Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134392e302f32342d3234203d3e2037383537.roa
File: 34352e382e3134392e302f32342d3234203d3e2037383537.roa (raw, json)
Hash identifier: u1KO9RhfcKrKeSguXQ4KqYHy3lkiMHdqDaYOsHyStok=
Subject key identifier: BB:41:6F:FA:5C:A8:A7:5B:F1:A5:02:7E:86:50:2A:22:28:0A:31:72
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 1D04ED8C645F4BC95D6A8EAABC863FA73812B053
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134392e302f32342d3234203d3e2037383537.roa
Signing time: Tue 28 Jun 2022 04:41:07 +0000
ROA not before: Tue 28 Jun 2022 04:36:07 +0000
ROA not after: Tue 27 Jun 2023 04:41:07 +0000
asID: 7857
IP address blocks: 45.8.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:04:ed:8c:64:5f:4b:c9:5d:6a:8e:aa:bc:86:3f:a7:38:12:b0:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Jun 28 04:36:07 2022 GMT
Not After : Jun 27 04:41:07 2023 GMT
Subject: CN=BB416FFA5CA8A75BF1A5027E86502A22280A3172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:28:00:77:55:9d:2c:32:d4:82:d0:d5:7d:23:
9c:1e:ed:26:5d:91:a4:3c:f3:a3:e5:b4:83:3f:cc:
41:fb:2f:d5:01:75:52:9f:7c:43:0b:10:37:2a:99:
94:bd:6f:33:89:eb:df:b5:c2:7a:05:90:93:05:f5:
88:b6:62:7c:ec:a8:e9:44:b9:41:54:0d:7a:74:6c:
05:d7:72:ca:2d:3a:33:77:00:14:2e:45:1f:14:05:
cc:05:3b:3f:84:ca:0d:83:dc:f9:a5:94:79:9f:33:
35:b3:7b:d4:30:a1:14:7e:2e:f8:bb:3b:6d:0f:0c:
c0:0b:23:42:03:05:59:77:e5:b8:86:be:4c:52:62:
38:e9:f4:13:12:77:59:65:ea:1a:a7:56:ef:ab:1c:
a9:32:73:ca:38:3d:29:72:66:8b:3a:f9:92:5b:ca:
43:7b:77:5c:eb:5f:2e:dc:52:39:38:65:a3:fa:0f:
60:be:fa:3c:36:ea:e8:e0:90:f2:db:d7:28:99:75:
64:f6:3c:80:d4:21:16:46:43:26:3e:82:13:0b:17:
81:a7:1f:00:37:71:3c:51:4f:81:b0:78:cd:42:f8:
3c:fd:bc:dc:0e:51:ce:94:54:36:5b:a7:9f:10:b5:
43:94:56:1a:7f:af:23:8e:56:1e:ae:8b:d1:99:20:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:41:6F:FA:5C:A8:A7:5B:F1:A5:02:7E:86:50:2A:22:28:0A:31:72
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3134392e302f32342d3234203d3e2037383537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.149.0/24
Signature Algorithm: sha256WithRSAEncryption
56:6b:31:7d:9d:30:78:50:88:1a:04:ce:22:2c:e6:63:5e:a7:
52:6b:56:df:29:ce:62:29:60:06:ff:1a:01:b4:f9:75:d1:6e:
0c:cc:6a:ba:45:b4:25:8c:c7:58:8d:d0:25:e6:63:52:83:23:
7a:ca:47:5f:f0:2b:ed:9b:9e:1d:2e:05:4d:72:2d:ac:27:64:
0e:19:32:0b:96:99:ad:5d:5c:f1:67:00:75:0d:45:98:71:60:
57:56:9d:e7:ca:47:73:87:b5:6b:81:7f:96:77:4d:57:f4:b5:
51:31:b2:b5:13:d6:ab:f8:24:f9:5b:da:d3:a1:2c:92:82:0b:
1a:ee:64:b0:d0:d3:79:3d:d0:4f:14:91:a4:18:27:61:25:9d:
f2:8e:90:b9:d1:2d:b0:cd:a7:48:3f:84:39:6e:ec:12:1e:94:
24:04:07:1d:0d:82:4f:4a:61:0e:fe:b6:11:93:8f:ef:46:c3:
0e:01:e4:85:27:da:22:06:8b:dd:07:32:c2:69:ce:b2:f7:07:
47:f1:90:5c:a2:99:01:68:e4:1d:2f:17:69:5f:c8:e1:e6:d8:
e2:e4:6c:8d:e6:10:d6:36:9d:cb:1e:f2:af:fa:33:85:e9:db:
30:62:12:50:e9:35:5f:73:ac:c4:fc:0f:d4:e3:48:9c:78:0d:
30:7d:c3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org