Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135382e302f32342d3234203d3e20323038323538.roa
File: 34352e31302e3135382e302f32342d3234203d3e20323038323538.roa (raw, json)
Hash identifier: WQmMcbj7PmDNs56TFnyAyb5ysSaGzdi9bEPegsmd34c=
Subject key identifier: F3:18:6A:82:B8:C9:74:E2:A2:70:DF:2B:8D:49:2B:69:9C:BC:57:03
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 1590B689830C55A4DCBEEA937B5A373FAB4853A0
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135382e302f32342d3234203d3e20323038323538.roa
Signing time: Sat 22 Oct 2022 04:33:38 +0000
ROA not before: Sat 22 Oct 2022 04:28:38 +0000
ROA not after: Sat 21 Oct 2023 04:33:38 +0000
asID: 208258
IP address blocks: 45.10.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:90:b6:89:83:0c:55:a4:dc:be:ea:93:7b:5a:37:3f:ab:48:53:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:38 2022 GMT
Not After : Oct 21 04:33:38 2023 GMT
Subject: CN=F3186A82B8C974E2A270DF2B8D492B699CBC5703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5b:8b:9e:48:b7:65:29:4d:05:6f:7d:98:a2:
92:f9:16:c4:6c:84:48:99:a4:99:73:85:af:03:9b:
6a:8a:cc:dc:de:97:82:b1:f4:21:6f:cd:90:20:fd:
e8:99:d7:48:4b:1c:e5:9f:60:57:51:79:90:c6:c8:
b7:84:4d:f5:58:78:ad:4a:da:1e:db:bf:9c:d9:81:
50:73:23:31:ad:23:6b:c6:e0:11:1c:ad:a2:b3:ff:
5a:ec:4f:1e:a6:7c:fb:ae:5f:03:98:e9:f3:5d:44:
eb:ea:57:0f:58:63:6f:79:43:a4:32:7c:08:b1:e2:
e1:4d:2e:9a:26:a7:1f:36:28:9d:18:32:85:fd:4a:
cc:e7:6b:cf:9e:5c:9a:12:43:8c:3f:ee:78:2c:c8:
80:d2:fd:be:85:39:f3:ed:7e:e7:94:9c:c7:b8:33:
b3:9e:03:95:94:fd:24:80:b4:8c:df:00:3a:80:40:
54:78:2e:5d:dd:25:80:b1:86:2f:3b:a7:c9:64:9d:
88:bb:5b:dc:19:48:da:a1:42:65:31:69:72:4a:68:
d8:f9:43:f7:ab:7f:96:bc:94:9b:de:84:2b:a7:50:
02:c3:d6:8f:f2:83:82:b2:44:8e:19:a9:c4:69:cb:
80:8e:56:f8:7c:6d:a0:4c:b1:80:25:01:44:a5:c7:
95:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:18:6A:82:B8:C9:74:E2:A2:70:DF:2B:8D:49:2B:69:9C:BC:57:03
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31302e3135382e302f32342d3234203d3e20323038323538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.158.0/24
Signature Algorithm: sha256WithRSAEncryption
40:11:17:07:de:69:06:10:6e:78:ad:c1:a8:72:38:50:92:da:
c4:fd:9f:02:82:a6:92:61:47:11:44:1e:b0:70:55:bc:39:4d:
22:95:2e:da:ba:11:87:c4:39:04:6b:4d:6a:b1:c5:60:af:e8:
bd:21:68:da:0e:36:c5:21:94:eb:f9:9c:06:64:7e:89:f7:91:
51:da:33:a4:c2:15:81:4b:db:26:c0:ce:99:d2:2e:43:06:cb:
73:3b:d0:cb:19:68:bb:13:37:cd:bf:a9:35:98:d9:b6:53:ca:
96:41:74:17:b8:44:d3:78:03:16:06:fe:13:c3:89:1a:b1:ec:
4f:87:d9:b8:24:3d:e0:f3:09:17:49:4b:14:b2:12:3d:34:66:
47:59:bf:a7:67:be:d9:7b:e4:d8:79:27:0a:2b:18:60:e0:69:
1c:34:60:89:38:a7:ef:06:1d:d4:bd:da:3a:ea:02:5a:d9:4c:
af:25:48:bb:e4:82:fe:dc:2e:42:05:d0:3d:5d:16:fc:71:8c:
37:f3:af:eb:d0:a8:49:06:ad:7d:03:2c:98:c5:f2:27:cf:ce:
02:ab:48:4e:7b:46:65:dd:e0:69:2c:8f:47:54:67:ec:29:7c:
79:74:20:50:52:a2:34:40:84:31:28:dc:51:fa:10:2f:e4:d8:
d1:16:82:8f
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIUFZC2iYMMVaTcvuqTe1o3P6tIU6AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjEwMjIwNDI4MzhaFw0yMzEwMjEwNDMzMzhaMDMxMTAvBgNV
BAMTKEYzMTg2QTgyQjhDOTc0RTJBMjcwREYyQjhENDkyQjY5OUNCQzU3MDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCW4ueSLdlKU0Fb32YopL5FsRs
hEiZpJlzha8Dm2qKzNzel4Kx9CFvzZAg/eiZ10hLHOWfYFdReZDGyLeETfVYeK1K
2h7bv5zZgVBzIzGtI2vG4BEcraKz/1rsTx6mfPuuXwOY6fNdROvqVw9YY295Q6Qy
fAix4uFNLpompx82KJ0YMoX9Sszna8+eXJoSQ4w/7ngsyIDS/b6FOfPtfueUnMe4
M7OeA5WU/SSAtIzfADqAQFR4Ll3dJYCxhi87p8lknYi7W9wZSNqhQmUxaXJKaNj5
Q/erf5a8lJvehCunUALD1o/yg4KyRI4ZqcRpy4COVvh8baBMsYAlAUSlx5VNAgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQU8xhqgrjJdOKicN8rjUkraZy8VwMwHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4Zs
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNDM1MmUzMTMwMmUzMTM1MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMw
MzgzMjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAAtCp4wDQYJKoZIhvcNAQELBQADggEBAEARFwfe
aQYQbnitwahyOFCS2sT9nwKCppJhRxFEHrBwVbw5TSKVLtq6EYfEOQRrTWqxxWCv
6L0haNoONsUhlOv5nAZkfon3kVHaM6TCFYFL2ybAzpnSLkMGy3M70MsZaLsTN82/
qTWY2bZTypZBdBe4RNN4AxYG/hPDiRqx7E+H2bgkPeDzCRdJSxSyEj00ZkdZv6dn
vtl75Nh5JworGGDgaRw0YIk4p+8GHdS92jrqAlrZTK8lSLvkgv7cLkIF0D1dFvxx
jDfzr+vQqEkGrX0DLJjF8ifPzgKrSE57RmXd4Gksj0dUZ+wpfHl0IFBSojRAhDEo
3FH6EC/k2NEWgo8=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:37 2023 by rpki-client on console-ams.rpki-client.org