Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134382e302f32332d3233203d3e20333938343634.roa
File: 34352e382e3134382e302f32332d3233203d3e20333938343634.roa (raw, json)
Hash identifier: fclcAp1NNRUXSXfyrk2FmAmZ2A5VA/IBr+gnrWlUD58=
Subject key identifier: 6E:8D:72:8C:83:36:59:86:F0:F3:FB:A2:71:BD:F5:01:F4:78:3B:AF
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 4700DC0CDFB450D341848851FB9CFF96D0A9B9EF
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134382e302f32332d3233203d3e20333938343634.roa
Signing time: Tue 28 Jun 2022 04:41:17 +0000
ROA not before: Tue 28 Jun 2022 04:36:17 +0000
ROA not after: Tue 27 Jun 2023 04:41:17 +0000
asID: 398464
IP address blocks: 45.8.148.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:00:dc:0c:df:b4:50:d3:41:84:88:51:fb:9c:ff:96:d0:a9:b9:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:17 2022 GMT
Not After : Jun 27 04:41:17 2023 GMT
Subject: CN=6E8D728C83365986F0F3FBA271BDF501F4783BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d3:9b:d8:eb:64:47:ee:06:75:ba:19:b3:47:
9d:bc:f5:1e:f5:3e:78:6b:01:94:04:39:cb:98:a7:
5a:73:3c:1a:27:8b:49:0f:84:e1:df:fa:f2:18:54:
cc:3f:91:f7:5a:0b:54:0f:c4:af:06:dc:28:32:40:
e9:b8:ff:97:75:da:35:61:f7:ab:df:53:b0:a8:87:
27:7b:f0:76:1b:84:24:17:4c:33:b5:f2:19:be:0c:
89:9b:dd:08:0c:51:33:7b:c0:68:ca:c3:01:44:02:
3b:02:5f:4e:32:df:db:58:08:90:26:6d:b8:84:14:
f9:3a:17:55:19:7e:81:4d:0e:04:1e:af:ce:69:29:
a3:d2:bd:e9:f6:ff:58:a6:85:ed:aa:4f:a2:0c:9e:
74:d3:52:b6:3b:44:30:fc:3d:24:13:81:7a:fe:4b:
c9:c1:ff:89:5f:9b:48:bd:1c:a1:37:46:04:b7:d9:
d4:40:23:3b:5f:16:89:8d:68:e9:55:56:70:1f:bb:
a7:4a:f8:15:ec:99:ba:9b:57:2b:85:d0:ec:b3:1e:
f5:2c:ed:86:fb:1d:74:a9:45:92:1b:44:d0:a6:3a:
aa:ab:56:4d:4c:05:39:ba:4b:ea:ea:4e:20:93:31:
72:60:f3:71:75:ec:74:e4:5b:15:fb:9e:da:eb:30:
e6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8D:72:8C:83:36:59:86:F0:F3:FB:A2:71:BD:F5:01:F4:78:3B:AF
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134382e302f32332d3233203d3e20333938343634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.148.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:01:6f:4d:38:29:ac:b9:17:da:6d:29:02:d3:c4:fd:e7:bb:
3c:c0:46:c6:74:fb:01:fd:a8:e5:da:53:e8:ba:85:cb:1a:14:
8a:4b:5a:6f:de:48:92:3e:68:5c:59:16:ce:37:7d:7c:04:36:
89:17:a2:f2:27:d5:e4:3a:72:37:27:29:c3:04:51:08:43:e5:
c9:5f:a7:83:3d:3e:df:1f:83:95:94:cc:c0:70:cc:57:88:60:
fe:df:1e:a0:cb:e7:97:13:52:32:a9:cc:1e:45:9d:f0:12:d2:
51:56:f3:e2:f6:b8:76:81:6d:a1:bb:0f:f7:c5:ec:f4:d5:fd:
9a:dd:0f:a3:82:5c:17:80:ff:e8:ac:5b:98:6d:a9:a8:54:3a:
22:82:98:f7:ab:4b:a8:f0:b4:86:14:70:8a:d9:c6:a4:61:fb:
f0:27:45:ce:fa:86:48:f6:58:b2:76:77:cb:c3:7d:83:19:88:
60:57:d3:34:40:5d:1e:d6:4b:fa:8f:36:68:f5:0c:cc:c9:06:
51:6e:18:f6:15:14:97:fb:cd:41:d9:ff:ab:d0:62:f6:f8:ce:
ca:08:b4:ea:b6:f6:fc:76:41:1c:42:95:61:56:11:3a:b5:62:
f3:d9:aa:76:dc:32:78:6b:f8:ec:2e:04:3a:1d:f9:37:54:0d:
73:61:97:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-fra.rpki-client.org