Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/3139342e33352e31342e302f32342d3234203d3e2030.roa
File: 3139342e33352e31342e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: /N+oeMVRt1wyTZ1CXA59K0L1zWX/VS8v05i+4HYPsiM=
Subject key identifier: 33:17:D0:15:E2:BF:70:16:DC:17:AE:DE:19:C9:0D:9A:25:0D:E5:1E
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 766FA70259809CE97EC9CA974E85F3A12AA595D7
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33352e31342e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:46:34 +0000
ROA not before: Fri 03 Mar 2023 15:41:34 +0000
ROA not after: Fri 01 Mar 2024 15:46:34 +0000
asID: 0
IP address blocks: 194.35.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:6f:a7:02:59:80:9c:e9:7e:c9:ca:97:4e:85:f3:a1:2a:a5:95:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:41:34 2023 GMT
Not After : Mar 1 15:46:34 2024 GMT
Subject: CN=3317D015E2BF7016DC17AEDE19C90D9A250DE51E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7a:61:05:3e:2d:0d:95:e4:19:eb:a2:d4:31:
27:8b:90:9b:3c:e0:c0:28:fe:c0:b8:0f:93:bb:79:
ba:aa:b7:bc:d0:c1:35:07:bc:31:23:e9:6e:1b:91:
99:8d:c1:08:47:49:e7:72:48:28:68:29:5c:46:08:
9f:de:85:75:e6:46:d2:2e:dd:5e:b0:9d:ec:a9:3c:
19:6b:6b:a0:41:b8:dd:ea:83:b8:12:80:c9:bc:8b:
6b:f0:90:4a:7e:56:c2:f8:b6:53:58:14:f8:89:85:
29:a9:8b:63:76:b9:e8:1e:f0:b0:e0:53:82:b0:7a:
92:64:4a:df:b0:f7:74:35:c4:55:50:37:52:3b:a8:
ca:46:a7:d0:09:63:96:08:fa:a5:92:9f:12:76:40:
79:ce:75:f2:62:07:a0:ce:e1:b6:86:a2:66:f0:db:
b7:78:0b:44:4e:c3:4a:e6:c4:e6:b4:53:ff:25:27:
22:e2:7d:23:f9:d2:e8:28:7d:91:16:75:34:74:6b:
c7:aa:37:b2:e6:e7:04:98:a9:90:39:75:ef:24:4d:
af:85:7a:dc:4e:be:3b:6e:8b:83:6a:e3:6b:bb:47:
91:47:fe:77:10:fe:d9:92:2c:ec:08:0d:54:df:bd:
bb:42:cd:fa:4e:dd:e7:53:ab:39:be:e1:a4:76:b7:
34:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:17:D0:15:E2:BF:70:16:DC:17:AE:DE:19:C9:0D:9A:25:0D:E5:1E
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/3139342e33352e31342e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.14.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:77:a0:dc:50:31:c7:d6:6f:b6:2e:d2:83:97:97:83:e1:d2:
3d:77:02:04:4d:0f:ed:bd:04:b5:9f:c3:6c:14:60:c6:85:f0:
94:1a:79:9e:60:0d:bb:2f:ed:8e:fc:96:0f:cb:ff:b4:5f:b0:
9f:56:08:df:41:ee:ac:9a:16:92:18:d5:bf:ba:57:60:fa:8c:
7d:f1:80:35:6d:5e:21:b0:47:be:d8:b5:f4:60:40:1c:ce:a3:
46:9c:3a:9f:d9:b2:16:f6:27:bd:06:b7:5b:cb:76:95:32:1d:
53:99:ec:20:53:f3:25:df:6a:9e:c3:d9:5d:3a:8b:ed:b2:4e:
0e:c7:93:83:d4:4a:6b:65:25:c8:11:5c:8c:19:a2:cd:ba:39:
34:4e:56:28:41:67:d5:35:b0:c8:c3:77:a3:20:ad:e7:c5:ab:
0b:ab:60:d3:8d:cd:35:9a:bc:2f:14:c8:bb:d8:bd:7d:3c:f1:
27:6d:69:db:92:50:e3:64:77:0b:1e:4f:50:c5:d3:79:7d:3f:
2d:3a:95:63:fa:9f:b0:3f:3c:0a:2c:f9:ec:44:78:ec:b6:2b:
f2:20:22:d9:2d:a0:cb:1e:a8:43:d6:d2:5e:98:7e:71:8d:6e:
92:f7:97:e1:71:76:6d:62:af:c5:05:06:27:c3:ec:d5:8c:d5:
9a:70:ac:25
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUdm+nAlmAnOl+ycqXToXzoSqlldcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMzAzMDMxNTQxMzRaFw0yNDAzMDExNTQ2MzRaMDMxMTAvBgNV
BAMTKDMzMTdEMDE1RTJCRjcwMTZEQzE3QUVERTE5QzkwRDlBMjUwREU1MUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjemEFPi0NleQZ66LUMSeLkJs8
4MAo/sC4D5O7ebqqt7zQwTUHvDEj6W4bkZmNwQhHSedySChoKVxGCJ/ehXXmRtIu
3V6wneypPBlra6BBuN3qg7gSgMm8i2vwkEp+VsL4tlNYFPiJhSmpi2N2uege8LDg
U4KwepJkSt+w93Q1xFVQN1I7qMpGp9AJY5YI+qWSnxJ2QHnOdfJiB6DO4baGombw
27d4C0ROw0rmxOa0U/8lJyLifSP50ugofZEWdTR0a8eqN7Lm5wSYqZA5de8kTa+F
etxOvjtui4Nq42u7R5FH/ncQ/tmSLOwIDVTfvbtCzfpO3edTqzm+4aR2tzRdAgMB
AAGjggHmMIIB4jAdBgNVHQ4EFgQUMxfQFeK/cBbcF67eGckNmiUN5R4wHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJy
c3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC8y
LzMxMzkzNDJlMzMzNTJlMzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMwLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAwiMOMA0GCSqGSIb3DQEBCwUAA4IBAQBbd6DcUDHH1m+2LtKDl5eD
4dI9dwIETQ/tvQS1n8NsFGDGhfCUGnmeYA27L+2O/JYPy/+0X7CfVgjfQe6smhaS
GNW/uldg+ox98YA1bV4hsEe+2LX0YEAczqNGnDqf2bIW9ie9Brdby3aVMh1Tmewg
U/Ml32qew9ldOovtsk4Ox5OD1EprZSXIEVyMGaLNujk0TlYoQWfVNbDIw3ejIK3n
xasLq2DTjc01mrwvFMi72L19PPEnbWnbklDjZHcLHk9QxdN5fT8tOpVj+p+wPzwK
LPnsRHjstivyICLZLaDLHqhD1tJemH5xjW6S95fhcXZtYq/FBQYnw+zVjNWacKwl
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:37 2023 by rpki-client on console-ams.rpki-client.org