Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/3138352e39372e3134362e302f32342d3234203d3e2030.roa
File: 3138352e39372e3134362e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: VGoWlSAd2geb9WwxWPqqMIIUYlx1kKV/nFQopHf+Hfc=
Subject key identifier: 28:49:F3:6A:05:6D:60:53:3C:A3:E8:77:B0:B8:1C:B0:53:67:D3:24
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 19704F9D45C95C4C231E3EB52D2981782BE8FD18
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/3138352e39372e3134362e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:43:45 +0000
ROA not before: Fri 03 Mar 2023 15:38:45 +0000
ROA not after: Fri 01 Mar 2024 15:43:45 +0000
asID: 0
IP address blocks: 185.97.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:70:4f:9d:45:c9:5c:4c:23:1e:3e:b5:2d:29:81:78:2b:e8:fd:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:38:45 2023 GMT
Not After : Mar 1 15:43:45 2024 GMT
Subject: CN=2849F36A056D60533CA3E877B0B81CB05367D324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:de:cf:fa:38:53:f1:0e:d9:14:8a:61:78:49:
1c:bd:56:8b:ac:6a:f3:31:32:08:4b:3f:be:bd:cc:
68:e3:3f:99:3e:81:84:22:0a:f0:8e:fa:e6:19:18:
75:f9:af:2d:12:83:8d:aa:a6:35:df:5f:a8:a5:16:
29:50:0a:8b:62:52:22:47:8f:02:1f:93:b5:3a:a4:
5f:a7:ba:35:29:e6:76:37:a6:3f:16:22:5a:a1:c7:
f9:4f:9a:f7:31:c3:a5:eb:9a:f1:b4:c7:1e:a8:e5:
5e:38:68:ed:a4:79:3f:9e:85:0b:9a:62:a0:7d:25:
ab:f7:fe:dc:1d:c3:d8:dd:b0:4a:2c:78:08:a2:1c:
1e:86:8b:2e:9b:a2:73:3a:e4:73:8d:f2:fc:3a:96:
ae:f4:2b:c6:9b:b7:fd:e3:e9:ca:57:29:98:7f:c8:
7f:da:8f:37:3f:ce:ad:ab:fc:cf:4c:bc:0b:52:92:
50:4b:f5:63:3d:ce:43:64:4d:96:59:b4:3b:de:ae:
95:80:8f:2c:10:b9:c8:9b:14:3e:4e:53:6f:84:e0:
80:ec:62:e8:aa:aa:f1:3c:f0:04:76:73:77:04:ef:
35:32:9b:0d:4a:91:d1:c9:ff:aa:98:0e:2d:7d:8c:
87:c7:54:f2:16:c3:16:91:8e:64:3a:25:81:3c:7a:
19:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:49:F3:6A:05:6D:60:53:3C:A3:E8:77:B0:B8:1C:B0:53:67:D3:24
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/3138352e39372e3134362e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.146.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:c5:6a:e9:ae:90:a4:9e:c2:a4:d0:ac:f7:e1:d4:9e:35:bf:
c1:fd:08:a6:a8:dd:e8:23:68:63:e0:f8:07:3e:44:a0:c9:ae:
16:4a:b1:75:d9:96:6a:83:98:b0:bc:7d:1b:3a:81:8c:6f:d3:
00:1a:ee:75:3a:bb:f1:81:32:da:7b:fe:0d:3a:a2:fb:fd:ad:
15:0b:b3:f5:b8:d3:f5:0f:c6:b0:e0:3c:26:9e:b1:3e:2d:59:
4a:e9:12:07:b6:2a:56:9d:4f:fc:3c:01:4f:a6:9c:b1:f7:77:
37:e8:29:12:3e:f6:a9:b6:7a:c3:f6:b5:c7:2b:07:c1:fd:fd:
0f:de:76:0d:9e:de:ee:6b:47:26:4a:ae:b3:f0:f2:66:f6:f5:
09:6a:ad:ff:68:24:38:2f:9e:5b:72:30:c4:57:75:0b:29:59:
62:e1:54:b3:88:6e:34:97:07:1a:03:4d:8b:1f:88:f9:2c:23:
89:cd:27:4c:4b:49:23:f8:1a:3b:2f:36:85:ba:10:e1:b3:35:
68:5a:1a:6a:05:11:73:84:f0:94:7c:a5:2a:e9:e5:ae:a5:18:
50:00:46:bc:4c:1e:d0:8a:5f:82:4f:95:da:d5:e4:38:8a:dd:
a3:78:52:fa:bf:e0:a8:d1:cf:4b:6c:56:f2:6e:b4:8a:ae:c3:
df:40:35:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-fra.rpki-client.org