Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134392e302f32342d3234203d3e2037373234.roa
File: 34352e382e3134392e302f32342d3234203d3e2037373234.roa (raw, json)
Hash identifier: wkbXd5C2e6Hk6HDWXpgqglKzQtXtHSG4Rx83FMTNbNU=
Subject key identifier: 7F:69:A1:70:97:DD:42:4B:E6:BA:FF:25:3F:6F:28:AC:05:DD:25:0A
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 5E237CE2C20B647B7ED852223D156F729FBC3A61
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134392e302f32342d3234203d3e2037373234.roa
Signing time: Tue 28 Jun 2022 04:41:17 +0000
ROA not before: Tue 28 Jun 2022 04:36:17 +0000
ROA not after: Tue 27 Jun 2023 04:41:17 +0000
asID: 7724
IP address blocks: 45.8.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:23:7c:e2:c2:0b:64:7b:7e:d8:52:22:3d:15:6f:72:9f:bc:3a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:17 2022 GMT
Not After : Jun 27 04:41:17 2023 GMT
Subject: CN=7F69A17097DD424BE6BAFF253F6F28AC05DD250A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:be:fd:a3:8e:f0:17:1e:a6:79:2e:b8:b6:87:
02:78:da:ca:76:3c:4f:85:94:dd:6c:61:98:aa:f7:
77:1a:48:90:fa:3e:c5:f4:14:44:ea:11:ea:f0:5f:
3d:22:64:ba:b7:85:ef:0f:fc:1d:4d:e4:bd:ed:80:
9f:ac:8e:cd:94:4a:b7:5d:1d:fe:07:c9:eb:cb:8f:
10:d1:d6:38:3e:7f:e2:ad:3b:5a:d9:81:2d:2d:61:
dd:e3:74:96:91:da:0d:2c:94:34:7d:af:5c:91:f8:
c3:c7:ca:ae:17:88:f3:5a:d2:11:07:6d:4a:71:8e:
91:d4:e8:f1:dd:60:3c:a6:04:27:16:23:e5:ee:5d:
ee:a0:9d:57:86:d6:ef:59:81:ef:4c:84:1c:3d:ae:
07:3c:ef:cc:1e:65:e9:85:54:8f:e2:6f:82:8d:52:
7b:ab:38:e4:d2:ec:c7:24:4d:6f:e4:66:04:0e:29:
3f:cc:c4:78:5d:fc:93:ba:27:86:3c:44:6a:aa:f8:
69:fe:81:71:e6:b6:ab:15:9b:f6:f6:40:db:0e:ee:
90:89:e7:c4:c9:fc:3f:72:a1:81:e4:1b:f1:1b:da:
60:f8:e8:bd:55:a6:3e:4d:fe:ff:65:5a:28:f9:c5:
a6:f5:02:71:53:5a:b0:53:b4:72:45:9c:fb:a5:34:
e8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:69:A1:70:97:DD:42:4B:E6:BA:FF:25:3F:6F:28:AC:05:DD:25:0A
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134392e302f32342d3234203d3e2037373234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.149.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:ce:fe:64:1c:ed:33:38:5e:4d:2f:bf:97:18:2d:dd:cc:54:
3b:53:ca:73:5a:ba:8b:f7:c8:b8:eb:99:de:ab:34:a3:d9:0b:
85:2b:75:24:08:24:ef:e4:2e:f4:46:4c:d9:4f:38:68:1a:7a:
1d:c3:85:cf:54:c5:10:79:88:e7:4c:24:e8:bc:04:47:6f:d9:
96:eb:40:ca:d8:91:ce:01:d9:ce:5d:0d:78:61:e2:f3:49:1a:
a2:46:d2:3c:1b:f9:ac:78:9e:46:78:ac:06:2b:0e:8e:39:54:
bf:43:82:95:14:1c:33:38:9c:64:46:5e:f2:be:9a:e5:d9:02:
ec:9a:da:d1:41:96:fb:bf:37:ba:8f:b9:39:b8:5c:d6:64:f0:
10:0d:ca:4a:b1:e9:09:4a:7c:13:44:b0:f9:29:d2:f9:f4:7d:
c7:99:8e:a5:45:b3:32:c3:ff:a4:6c:bb:2c:f4:c7:77:a7:f5:
73:8a:18:fd:36:7d:13:64:41:4a:87:b3:25:b0:4b:59:4f:4e:
2f:32:f0:3d:eb:b6:4c:42:e8:5b:6b:5e:79:ea:bd:7e:47:9d:
e8:65:68:4f:d1:b4:85:41:7b:cd:b6:5e:b7:66:8e:68:c6:ac:
e0:5f:28:44:11:dc:95:60:78:7f:65:18:df:bc:3d:50:78:8a:
7a:19:03:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 06:14:44 2025 by rpki-client