:33:48 +0000
asID: 47583
IP address blocks: 45.84.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:fc:e8:24:59:49:4c:d9:1c:71:4a:aa:c7:97:16:e8:eb:d9:10:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfe89bf7daa0f8aa7d022df984e6ea37e6f60a3d
Validity
Not Before: Oct 22 04:28:48 2022 GMT
Not After : Oct 21 04:33:48 2023 GMT
Subject: CN=2BC801CA2F79CFDBB732B8881E1D0FF9A786E122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e9:19:aa:e0:ce:72:a6:a2:32:36:48:72:d2:
58:7e:33:6d:59:be:f1:66:d3:0d:f0:ef:74:59:65:
fd:77:56:22:7f:fd:f7:38:b8:ae:3d:ad:52:9d:1f:
ad:02:3e:b7:14:d8:45:d2:8a:30:1b:e7:9e:fc:57:
f8:8e:42:9c:5b:48:b2:66:e3:16:ef:38:2b:63:42:
0b:2e:2f:0b:c5:26:bc:49:c1:46:f2:3f:0f:34:4a:
91:7e:a0:0e:4c:98:31:7a:fa:03:4b:6c:68:bc:b6:
b4:65:40:21:25:61:d9:7f:c7:28:7c:e4:56:aa:a4:
61:35:d1:af:67:99:ea:00:2d:37:2f:1b:6d:d3:a0:
ac:a1:4f:32:cf:ce:6e:76:4c:5f:e9:89:d8:ce:ed:
f4:19:11:3c:53:83:c7:af:c7:bc:28:7c:57:69:41:
67:35:0f:62:48:a9:f0:98:0d:67:b1:ee:87:7c:89:
2c:2d:89:d9:a9:d2:4b:b7:53:a8:55:a1:2a:09:db:
fd:01:fd:59:75:10:0d:c1:23:70:6c:69:a1:c6:f5:
d2:af:4a:42:05:38:9b:94:5e:1f:5e:fc:6e:d4:d0:
63:c0:07:73:09:1c:d7:e1:61:96:7d:d8:36:b1:d9:
35:1e:1d:3e:8d:d4:64:42:2b:59:11:26:fa:8b:6e:
4c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C8:01:CA:2F:79:CF:DB:B7:32:B8:88:1E:1D:0F:F9:A7:86:E1:22
X509v3 Authority Key Identifier:
keyid:DF:E8:9B:F7:DA:A0:F8:AA:7D:02:2D:F9:84:E6:EA:37:E6:F6:0A:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/DFE89BF7DAA0F8AA7D022DF984E6EA37E6F60A3D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ib99qg-Kp9Ai35hObqN-b2Cj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/180/34352e38342e3230342e302f32322d3234203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.204.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:bf:9b:5c:30:90:3a:61:a3:55:ee:ab:24:f4:58:26:4f:92:
0b:41:d5:a5:06:4a:55:2f:1a:2d:0f:81:53:7a:96:88:b6:ce:
70:2b:15:d2:95:3b:40:39:3d:fb:4d:d1:f5:53:5b:76:e8:a0:
bb:98:8a:85:4c:54:f5:9e:fd:ba:91:75:80:6d:f7:24:d5:5e:
90:8a:4d:a6:ba:1d:e7:20:25:4b:2a:78:2b:bb:88:03:c5:7b:
d1:f3:5a:af:3b:b1:f7:0b:a5:1f:9c:ca:24:92:82:42:40:a0:
09:33:97:84:5b:b9:e1:61:f8:78:8b:a9:32:91:3b:84:f6:4c:
b7:7d:80:27:4d:ea:a2:be:ab:bc:16:63:22:3b:58:84:23:f1:
b7:47:55:90:66:3c:88:e8:14:af:bb:d0:d9:68:10:c1:56:d1:
82:c4:3b:7d:83:97:41:b7:8d:c3:d8:0a:2c:e2:4f:83:97:ff:
3d:29:2f:ca:a1:ba:40:4e:83:19:71:6f:7a:f9:3f:e9:dd:cb:
5d:7d:94:e0:ce:61:db:f7:dc:ed:97:d2:52:b7:84:7f:ab:f6:
3e:fe:76:9e:ff:b9:b4:b9:d8:7a:07:e9:1c:9b:5e:6f:5c:47:
34:e7:a4:da:63:cc:a9:96:1a:20:af:0e:f7:91:48:37:ab:1f:
88:31:43:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:26:14 2025 by rpki-client