Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35362e302f32332d3234203d3e20323034313730.roa
File: 34352e31332e35362e302f32332d3234203d3e20323034313730.roa (raw, json)
Hash identifier: +TAxflDiZiHIGsFa6zayMEnzepkQmALG4SCzmSQIKrw=
Subject key identifier: 71:1D:EE:3F:3B:91:E5:83:1D:DB:6E:D5:83:8C:22:80:4B:C2:4A:CA
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 04E68546CAB70F778E7A0147963C8B6E3D7A8118
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35362e302f32332d3234203d3e20323034313730.roa
Signing time: Sat 22 Oct 2022 04:33:37 +0000
ROA not before: Sat 22 Oct 2022 04:28:37 +0000
ROA not after: Sat 21 Oct 2023 04:33:37 +0000
asID: 204170
IP address blocks: 45.13.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:e6:85:46:ca:b7:0f:77:8e:7a:01:47:96:3c:8b:6e:3d:7a:81:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:37 2022 GMT
Not After : Oct 21 04:33:37 2023 GMT
Subject: CN=711DEE3F3B91E5831DDB6ED5838C22804BC24ACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7a:d8:96:b6:c3:98:6a:b0:74:d0:5f:f6:ca:
45:c5:82:16:1f:5a:6e:02:cc:6c:be:c3:fe:b3:8c:
7f:4c:2b:e6:4e:50:10:ca:fa:b0:fe:30:3f:ca:b3:
70:f7:2e:39:bf:8c:fe:03:73:5a:49:45:70:db:4b:
4c:8e:1b:1d:60:52:7b:7e:72:1f:1d:f7:8f:f4:35:
84:8e:10:ed:ac:c6:29:8c:63:21:43:34:2d:27:1c:
e6:ed:d2:c5:bd:f3:ef:d6:4c:a3:25:0b:5d:3b:f2:
6b:0b:a0:f2:4d:a5:11:d4:fe:ef:e7:f6:32:38:ed:
e3:28:9b:d6:38:05:61:50:7d:f5:b1:3b:79:9e:dc:
bd:fb:0c:8d:56:c1:d5:2e:6f:1a:8d:e6:80:df:83:
f3:62:de:87:41:3e:02:0b:df:7d:f8:f6:96:3a:92:
7e:aa:e9:02:a2:be:ba:81:3e:97:3f:a5:a3:5b:82:
00:30:74:b9:9a:2c:3e:a5:dd:1a:0e:43:dd:fd:be:
5c:01:0c:2a:57:23:22:37:39:13:7b:cf:02:71:54:
8e:80:a4:1e:31:7f:f6:5a:d7:c4:cd:64:ad:cd:da:
ed:bc:1c:db:d9:44:ee:26:c8:85:51:b1:71:aa:e5:
44:78:d0:36:a9:64:a0:d4:9b:00:f3:18:7d:81:b6:
24:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1D:EE:3F:3B:91:E5:83:1D:DB:6E:D5:83:8C:22:80:4B:C2:4A:CA
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35362e302f32332d3234203d3e20323034313730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.56.0/23
Signature Algorithm: sha256WithRSAEncryption
86:b7:ac:ff:11:a8:77:a1:d4:ff:61:66:f5:00:c5:26:ef:fd:
bf:8a:26:bd:99:78:a2:51:c4:79:ed:26:c8:0f:9e:f3:40:8c:
48:1b:38:83:69:57:82:3a:57:3c:ac:2b:23:56:db:41:43:63:
dc:8e:ad:5e:22:f5:c0:c2:21:17:21:2b:eb:0f:63:d7:4a:91:
85:ed:71:37:9b:12:3c:78:72:d4:a5:0b:3a:cf:b0:44:31:92:
d5:d7:8b:bb:02:91:a5:62:1f:ec:77:43:5b:3a:e2:c2:d7:5e:
5a:3b:52:16:26:4b:03:b1:41:77:49:68:c2:8d:15:d9:47:b1:
99:c0:f9:8c:e1:bf:ce:8d:40:5c:99:6c:a8:1e:ef:35:10:7a:
2b:b4:e8:55:1f:43:59:fa:ac:6f:dd:33:65:08:7c:44:63:eb:
23:89:ed:e9:5b:ad:39:a0:75:1d:ba:f1:7b:02:b9:5b:e5:51:
83:93:9f:e7:2e:14:ac:cb:1c:bb:f1:2a:87:a3:5a:29:3e:95:
d4:93:02:3a:3e:b8:36:bb:69:cb:55:cf:46:10:b0:e9:ab:98:
e9:e3:e2:ff:4f:c4:da:b1:03:eb:5e:19:a3:8a:4d:06:a4:de:
9c:ed:14:bc:4a:72:74:82:6b:38:47:0a:c3:c7:f7:3a:b3:48:
b2:a6:75:4b
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUBOaFRsq3D3eOegFHljyLbj16gRgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjEwMjIwNDI4MzdaFw0yMzEwMjEwNDMzMzdaMDMxMTAvBgNV
BAMTKDcxMURFRTNGM0I5MUU1ODMxRERCNkVENTgzOEMyMjgwNEJDMjRBQ0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbetiWtsOYarB00F/2ykXFghYf
Wm4CzGy+w/6zjH9MK+ZOUBDK+rD+MD/Ks3D3Ljm/jP4Dc1pJRXDbS0yOGx1gUnt+
ch8d94/0NYSOEO2sximMYyFDNC0nHObt0sW98+/WTKMlC1078msLoPJNpRHU/u/n
9jI47eMom9Y4BWFQffWxO3me3L37DI1WwdUubxqN5oDfg/Ni3odBPgIL33349pY6
kn6q6QKivrqBPpc/paNbggAwdLmaLD6l3RoOQ939vlwBDCpXIyI3ORN7zwJxVI6A
pB4xf/Za18TNZK3N2u28HNvZRO4myIVRsXGq5UR40DapZKDUmwDzGH2BtiQdAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUcR3uPzuR5YMd227Vg4wigEvCSsowHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNDM1MmUzMTMzMmUzNTM2MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMDM0
MzEzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQBLQ04MA0GCSqGSIb3DQEBCwUAA4IBAQCGt6z/Eah3
odT/YWb1AMUm7/2/iia9mXiiUcR57SbID57zQIxIGziDaVeCOlc8rCsjVttBQ2Pc
jq1eIvXAwiEXISvrD2PXSpGF7XE3mxI8eHLUpQs6z7BEMZLV14u7ApGlYh/sd0Nb
OuLC115aO1IWJksDsUF3SWjCjRXZR7GZwPmM4b/OjUBcmWyoHu81EHortOhVH0NZ
+qxv3TNlCHxEY+sjie3pW605oHUduvF7Arlb5VGDk5/nLhSsyxy78SqHo1opPpXU
kwI6Prg2u2nLVc9GELDpq5jp4+L/T8TasQPrXhmjik0GpN6c7RS8SnJ0gms4RwrD
x/c6s0iypnVL
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-fra.rpki-client.org