Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/33312e34302e3231322e302f32342d3234203d3e203538323132.roa
File: 33312e34302e3231322e302f32342d3234203d3e203538323132.roa (raw, json)
Hash identifier: lLZR0/lXKB6choD3DO3RsETlDQ+F0kBCMtd+PLsbh28=
Subject key identifier: 5C:7A:34:70:7E:44:03:C8:DD:C5:23:E4:16:D9:11:DF:C3:8C:18:96
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 7BADACF95A63AAD21FC0998716BAF75BC9C9C9A5
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/33312e34302e3231322e302f32342d3234203d3e203538323132.roa
Signing time: Sat 22 Oct 2022 04:33:34 +0000
ROA not before: Sat 22 Oct 2022 04:28:34 +0000
ROA not after: Sat 21 Oct 2023 04:33:34 +0000
asID: 58212
IP address blocks: 31.40.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:ad:ac:f9:5a:63:aa:d2:1f:c0:99:87:16:ba:f7:5b:c9:c9:c9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:34 2022 GMT
Not After : Oct 21 04:33:34 2023 GMT
Subject: CN=5C7A34707E4403C8DDC523E416D911DFC38C1896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d5:b0:2f:9b:97:08:16:ff:34:ad:7e:3a:f7:
47:85:5c:27:f6:e8:64:e6:6f:c7:89:d9:9a:2c:b1:
0d:da:98:d9:fb:38:0d:47:77:79:09:01:49:fe:ee:
d8:f9:c9:82:e5:c4:b7:71:2a:5c:fb:12:6f:60:04:
51:c6:bb:2e:0d:df:f9:54:40:7e:cd:2d:21:1c:08:
cb:95:d3:79:d3:90:2c:11:1b:0c:1a:17:ad:c1:8c:
1a:df:aa:59:8f:d4:88:15:ca:87:3a:b6:8a:10:cc:
c1:85:91:b6:3a:5f:54:aa:c3:6d:b3:17:98:11:11:
1d:84:2d:b7:5e:57:a8:a0:47:ef:dc:28:49:78:ad:
65:3b:0e:a2:64:fc:e0:f9:75:12:d5:be:38:96:76:
97:8b:71:de:ae:eb:fa:8f:c9:b1:af:04:5b:d3:dd:
5c:25:cc:a5:b0:c9:82:4c:0f:fb:bd:a0:19:59:e8:
20:f9:d8:14:9d:d0:84:b4:f9:24:4f:16:f9:f4:72:
7f:d2:47:ab:8c:85:41:da:e8:1d:cb:fb:65:f7:cd:
94:9a:f7:2d:f1:6b:78:3f:b7:1d:ed:9d:5a:7d:2e:
68:02:4e:13:e1:d7:3d:4f:f4:ec:1b:2d:60:8f:d0:
72:72:d6:c1:72:27:f5:93:d7:7d:1f:35:98:80:26:
2a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7A:34:70:7E:44:03:C8:DD:C5:23:E4:16:D9:11:DF:C3:8C:18:96
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/33312e34302e3231322e302f32342d3234203d3e203538323132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.212.0/24
Signature Algorithm: sha256WithRSAEncryption
41:f4:23:c3:b8:f9:43:46:c4:b3:c6:00:9c:a0:4c:b7:17:c2:
4b:52:18:a3:c5:85:90:f8:70:da:a1:3a:13:42:12:5d:bb:69:
00:b1:03:c7:e5:8e:22:d7:22:9b:a7:80:0f:a6:14:cb:f1:1b:
e0:43:4d:04:80:12:f8:5b:3d:82:0c:0f:b4:8c:95:25:77:30:
fe:92:25:ee:7a:76:33:11:3a:98:0d:a1:f9:5b:87:11:a2:f8:
62:66:99:bc:9a:61:65:a3:85:95:38:2b:67:1c:6d:e3:71:0c:
5f:57:88:cd:04:98:30:70:3c:67:d7:52:41:5b:7f:5e:ad:0f:
b6:1e:da:54:e0:81:61:18:25:bf:ed:45:43:3a:30:5e:4d:94:
c4:bd:48:71:e3:46:ba:78:53:7f:34:bc:1b:a3:0e:f4:b9:2e:
9e:69:c6:3a:e2:9a:82:75:cd:64:85:be:c1:4f:f3:44:82:06:
e0:96:d4:9e:de:11:7a:bb:c1:13:09:23:e7:81:17:86:6b:c0:
bf:d8:ac:45:19:4b:01:ce:09:f2:90:0e:c3:05:b2:5b:76:71:
3c:c3:4f:94:2e:69:a4:b9:c0:3e:3f:46:7d:7a:27:64:a6:15:
9a:85:44:73:89:5a:8d:04:24:c9:46:e8:ab:46:2e:c3:bb:29:
6c:4e:1c:ec
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUe62s+VpjqtIfwJmHFrr3W8nJyaUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjEwMjIwNDI4MzRaFw0yMzEwMjEwNDMzMzRaMDMxMTAvBgNV
BAMTKDVDN0EzNDcwN0U0NDAzQzhEREM1MjNFNDE2RDkxMURGQzM4QzE4OTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq1bAvm5cIFv80rX4690eFXCf2
6GTmb8eJ2ZossQ3amNn7OA1Hd3kJAUn+7tj5yYLlxLdxKlz7Em9gBFHGuy4N3/lU
QH7NLSEcCMuV03nTkCwRGwwaF63BjBrfqlmP1IgVyoc6tooQzMGFkbY6X1Sqw22z
F5gRER2ELbdeV6igR+/cKEl4rWU7DqJk/OD5dRLVvjiWdpeLcd6u6/qPybGvBFvT
3VwlzKWwyYJMD/u9oBlZ6CD52BSd0IS0+SRPFvn0cn/SR6uMhUHa6B3L+2X3zZSa
9y3xa3g/tx3tnVp9LmgCThPh1z1P9OwbLWCP0HJy1sFyJ/WT130fNZiAJio9AgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUXHo0cH5EA8jdxSPkFtkR38OMGJYwHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zMzMxMmUzNDMwMmUzMjMxMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTM4
MzIzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAHyjUMA0GCSqGSIb3DQEBCwUAA4IBAQBB9CPDuPlD
RsSzxgCcoEy3F8JLUhijxYWQ+HDaoToTQhJdu2kAsQPH5Y4i1yKbp4APphTL8Rvg
Q00EgBL4Wz2CDA+0jJUldzD+kiXuenYzETqYDaH5W4cRovhiZpm8mmFlo4WVOCtn
HG3jcQxfV4jNBJgwcDxn11JBW39erQ+2HtpU4IFhGCW/7UVDOjBeTZTEvUhx40a6
eFN/NLwbow70uS6eacY64pqCdc1khb7BT/NEggbgltSe3hF6u8ETCSPngReGa8C/
2KxFGUsBzgnykA7DBbJbdnE8w0+ULmmkucA+P0Z9eidkphWahURziVqNBCTJRuir
Ri7DuylsThzs
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:37 2023 by rpki-client on console-ams.rpki-client.org