Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e36372e3232302e302f32342d3234203d3e20323031333431.roa
File: 34352e36372e3232302e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: Qlf3JYO7ADsSWCl21wvmdDDmyfe/ercJCKWh+mhZ1DM=
Subject key identifier: 33:74:4F:5E:33:57:DA:A4:E7:FF:5C:27:3C:DE:CA:A4:2B:F7:44:97
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 6C9A855C6359E6DC607D00DA65A8EDDF4EA92E3F
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e36372e3232302e302f32342d3234203d3e20323031333431.roa
Signing time: Sat 22 Oct 2022 04:33:35 +0000
ROA not before: Sat 22 Oct 2022 04:28:35 +0000
ROA not after: Sat 21 Oct 2023 04:33:35 +0000
asID: 201341
IP address blocks: 45.67.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:9a:85:5c:63:59:e6:dc:60:7d:00:da:65:a8:ed:df:4e:a9:2e:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:35 2022 GMT
Not After : Oct 21 04:33:35 2023 GMT
Subject: CN=33744F5E3357DAA4E7FF5C273CDECAA42BF74497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2e:db:20:4f:41:1d:33:a8:74:dd:25:07:33:
8d:99:1f:9e:9c:9c:de:53:53:ac:d6:e8:fe:e9:b7:
0b:5f:34:5a:5c:6a:c0:ee:e2:af:aa:62:65:52:51:
13:18:59:76:fd:dc:3c:4d:e9:96:d4:07:78:bd:e1:
69:56:27:26:c0:8e:2a:3d:3b:82:2d:31:da:14:b1:
f8:d9:9d:e6:de:77:df:cc:7b:89:db:4d:f4:bc:2a:
24:b9:30:4c:0d:4f:bf:59:d8:d4:f6:fd:04:2a:e2:
35:6f:f3:c4:a9:4a:c3:ec:3e:58:ef:fa:1b:10:6a:
57:15:37:5a:7d:22:f2:21:5f:1f:21:22:e4:e4:13:
64:ad:e9:dd:f6:f9:3d:f2:f9:15:24:bc:f7:cd:2f:
e9:ab:1d:77:75:4d:99:5d:8b:d2:08:8c:40:ab:b3:
3e:02:3c:95:da:ea:c3:b1:75:09:2d:72:51:45:04:
c5:88:a2:78:d0:2d:78:dc:39:79:e6:03:7e:be:a9:
85:90:97:d7:6c:c8:a8:2c:fc:fd:ad:da:b8:25:4f:
47:4d:ab:15:97:4b:67:d2:b6:5d:bd:7a:d6:cc:18:
0b:93:ce:2e:02:cd:a3:1f:46:33:2c:0d:de:7f:91:
70:22:0b:3c:62:33:70:40:3a:0b:2a:8f:65:1b:fc:
63:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:74:4F:5E:33:57:DA:A4:E7:FF:5C:27:3C:DE:CA:A4:2B:F7:44:97
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e36372e3232302e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.220.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:db:2c:df:d8:0a:8a:1e:a6:f6:52:e4:33:c0:22:12:15:9d:
52:dc:a2:d9:5f:20:a8:ef:8d:dc:5a:a7:9e:ee:ff:13:b0:ff:
a9:2a:06:19:7a:bd:f8:c0:23:e0:8d:2e:d7:86:8f:ec:46:cd:
00:8c:6b:80:e8:62:03:51:e6:5e:eb:28:55:76:c4:bf:3d:f9:
0a:27:0c:29:75:6c:ed:1f:2e:23:01:54:4b:3a:f8:b4:5e:11:
16:b5:d9:57:71:ae:4c:79:d0:43:ce:43:c0:af:51:94:fa:1e:
cf:12:58:02:b5:f0:a8:b9:92:bc:1b:cf:f0:06:05:c3:b4:f3:
18:61:35:fb:df:96:34:3a:a6:43:6b:c9:98:d2:23:93:7c:65:
99:d9:25:a5:87:3f:7e:7c:ff:95:cd:87:ab:4c:d6:26:bf:8a:
95:53:9e:7c:28:13:4e:46:ea:5c:80:70:cc:09:1e:3f:6d:ce:
9a:47:1c:9b:1d:d5:a4:ad:ec:15:20:b9:ab:e4:05:a8:27:1b:
71:6c:bb:43:94:05:47:fe:28:08:02:15:01:16:82:30:77:57:
cf:56:2d:70:37:52:18:48:5e:cf:b8:50:7d:f1:a9:56:2e:5f:
44:66:6e:64:a5:91:f4:1e:9c:e4:ea:dd:29:0f:96:a7:74:ab:
34:3e:55:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:37 2023 by rpki-client on console-ams.rpki-client.org