Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3135302e302f32342d3234203d3e203139343337.roa
File: 34352e382e3135302e302f32342d3234203d3e203139343337.roa (raw, json)
Hash identifier: neEqHWdlHX0tZTY0viaD0At5fb5AYuDj1uhduPKiqV8=
Subject key identifier: 58:4F:07:C5:56:00:09:12:78:E9:96:BC:ED:D5:85:F6:86:7F:8D:09
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 19D3C67ED1C3586DF7C7F38049EC9977A52502FD
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3135302e302f32342d3234203d3e203139343337.roa
Signing time: Sat 22 Oct 2022 04:33:34 +0000
ROA not before: Sat 22 Oct 2022 04:28:34 +0000
ROA not after: Sat 21 Oct 2023 04:33:34 +0000
asID: 19437
IP address blocks: 45.8.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:d3:c6:7e:d1:c3:58:6d:f7:c7:f3:80:49:ec:99:77:a5:25:02:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:34 2022 GMT
Not After : Oct 21 04:33:34 2023 GMT
Subject: CN=584F07C55600091278E996BCEDD585F6867F8D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:84:df:14:79:c3:8d:16:d8:e3:76:a6:3f:27:
46:06:33:40:ed:fc:5e:5f:4b:ed:60:0a:a6:48:44:
d7:86:e2:33:63:3a:b8:de:75:8e:36:79:9c:6a:5f:
b3:88:fb:d0:24:4d:64:37:04:b8:c0:81:32:84:54:
2d:43:a3:ee:d0:43:76:30:7c:c3:6d:44:c5:a3:d3:
d8:14:51:13:e1:d0:64:5b:ff:d5:9b:27:b3:84:a4:
6b:8c:42:b9:3a:b9:07:79:c0:7b:9d:39:e5:ea:16:
2c:3d:cc:9f:37:34:79:44:ba:62:c9:df:f3:5b:05:
41:fc:b1:44:df:5f:5d:30:70:a6:f6:90:b8:59:8c:
c5:55:52:78:45:fc:30:a3:96:50:5d:b6:24:6f:4d:
a0:90:cc:59:88:aa:6f:5b:37:35:e3:e7:3e:a4:00:
b6:fa:06:5f:5c:37:3a:3a:f5:01:0c:04:26:7b:59:
8b:0e:0e:25:00:7c:10:44:49:4d:77:d8:f3:cf:d3:
6f:c4:17:2d:b2:ff:59:91:f3:35:a2:3b:a2:77:45:
00:5e:99:3c:55:ed:ac:6c:38:cc:4e:02:aa:9e:c3:
f1:5d:89:eb:c0:3e:27:e3:9c:3b:74:56:4f:21:b5:
ec:d6:93:47:3c:02:5a:35:6f:48:a4:a2:58:2a:04:
da:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4F:07:C5:56:00:09:12:78:E9:96:BC:ED:D5:85:F6:86:7F:8D:09
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3135302e302f32342d3234203d3e203139343337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.150.0/24
Signature Algorithm: sha256WithRSAEncryption
58:46:ea:e6:93:98:71:18:bb:8e:35:89:39:5b:b8:2c:05:f0:
46:b8:85:59:5f:26:f7:6f:55:4e:7c:11:eb:9f:4e:dd:1d:30:
b9:6c:32:ed:e0:e4:42:ab:35:9b:40:6a:17:a9:36:57:f4:4d:
af:a9:88:1e:4a:5b:b8:67:30:60:c5:5a:9c:df:ce:1e:b4:d5:
7f:12:6b:74:fa:46:5d:c6:de:6e:c9:63:ab:6f:64:27:68:af:
0a:5f:41:57:7a:41:62:c3:6f:56:b8:fc:f9:74:03:9a:6e:c5:
15:94:64:25:f3:e3:9e:6d:b6:8d:4d:f4:8e:e1:d1:af:fc:d7:
5e:90:57:e4:e0:2e:2a:ee:22:19:19:d0:ee:53:7e:b7:1e:fe:
e4:ff:55:b0:9e:bb:6b:82:0b:fb:a7:0c:46:53:1c:8c:cf:d5:
9c:76:52:9a:42:37:f3:f1:dd:fd:ea:26:95:bc:c1:15:63:99:
de:43:18:49:07:9b:0f:39:87:74:73:3a:77:8a:7a:7e:bb:e2:
75:67:b7:78:c4:ec:b8:40:1a:f2:74:9a:cd:f6:83:1e:2e:45:
84:cf:11:be:36:6f:75:46:30:93:bf:7a:bb:79:ca:fc:e8:67:
ac:8e:87:27:24:78:62:b6:9e:bc:5d:b1:2e:bc:9e:04:13:04:
9e:3d:43:b2
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIUGdPGftHDWG33x/OASeyZd6UlAv0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjEwMjIwNDI4MzRaFw0yMzEwMjEwNDMzMzRaMDMxMTAvBgNV
BAMTKDU4NEYwN0M1NTYwMDA5MTI3OEU5OTZCQ0VERDU4NUY2ODY3RjhEMDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDphN8UecONFtjjdqY/J0YGM0Dt
/F5fS+1gCqZIRNeG4jNjOrjedY42eZxqX7OI+9AkTWQ3BLjAgTKEVC1Do+7QQ3Yw
fMNtRMWj09gUURPh0GRb/9WbJ7OEpGuMQrk6uQd5wHudOeXqFiw9zJ83NHlEumLJ
3/NbBUH8sUTfX10wcKb2kLhZjMVVUnhF/DCjllBdtiRvTaCQzFmIqm9bNzXj5z6k
ALb6Bl9cNzo69QEMBCZ7WYsODiUAfBBESU132PPP02/EFy2y/1mR8zWiO6J3RQBe
mTxV7axsOMxOAqqew/FdievAPifjnDt0Vk8htezWk0c8Alo1b0ikolgqBNr5AgMB
AAGjggHtMIIB6TAdBgNVHQ4EFgQUWE8HxVYACRJ46Za87dWF9oZ/jQkwHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4Zo
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNDM1MmUzODJlMzEzNTMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM0
MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAC0IljANBgkqhkiG9w0BAQsFAAOCAQEAWEbq5pOYcRi7
jjWJOVu4LAXwRriFWV8m929VTnwR659O3R0wuWwy7eDkQqs1m0BqF6k2V/RNr6mI
HkpbuGcwYMVanN/OHrTVfxJrdPpGXcbebsljq29kJ2ivCl9BV3pBYsNvVrj8+XQD
mm7FFZRkJfPjnm22jU30juHRr/zXXpBX5OAuKu4iGRnQ7lN+tx7+5P9VsJ67a4IL
+6cMRlMcjM/VnHZSmkI38/Hd/eomlbzBFWOZ3kMYSQebDzmHdHM6d4p6frvidWe3
eMTsuEAa8nSazfaDHi5FhM8RvjZvdUYwk796u3nK/OhnrI6HJyR4YraevF2xLrye
BBMEnj1Dsg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org