Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e3134382e3133362e302f32322d3234203d3e2030.roa
File: 34352e3134382e3133362e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: gKJwBnWoXMxDwlFTYBZQ6EVlCfoE2ghn6kAuwkJlBdM=
Subject key identifier: 73:C0:72:4D:42:8D:84:0A:A0:C0:94:1F:55:1D:39:F5:8D:1D:0A:C4
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 2DD8D116421E6A4C2C57CD055262FEB566FF4A75
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e3134382e3133362e302f32322d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:53:52 +0000
ROA not before: Fri 03 Mar 2023 15:48:52 +0000
ROA not after: Fri 01 Mar 2024 15:53:52 +0000
asID: 0
IP address blocks: 45.148.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:d8:d1:16:42:1e:6a:4c:2c:57:cd:05:52:62:fe:b5:66:ff:4a:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:48:52 2023 GMT
Not After : Mar 1 15:53:52 2024 GMT
Subject: CN=73C0724D428D840AA0C0941F551D39F58D1D0AC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e4:7d:97:a3:2d:2b:07:61:c5:09:c9:fa:bf:
26:f6:e1:bc:b7:23:33:a9:7f:3e:4c:7f:7c:5e:4c:
d5:e9:db:2d:6c:43:d1:9c:80:6b:16:f1:93:10:2c:
c4:c1:a3:44:dd:aa:e4:25:4c:cc:e6:5d:ae:b8:65:
72:fb:7a:05:1c:76:58:83:fe:51:62:41:fd:06:e9:
84:94:68:4e:04:20:8f:a3:17:4e:db:58:d7:30:8d:
21:19:12:e1:2b:f1:29:6c:43:15:1c:b7:fd:2e:26:
a1:10:de:08:4f:f0:8f:5e:a1:4a:f8:bd:73:58:21:
f1:d1:1c:2a:39:b7:75:e5:26:37:4b:3c:df:f9:93:
3f:c9:e2:14:39:7c:38:b4:ef:c2:88:4c:bc:01:74:
3f:8b:dc:63:7f:e6:a6:6b:7f:81:fc:22:ca:8e:19:
22:49:43:b4:b0:59:07:ce:e0:72:4f:96:47:51:d2:
9c:85:09:5b:28:f1:3e:16:27:93:84:73:a5:4e:31:
99:b7:37:2d:de:9a:81:69:31:3a:84:6b:a6:57:b0:
b5:a6:5b:ae:2e:1c:1e:d4:c3:65:d9:7c:91:26:78:
2e:95:3e:e3:40:65:1a:b7:69:ac:8f:b6:b2:0c:43:
6a:a6:fa:ea:79:68:25:d7:c1:18:a9:c3:4e:f5:c1:
43:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C0:72:4D:42:8D:84:0A:A0:C0:94:1F:55:1D:39:F5:8D:1D:0A:C4
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e3134382e3133362e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.136.0/22
Signature Algorithm: sha256WithRSAEncryption
49:4a:d2:8f:03:46:df:24:91:da:16:17:e7:2a:86:4e:79:10:
99:df:39:67:4a:16:d4:21:49:bb:94:a6:9f:d5:d5:d0:10:9f:
5a:d5:9d:73:61:1a:72:15:93:f9:b4:d4:dd:fa:b8:52:c2:9a:
9c:02:29:87:3a:6f:9f:a4:6f:45:28:3c:85:12:ca:60:e0:64:
88:2e:f3:e0:9d:72:eb:ed:8e:29:28:2a:26:53:52:32:51:7b:
f2:cb:8c:52:00:b3:9a:84:85:f2:e9:ba:fb:23:e2:9b:be:4b:
24:69:f8:bf:14:b0:79:83:b3:c0:33:b9:d2:37:06:d7:30:00:
5b:8a:be:cc:3b:88:2d:df:e7:09:3a:a6:5b:7c:62:9e:e1:73:
72:30:ac:39:2a:d3:92:68:b6:69:11:b5:df:48:f7:35:28:b2:
5e:04:86:5e:71:b3:f9:8b:bd:da:71:64:41:54:bf:92:b9:f0:
47:60:5e:5f:ad:42:1b:1b:ea:99:af:70:9c:75:64:27:e6:23:
45:f0:78:99:28:1b:91:8a:b5:10:57:20:6d:e6:3c:ab:a0:29:
2b:1b:b5:40:c2:fd:9f:66:00:45:44:e5:d4:0f:16:65:a4:91:
99:49:12:d7:ce:22:63:e3:2c:ad:e6:44:21:da:1f:e3:28:10:
c9:2b:51:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-fra.rpki-client.org