Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/3139342e33342e3233332e302f32342d3234203d3e2030.roa
File: 3139342e33342e3233332e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: OyIVNKkYpSoKs0jwjGqySzTHGUVd2Ije9l6vTX/23Hk=
Subject key identifier: D0:03:D6:36:C5:AB:2E:94:4C:37:F2:99:88:E6:A9:7B:22:EC:FE:32
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 1720F97234FD5E6154A4AD6629439EF847681C45
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33342e3233332e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:49:28 +0000
ROA not before: Fri 03 Mar 2023 15:44:28 +0000
ROA not after: Fri 01 Mar 2024 15:49:28 +0000
asID: 0
IP address blocks: 194.34.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:20:f9:72:34:fd:5e:61:54:a4:ad:66:29:43:9e:f8:47:68:1c:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:44:28 2023 GMT
Not After : Mar 1 15:49:28 2024 GMT
Subject: CN=D003D636C5AB2E944C37F29988E6A97B22ECFE32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:26:74:7c:68:1a:0c:77:c7:dd:fa:16:59:43:
db:9b:20:ad:f7:cb:ac:44:ae:63:aa:f5:41:7d:ae:
b9:bb:72:24:49:a5:45:f2:f4:b2:ff:e8:34:2e:68:
35:28:d2:06:e6:c6:0c:87:3a:94:cb:7a:a2:3a:f8:
9a:99:50:e9:15:cc:25:c4:6c:06:17:c3:87:bb:8d:
99:91:0d:d1:e5:96:db:a0:2f:d3:07:69:0e:c5:a0:
af:93:44:79:42:fc:c2:81:71:f1:13:4c:7b:48:6e:
78:38:d2:dd:6a:0b:30:89:6e:41:d0:59:f0:41:61:
47:6c:ec:41:a0:1a:09:1b:35:7e:c5:cd:a3:08:1b:
78:e4:14:75:d7:10:e9:d0:2a:85:b3:25:ee:82:b3:
a2:12:11:74:46:a7:d7:23:df:cc:a2:48:2f:16:20:
3b:e1:0a:f9:c9:24:1f:95:5d:69:1e:c0:3d:28:73:
7f:95:46:de:09:62:ae:cb:0d:cb:47:5a:b7:6e:4f:
16:99:a5:ce:71:c1:fc:ad:07:c4:bc:d7:f3:6a:b6:
b4:8e:87:30:b7:72:84:bc:9c:cd:d9:60:06:88:40:
db:50:36:a0:e4:68:60:f8:99:bd:6d:3f:f9:81:a3:
49:2d:a7:f5:97:d0:4c:d9:ae:70:90:5b:02:49:24:
51:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:03:D6:36:C5:AB:2E:94:4C:37:F2:99:88:E6:A9:7B:22:EC:FE:32
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33342e3233332e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.233.0/24
Signature Algorithm: sha256WithRSAEncryption
96:b0:a0:d2:3b:69:8b:96:c1:57:6b:8e:83:9c:f0:5c:c7:6c:
8b:5b:c3:9d:c7:59:7c:8e:06:e3:3c:1b:4e:4c:02:48:06:40:
7c:21:b6:0c:b1:c7:0a:7a:84:0a:f2:3e:6f:7b:e5:f0:54:e0:
18:b6:cf:0a:8d:c8:2b:52:8b:70:c1:5a:2f:7f:21:9c:86:d7:
6e:c6:b3:11:8f:71:53:58:d2:59:bd:d0:33:86:78:44:1f:09:
3d:0b:00:dd:83:04:f5:fb:01:ba:e0:c2:2c:2f:6e:3f:b0:e0:
9b:3b:87:0e:f6:7c:d4:ee:d3:92:78:e3:86:62:3c:59:74:cc:
dc:2e:78:f0:e6:c0:ba:2f:df:ed:c4:88:e7:1a:aa:ac:f7:07:
ff:b2:99:ea:ce:9d:aa:a0:72:1f:d8:b2:86:1c:01:ef:f6:e1:
68:e4:a8:0b:7c:4f:12:f3:34:fa:d8:f3:40:b6:e2:c6:2b:29:
cc:8c:c1:1a:53:f8:40:a7:ac:8f:5b:c0:2b:11:2f:cc:cc:2f:
17:b7:74:cc:3a:83:aa:e9:95:4a:10:69:40:67:76:ab:24:bd:
ad:f9:20:a5:d1:83:87:00:d8:73:1e:94:4a:d9:25:38:d4:46:
99:74:b7:c2:d3:53:4b:1e:66:d7:74:12:f3:c5:23:64:ba:21:
8b:aa:c8:86
-----BEGIN CERTIFICATE-----
MIIE3zCCA8egAwIBAgIUFyD5cjT9XmFUpK1mKUOe+EdoHEUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMzAzMDMxNTQ0MjhaFw0yNDAzMDExNTQ5MjhaMDMxMTAvBgNV
BAMTKEQwMDNENjM2QzVBQjJFOTQ0QzM3RjI5OTg4RTZBOTdCMjJFQ0ZFMzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhJnR8aBoMd8fd+hZZQ9ubIK33
y6xErmOq9UF9rrm7ciRJpUXy9LL/6DQuaDUo0gbmxgyHOpTLeqI6+JqZUOkVzCXE
bAYXw4e7jZmRDdHlltugL9MHaQ7FoK+TRHlC/MKBcfETTHtIbng40t1qCzCJbkHQ
WfBBYUds7EGgGgkbNX7FzaMIG3jkFHXXEOnQKoWzJe6Cs6ISEXRGp9cj38yiSC8W
IDvhCvnJJB+VXWkewD0oc3+VRt4JYq7LDctHWrduTxaZpc5xwfytB8S81/NqtrSO
hzC3coS8nM3ZYAaIQNtQNqDkaGD4mb1tP/mBo0ktp/WX0EzZrnCQWwJJJFHFAgMB
AAGjggHpMIIB5TAdBgNVHQ4EFgQU0APWNsWrLpRMN/KZiOapeyLs/jIwHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4Zk
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zMTM5MzQyZTMzMzQyZTMyMzMzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMw
LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQAwiLpMA0GCSqGSIb3DQEBCwUAA4IBAQCWsKDSO2mLlsFXa46D
nPBcx2yLW8Odx1l8jgbjPBtOTAJIBkB8IbYMsccKeoQK8j5ve+XwVOAYts8Kjcgr
UotwwVovfyGchtduxrMRj3FTWNJZvdAzhnhEHwk9CwDdgwT1+wG64MIsL24/sOCb
O4cO9nzU7tOSeOOGYjxZdMzcLnjw5sC6L9/txIjnGqqs9wf/spnqzp2qoHIf2LKG
HAHv9uFo5KgLfE8S8zT62PNAtuLGKynMjMEaU/hAp6yPW8ArES/MzC8Xt3TMOoOq
6ZVKEGlAZ3arJL2t+SCl0YOHANhzHpRK2SU41EaZdLfC01NLHmbXdBLzxSNkuiGL
qsiG
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:37 2023 by rpki-client on console-ams.rpki-client.org