Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e3134302e3138372e302f32342d3234203d3e2033333536.roa
File: 34352e3134302e3138372e302f32342d3234203d3e2033333536.roa (raw, json)
Hash identifier: zY3PqeWQ+SE60Vf087xXGesw1GXbpeIddtBRdnqU1q8=
Subject key identifier: DD:3D:17:A1:DB:60:F3:3F:D8:01:F9:17:D5:93:53:1B:A5:9A:35:EF
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 4DF5B25669D82E9C3C59A1DF4CA9CA5F854A22EB
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e3134302e3138372e302f32342d3234203d3e2033333536.roa
Signing time: Sat 22 Oct 2022 04:33:26 +0000
ROA not before: Sat 22 Oct 2022 04:28:26 +0000
ROA not after: Sat 21 Oct 2023 04:33:26 +0000
asID: 3356
IP address blocks: 45.140.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:f5:b2:56:69:d8:2e:9c:3c:59:a1:df:4c:a9:ca:5f:85:4a:22:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:26 2022 GMT
Not After : Oct 21 04:33:26 2023 GMT
Subject: CN=DD3D17A1DB60F33FD801F917D593531BA59A35EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b9:2e:bf:08:1a:5e:5f:66:ac:9d:4a:64:49:
5a:15:62:96:64:69:59:8a:97:2d:67:40:f9:d7:fc:
f8:93:97:ec:9b:9d:51:17:f6:15:e4:86:5a:34:58:
2f:dd:20:5d:54:39:3c:82:34:66:c7:0c:32:a5:e2:
84:d9:60:bd:21:9b:2d:0a:01:51:d0:1b:bd:ff:c9:
1a:03:d4:71:1e:90:04:59:59:aa:17:99:88:47:ff:
0c:c4:34:89:06:e6:f7:55:2d:83:59:be:1d:62:c4:
73:8b:93:1a:bc:29:83:2f:98:c8:a6:90:fe:fe:a1:
6d:0d:00:50:f9:6e:10:bf:15:d7:30:c8:1d:79:bf:
ae:38:ba:b7:67:dc:cd:f8:33:dd:23:e7:a5:4a:03:
26:d8:b5:85:bc:47:33:2f:53:49:37:4c:90:21:e4:
d6:c8:05:d6:c3:cf:cc:a0:68:64:24:4f:02:a8:1c:
7e:3d:73:5e:01:53:42:18:92:58:0c:0e:2f:da:d0:
c4:d4:30:c1:9f:3a:35:ce:cf:16:52:a3:9c:42:9d:
7e:98:64:89:5d:75:1d:3a:6a:5b:4c:d7:dc:6b:51:
4c:aa:b0:e6:db:0a:1f:1b:72:63:1f:5d:b0:50:03:
8a:f7:c3:15:a0:ab:c4:d2:15:ea:d8:e8:8b:cb:dc:
db:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:3D:17:A1:DB:60:F3:3F:D8:01:F9:17:D5:93:53:1B:A5:9A:35:EF
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e3134302e3138372e302f32342d3234203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.187.0/24
Signature Algorithm: sha256WithRSAEncryption
97:34:e4:3b:39:5c:c7:ec:18:82:f3:72:05:6c:8b:ce:59:7e:
36:4d:c7:16:fe:11:d6:6a:b4:9d:7f:39:fc:7c:1c:79:3e:f5:
fd:83:aa:f1:80:03:df:3b:10:ec:41:79:91:c9:38:99:40:62:
21:f1:20:87:a0:8f:57:76:d1:07:4c:c2:1b:2d:fc:48:bb:81:
41:8d:9a:12:a3:63:45:a4:f9:e0:52:79:9f:b2:32:2b:f8:24:
8b:ae:d8:1f:82:24:84:2b:a7:46:d2:1e:fa:f0:d8:6b:d2:2f:
d9:10:9b:1f:9e:40:e8:0b:1e:8f:1e:34:ed:62:5f:ca:cf:1f:
5e:fd:34:63:83:03:2f:3b:9e:40:13:b3:3e:ab:fb:06:8e:ba:
56:05:ad:e8:d9:96:54:9c:1e:dd:79:15:61:96:48:c7:c4:2e:
ad:66:f2:3d:77:08:cf:b7:3f:a7:b5:c4:e9:8d:14:4d:2f:20:
8d:10:56:79:d7:fc:49:cf:7b:1d:29:d7:7f:29:8e:54:d0:1a:
4e:9c:92:31:79:26:f5:a9:59:a9:c1:67:5c:bf:b7:69:c0:28:
31:f2:f5:fd:c5:55:50:2a:5e:87:e2:d2:41:bd:aa:b1:df:9b:
85:e9:9f:3d:3f:df:be:74:54:0b:72:0b:4e:07:d5:3c:d8:68:
39:24:0b:05
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUTfWyVmnYLpw8WaHfTKnKX4VKIuswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjEwMjIwNDI4MjZaFw0yMzEwMjEwNDMzMjZaMDMxMTAvBgNV
BAMTKEREM0QxN0ExREI2MEYzM0ZEODAxRjkxN0Q1OTM1MzFCQTU5QTM1RUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsuS6/CBpeX2asnUpkSVoVYpZk
aVmKly1nQPnX/PiTl+ybnVEX9hXkhlo0WC/dIF1UOTyCNGbHDDKl4oTZYL0hmy0K
AVHQG73/yRoD1HEekARZWaoXmYhH/wzENIkG5vdVLYNZvh1ixHOLkxq8KYMvmMim
kP7+oW0NAFD5bhC/FdcwyB15v644urdn3M34M90j56VKAybYtYW8RzMvU0k3TJAh
5NbIBdbDz8ygaGQkTwKoHH49c14BU0IYklgMDi/a0MTUMMGfOjXOzxZSo5xCnX6Y
ZIlddR06altM19xrUUyqsObbCh8bcmMfXbBQA4r3wxWgq8TSFerY6IvL3Nv9AgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQU3T0Xodtg8z/YAfkX1ZNTG6WaNe8wHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNDM1MmUzMTM0MzAyZTMxMzgzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMz
MzMzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQALYy7MA0GCSqGSIb3DQEBCwUAA4IBAQCXNOQ7OVzH
7BiC83IFbIvOWX42TccW/hHWarSdfzn8fBx5PvX9g6rxgAPfOxDsQXmRyTiZQGIh
8SCHoI9XdtEHTMIbLfxIu4FBjZoSo2NFpPngUnmfsjIr+CSLrtgfgiSEK6dG0h76
8Nhr0i/ZEJsfnkDoCx6PHjTtYl/Kzx9e/TRjgwMvO55AE7M+q/sGjrpWBa3o2ZZU
nB7deRVhlkjHxC6tZvI9dwjPtz+ntcTpjRRNLyCNEFZ51/xJz3sdKdd/KY5U0BpO
nJIxeSb1qVmpwWdcv7dpwCgx8vX9xVVQKl6H4tJBvaqx35uF6Z89P9++dFQLcgtO
B9U82Gg5JAsF
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-fra.rpki-client.org