Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/3139342e33352e31322e302f32332d3234203d3e203234393430.roa
File: 3139342e33352e31322e302f32332d3234203d3e203234393430.roa (raw, json)
Hash identifier: eeJGw3MsLk/kl0NAhmpC1BEFKFjiDAKqoEHCbFIXW9s=
Subject key identifier: 05:6E:83:D8:72:A5:25:6F:28:16:63:BF:08:BB:55:A8:0C:1B:B8:CF
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 043F7D58C131F33EB074407A4F2FF08F13A5B7C2
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33352e31322e302f32332d3234203d3e203234393430.roa
Signing time: Tue 07 Feb 2023 14:07:40 +0000
ROA not before: Tue 07 Feb 2023 14:02:40 +0000
ROA not after: Tue 06 Feb 2024 14:07:40 +0000
asID: 24940
IP address blocks: 194.35.12.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:3f:7d:58:c1:31:f3:3e:b0:74:40:7a:4f:2f:f0:8f:13:a5:b7:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Feb 7 14:02:40 2023 GMT
Not After : Feb 6 14:07:40 2024 GMT
Subject: CN=056E83D872A5256F281663BF08BB55A80C1BB8CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:78:d1:70:cf:a9:17:76:b9:38:eb:a6:9f:90:
c6:69:1c:5c:73:de:ea:85:2c:27:e9:d3:bf:fd:48:
e8:01:01:bb:8e:ce:b2:27:74:19:68:d6:2c:ce:34:
59:a5:5d:9f:b6:82:d4:ac:d5:65:bb:f5:90:8b:6b:
34:af:25:ce:11:24:61:b8:d9:dc:19:0a:85:35:be:
c2:f4:7c:6b:62:36:6e:c2:70:fe:10:07:30:12:ca:
e8:4c:94:eb:7e:9c:16:7c:45:34:a7:56:5f:25:d8:
c4:6b:ce:4a:1b:f7:9e:5e:80:4e:dc:61:df:fa:07:
e3:c2:75:81:b9:73:fd:e1:c2:37:af:29:ca:10:81:
25:b4:57:ab:ab:a1:3a:1a:f0:dc:2e:0e:0a:c5:25:
33:18:8f:0c:12:68:bc:0f:c3:f0:3a:0f:dd:e1:54:
30:0b:85:d1:ce:75:b6:ce:2b:be:94:f2:a6:e2:c1:
51:d2:47:8f:5b:cb:8e:67:e7:74:68:b5:99:86:91:
39:15:27:87:3f:2e:95:f6:99:ca:f0:7e:51:d1:25:
79:d6:54:b5:49:26:d6:30:c2:2c:8a:a5:a7:f2:15:
db:c8:25:5e:66:f9:39:1c:d7:a2:79:75:3a:0e:0a:
ce:fe:b1:f4:49:a7:e7:05:33:9f:22:46:c5:b0:fb:
60:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:6E:83:D8:72:A5:25:6F:28:16:63:BF:08:BB:55:A8:0C:1B:B8:CF
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33352e31322e302f32332d3234203d3e203234393430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.12.0/23
Signature Algorithm: sha256WithRSAEncryption
c5:68:6c:07:fc:5f:24:b8:8c:59:82:2e:dd:17:68:38:24:ee:
cf:0f:c5:56:2a:e2:cd:02:04:f2:0c:b4:59:7d:d4:67:a8:94:
6c:4c:ab:c3:59:99:cb:8d:00:5e:51:ac:ca:a4:2b:11:3f:fc:
0f:1f:5f:c7:ad:2c:aa:ad:da:ef:1d:fd:4b:90:ac:03:9f:a6:
35:e1:9c:05:9a:89:17:90:29:eb:ca:2a:5a:bd:fb:59:2a:52:
5c:bf:65:e5:4e:93:be:c9:1f:a8:3a:a0:39:19:db:31:52:1e:
c6:3e:db:e4:d2:81:d1:47:af:3c:49:7c:ad:1a:c8:bf:fb:e6:
ab:7e:70:7f:a9:23:0a:cf:26:d2:a0:ca:24:09:6e:d8:6e:19:
ba:0c:57:c4:17:da:e2:08:60:bb:8e:84:9c:3b:8a:d4:4e:d4:
a3:08:ce:0f:e6:51:45:9f:b1:b6:dc:ac:d3:88:d3:86:29:9c:
7c:02:91:b5:be:71:77:98:ba:c6:91:d6:49:99:17:24:ec:43:
0b:22:b5:82:0c:cc:5b:3e:3f:f6:a0:a4:47:59:e0:32:a7:ae:
af:d7:72:de:20:f1:f3:a9:2f:3c:9c:aa:ad:f2:b9:ed:32:2e:
a7:9e:d3:15:91:ce:a9:46:cb:c2:1e:7b:eb:69:bb:4e:c3:91:
b7:ec:15:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-fra.rpki-client.org