Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35392e302f32342d3332203d3e203531313637.roa
File: 34352e31332e35392e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: ffeqUgLVNj+s30AhEtnrru/EkeahjHKdySHHXGZ3ass=
Subject key identifier: FA:20:FA:0E:17:97:FD:32:39:31:52:72:71:1B:47:18:F3:80:6C:65
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 1D3E75CBB205EBDCDDAFE40B356B7A2C3B75BC82
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35392e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:33:35 +0000
ROA not before: Sat 22 Oct 2022 04:28:35 +0000
ROA not after: Sat 21 Oct 2023 04:33:35 +0000
asID: 51167
IP address blocks: 45.13.59.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:3e:75:cb:b2:05:eb:dc:dd:af:e4:0b:35:6b:7a:2c:3b:75:bc:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:35 2022 GMT
Not After : Oct 21 04:33:35 2023 GMT
Subject: CN=FA20FA0E1797FD3239315272711B4718F3806C65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fd:de:b2:0b:f2:f2:1a:b6:62:88:39:3c:f9:
ad:4d:e0:35:de:29:94:e8:da:99:8b:05:8d:3c:3f:
ee:2b:d3:dd:41:7d:bc:05:13:61:75:4b:85:3c:ea:
09:0f:72:b3:af:e0:d7:33:ab:07:5f:47:ad:78:a9:
cc:56:44:0c:df:d2:e1:19:b8:a8:1d:a5:40:6b:94:
ad:82:71:0d:5b:07:e7:f6:f6:86:c0:ef:ed:66:88:
da:38:dc:84:09:72:19:09:24:1d:9a:75:66:b1:e9:
ec:76:01:39:83:36:c6:17:e7:b1:f9:ac:3f:04:89:
89:a2:2c:df:d5:0f:78:c0:9f:46:03:e0:f6:2b:9d:
f6:7c:1c:1d:c9:bd:21:ab:c5:ce:ed:be:63:fc:b6:
53:bc:0c:3e:b7:0e:37:a5:45:ec:8c:cb:cb:54:4a:
44:b5:c8:9e:62:ac:3e:57:1d:49:25:e5:48:0c:b0:
5f:cf:8e:d2:82:99:a7:b4:83:1f:c0:92:a0:d9:3f:
c6:36:dc:90:b1:2f:ba:b8:46:9a:47:e6:f4:15:91:
49:8b:9f:ed:8c:6e:37:4c:0c:27:2c:f9:d1:a9:59:
6a:f6:b2:89:ab:ba:9b:b2:4b:55:3e:d1:2d:af:ab:
aa:fd:99:82:1c:f3:fd:cd:8d:a5:54:22:97:a6:e8:
cb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:20:FA:0E:17:97:FD:32:39:31:52:72:71:1B:47:18:F3:80:6C:65
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e31332e35392e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:44:55:f3:a6:2b:53:bd:be:19:59:80:74:4b:c2:7a:f4:c5:
6e:e4:d6:c5:3b:e0:41:d3:fe:26:dd:f0:6d:07:4d:5f:0b:0d:
22:75:34:cd:24:21:e7:b2:43:4f:93:a0:c3:90:3a:ea:79:94:
46:3e:fa:bf:ea:bc:bf:7b:52:0b:2d:a9:23:b0:fa:94:0e:09:
1b:2c:5a:56:1b:2d:9f:84:68:69:07:07:7b:fb:b8:66:f2:53:
c4:8d:51:d1:dc:c3:8d:f9:da:13:ce:d5:e2:f4:a6:e7:64:ec:
80:24:41:e1:2f:e3:a4:b1:0e:eb:30:58:f5:a0:92:bd:52:be:
a4:f0:06:8f:11:9b:b3:81:3c:1c:3a:b4:8f:fd:91:f2:2e:1c:
7f:4c:c8:2a:f8:56:96:54:27:fc:b4:c4:bc:87:fa:a5:2a:48:
8f:40:cf:b2:9a:0f:50:5f:56:f4:62:f8:db:57:51:93:b9:fe:
18:e9:73:ea:f9:c5:52:c8:c4:24:29:e3:fd:c4:dd:0d:c0:b2:
b3:8b:eb:d5:5f:07:37:76:b8:20:b1:52:92:46:05:79:26:cf:
75:91:18:a2:12:70:12:fe:6b:e3:c3:e7:c3:ae:64:03:96:dc:
70:03:c6:81:32:4a:31:d4:dd:b4:8b:a5:c1:eb:af:4f:ec:0b:
25:b2:7d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:37 2023 by rpki-client on console-ams.rpki-client.org