Route Origin Authorization

$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35382e302f32342d3234203d3e20333937343233.roa
File:                     34352e31332e35382e302f32342d3234203d3e20333937343233.roa (raw, json)
Hash identifier:          on9EUTwLWAOan1xmJzQevGq3mqEYE7vLC8qRGhRgXY8=
Subject key identifier:   73:F9:42:EE:F2:B9:46:05:60:B5:69:43:36:CD:EE:74:1A:29:C2:E9
Certificate issuer:       /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial:       6C2FB37530BB0E25853DB5BE0BF380BD9D4D0826
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access:      rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35382e302f32342d3234203d3e20333937343233.roa
Signing time:             Sat 22 Oct 2022 04:33:30 +0000
ROA not before:           Sat 22 Oct 2022 04:28:30 +0000
ROA not after:            Sat 21 Oct 2023 04:33:30 +0000
asID:                     397423
IP address blocks:        45.13.58.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:2f:b3:75:30:bb:0e:25:85:3d:b5:be:0b:f3:80:bd:9d:4d:08:26
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
        Validity
            Not Before: Oct 22 04:28:30 2022 GMT
            Not After : Oct 21 04:33:30 2023 GMT
        Subject: CN=73F942EEF2B9460560B5694336CDEE741A29C2E9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:6e:67:e0:18:85:21:d2:aa:23:64:3c:81:8d:
                    4a:66:d0:cd:57:c0:24:be:71:6a:6c:b7:5b:cc:60:
                    1f:2e:82:7e:89:21:04:23:ce:0f:c6:1a:09:d0:63:
                    ae:ee:5d:e2:34:84:cd:84:c5:c5:01:65:24:fe:c8:
                    7a:52:d3:2c:eb:88:93:b4:99:70:2e:59:13:d5:0a:
                    72:c6:16:5e:e6:50:ad:23:08:19:26:5f:7f:c6:e9:
                    b3:ae:e4:8c:9c:30:36:fb:0a:7a:99:c1:65:a0:2d:
                    19:3d:3e:ed:03:97:54:53:7c:bb:09:c7:9f:47:73:
                    02:73:5a:ad:3d:5b:23:bc:48:09:06:18:98:57:17:
                    b3:c3:24:b0:4d:65:ce:16:37:1a:60:8e:3e:ff:5a:
                    5d:47:28:47:2b:0f:2d:e6:cd:31:47:7d:50:ec:b0:
                    61:26:d5:e0:04:ad:22:61:28:36:a1:ec:a9:22:6d:
                    41:d3:b3:7e:93:44:e7:c7:58:fd:86:3d:cd:92:29:
                    13:11:d0:6c:2a:5e:32:aa:97:6a:8b:18:70:b5:15:
                    66:ef:a7:d3:a0:b0:86:b5:1b:ca:e1:fc:f7:fc:6a:
                    c6:04:fe:a1:85:93:03:f7:fb:54:53:70:78:3c:1b:
                    1a:ef:24:e4:be:22:32:20:ee:74:00:4c:31:9a:9e:
                    59:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:F9:42:EE:F2:B9:46:05:60:B5:69:43:36:CD:EE:74:1A:29:C2:E9
            X509v3 Authority Key Identifier:
                keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35382e302f32342d3234203d3e20333937343233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.13.58.0/24

    Signature Algorithm: sha256WithRSAEncryption
         83:1f:70:b3:20:72:cd:5d:19:2c:ee:20:5e:9a:88:15:e9:bb:
         34:b7:cb:47:b2:4f:9d:18:07:18:87:30:fc:5e:b5:eb:b5:2f:
         78:d8:f2:6a:69:76:2b:5c:a1:86:5d:86:48:81:3c:63:98:86:
         39:85:4a:03:f9:7f:44:3c:79:17:4a:82:44:d3:45:43:68:aa:
         2d:9d:18:6e:ef:93:de:c3:3a:88:27:7b:0b:9c:ee:94:39:66:
         1b:f8:24:51:ad:99:c2:b1:80:a6:00:6b:c1:64:35:f5:0a:62:
         44:0b:f6:cd:90:33:42:13:db:a1:d7:11:61:58:96:1d:e4:66:
         65:b8:51:f5:d0:82:b7:c7:bf:fb:5c:a7:fc:aa:47:bb:58:d7:
         80:1b:d1:1f:f2:2c:d2:aa:8b:94:91:ea:a1:46:b3:a9:a6:7b:
         01:af:17:76:54:cb:cc:cf:14:be:88:0b:8f:d6:8c:22:c6:2a:
         0f:b3:e6:3d:40:a9:34:66:c9:7a:25:8e:c2:6e:30:82:80:74:
         09:8c:e2:32:5e:de:b0:95:d3:42:8c:36:46:19:75:b2:16:90:
         8e:c1:1b:bc:19:0e:0e:a5:47:37:52:6a:ce:0c:8e:10:23:10:
         76:43:8f:6d:b6:53:d5:f5:c9:d6:9b:f5:1d:68:25:55:52:5d:
         18:46:44:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-fra.rpki-client.org