Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/3139342e33342e3233352e302f32342d3234203d3e2030.roa
File: 3139342e33342e3233352e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: pCB3IKndWW54Rr9ON5jwc5mO97kxgZUk+xF4ar8y0xk=
Subject key identifier: 70:EE:CC:20:3F:CF:88:B1:16:65:CE:67:6E:73:1B:BC:77:14:E0:7A
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 4385A5F00E4C1F47E0CC4D54B72F42125D3BF36F
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33342e3233352e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:49:46 +0000
ROA not before: Fri 03 Mar 2023 15:44:46 +0000
ROA not after: Fri 01 Mar 2024 15:49:46 +0000
asID: 0
IP address blocks: 194.34.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:85:a5:f0:0e:4c:1f:47:e0:cc:4d:54:b7:2f:42:12:5d:3b:f3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:44:46 2023 GMT
Not After : Mar 1 15:49:46 2024 GMT
Subject: CN=70EECC203FCF88B11665CE676E731BBC7714E07A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:06:b2:4b:cd:46:9f:80:9a:9a:73:1b:fe:74:
f6:99:e2:22:ec:c4:6f:a1:20:4e:cb:ed:20:7e:05:
65:4a:b8:bc:f9:9b:77:83:55:91:71:46:65:85:ac:
ed:b1:c5:0a:83:c5:96:ed:f9:47:af:d9:c5:10:cc:
d4:22:f6:c2:6d:3a:2d:b6:94:80:ae:38:74:fb:be:
b9:e0:17:66:e9:66:bd:bd:31:a3:c5:0d:2d:53:87:
f4:90:87:54:9f:46:75:a3:4b:0d:be:1b:0a:74:c1:
04:53:32:be:8b:bd:1b:5a:26:36:e1:04:ee:b7:f3:
d5:e8:85:3e:8f:e1:96:55:d7:e2:39:50:d0:db:95:
02:44:99:46:1c:0d:80:bb:19:4d:3a:a0:dd:3e:e5:
8f:19:33:28:ce:64:85:15:dc:d8:eb:b7:a3:70:b4:
ac:0a:4a:8b:4a:5f:de:91:1d:43:47:b9:8f:66:9b:
cc:c9:b6:ad:fa:9b:fa:26:2e:3a:72:89:dd:a6:13:
fc:37:a5:89:d7:de:2a:8d:8e:39:48:f4:ea:8f:35:
b0:72:b7:65:23:e9:7d:d3:fa:d9:6d:01:e3:92:74:
92:3f:42:1e:9a:52:0d:98:1b:61:5b:0e:96:a8:0a:
72:46:a9:64:8a:63:74:b5:fe:dd:91:49:c7:51:49:
36:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EE:CC:20:3F:CF:88:B1:16:65:CE:67:6E:73:1B:BC:77:14:E0:7A
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33342e3233352e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.235.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:02:d1:96:8e:d2:e9:db:1b:3b:0c:df:fa:6e:0d:60:9a:ef:
8b:92:19:00:c0:8f:48:c6:b3:19:06:68:61:31:b7:2f:32:7d:
e1:c7:e4:f8:1d:07:ca:75:c9:46:a4:d7:b9:14:5e:38:57:bb:
5a:2d:03:50:62:0d:21:8a:db:cd:d2:f7:39:58:e7:66:45:2a:
0f:49:0f:a0:d6:d9:b9:a1:89:3c:80:c8:67:56:3c:f2:0f:d6:
68:b3:9c:68:30:18:70:fd:35:9a:31:ac:dc:68:26:07:f3:38:
cb:db:db:9b:43:0d:4f:c2:5a:41:be:72:70:96:4e:f1:f5:10:
63:48:27:da:60:1f:d3:e7:9e:63:f9:df:16:36:14:42:b2:b5:
ff:75:ca:51:2a:08:3a:05:3e:bb:f7:e2:24:71:1b:98:52:ae:
06:39:94:80:ef:94:8a:0f:fc:a7:03:75:3f:7e:19:5d:b1:a6:
0c:fc:2b:3a:ae:9c:95:7a:5d:16:12:76:f7:4f:65:d8:30:35:
c5:db:f4:c7:ee:21:e3:45:fd:e5:38:4a:90:62:7a:92:80:e8:
35:74:6f:97:53:a3:6d:01:a4:bd:56:d2:2d:46:3f:3b:5d:40:
bb:df:e3:1e:0e:84:f5:e7:9e:d4:0a:f7:55:16:c2:b7:fe:be:
7c:81:78:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:37 2023 by rpki-client on console-ams.rpki-client.org