Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3135312e302f32342d3234203d3e203330383233.roa
File: 34352e382e3135312e302f32342d3234203d3e203330383233.roa (raw, json)
Hash identifier: 7n5n1Hx4WI6Y3Sq1FM/KkQrqB2agNY8Jg5h0O4MHd6g=
Subject key identifier: FA:4F:80:BB:95:92:92:71:16:70:EE:84:D6:3B:F0:E9:B1:C2:24:28
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 3425B9F41A84D3D7C5624B34E48D76F88909B831
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3135312e302f32342d3234203d3e203330383233.roa
Signing time: Sat 22 Oct 2022 04:33:27 +0000
ROA not before: Sat 22 Oct 2022 04:28:27 +0000
ROA not after: Sat 21 Oct 2023 04:33:27 +0000
asID: 30823
IP address blocks: 45.8.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:25:b9:f4:1a:84:d3:d7:c5:62:4b:34:e4:8d:76:f8:89:09:b8:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:27 2022 GMT
Not After : Oct 21 04:33:27 2023 GMT
Subject: CN=FA4F80BB959292711670EE84D63BF0E9B1C22428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f4:36:1c:f1:6a:3d:04:79:07:e8:85:28:23:
83:af:dc:5c:a6:3b:10:3f:3a:ed:9d:d3:f5:4f:08:
1f:e7:73:a0:13:1c:2f:00:57:26:71:3f:24:6f:d7:
69:15:eb:1e:33:ad:86:17:5b:67:e2:d9:01:cc:f9:
e4:dd:cb:8c:29:34:00:73:45:da:3c:b6:21:b6:fe:
ee:7b:41:8b:8e:de:05:6b:de:5f:d4:6e:7a:35:d1:
56:ab:27:f7:b6:f3:46:96:9a:f7:4f:d6:f5:ea:05:
1d:10:d4:a6:88:6a:83:d6:9f:f5:70:77:37:7b:a1:
a8:ae:27:62:c7:a2:fd:e4:88:df:ff:78:af:ad:85:
ab:e6:23:53:75:7d:27:d3:cc:eb:90:e6:29:39:b1:
2f:90:6b:cb:f8:44:a0:22:a6:01:28:0d:e1:cb:0b:
b4:24:e2:73:72:43:3f:9c:0d:9c:d4:59:6e:45:55:
9f:71:47:a0:3a:41:e9:f3:22:b9:73:64:1f:35:77:
41:67:84:75:24:4a:50:5b:d9:f1:e0:db:50:67:e3:
82:0b:be:cd:e9:08:3f:9c:6c:32:d3:dd:eb:1e:87:
0f:8e:20:d8:0c:24:6f:64:37:8a:47:00:6c:b0:3a:
04:68:3d:73:9c:73:78:9f:79:cb:a7:d9:e0:1e:cb:
09:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4F:80:BB:95:92:92:71:16:70:EE:84:D6:3B:F0:E9:B1:C2:24:28
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e382e3135312e302f32342d3234203d3e203330383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.151.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:3a:3c:b2:ad:9d:24:0f:79:a1:c7:b5:9f:80:7c:8e:c8:c5:
2c:b2:99:f4:3a:25:be:ed:40:e5:d2:40:08:4c:7f:7e:fb:c4:
ca:35:d8:74:c6:05:bc:69:f7:9e:d6:9b:8b:6b:4f:53:1a:96:
0c:75:0e:b8:9f:43:1b:46:19:d3:c1:31:3f:47:93:7e:76:a8:
c9:92:15:d7:02:e0:f9:a0:8d:8b:46:5b:2c:0b:10:a1:7e:44:
e1:63:8c:1c:df:23:ad:ec:52:f7:32:64:bc:67:2b:cf:44:a1:
6e:e3:a1:65:2f:60:c0:27:ac:f7:dc:6c:66:69:55:17:ed:44:
31:e6:5a:58:50:16:f8:4f:65:4c:ad:3e:5e:61:3d:eb:ff:5d:
98:09:aa:f8:f3:f8:ca:f4:75:22:ab:5c:02:4c:6c:b6:f8:7c:
b1:dd:b8:c6:6c:d3:23:7c:73:d7:5e:03:e3:24:ca:5a:98:ea:
34:c2:6e:9c:5e:2c:d1:f7:ed:ac:91:03:7f:01:10:52:ab:2c:
4b:03:1e:13:c2:38:03:5f:1d:7f:31:ab:7a:15:57:ba:7e:18:
b9:af:a0:1e:f0:19:36:ed:30:53:86:42:46:28:ca:13:47:ff:
78:8d:d2:d8:4e:08:bb:5c:4c:91:c1:a6:7b:18:e6:67:4c:c3:
73:bd:af:c8
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIUNCW59BqE09fFYks05I12+IkJuDEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMjEwMjIwNDI4MjdaFw0yMzEwMjEwNDMzMjdaMDMxMTAvBgNV
BAMTKEZBNEY4MEJCOTU5MjkyNzExNjcwRUU4NEQ2M0JGMEU5QjFDMjI0MjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ9DYc8Wo9BHkH6IUoI4Ov3Fym
OxA/Ou2d0/VPCB/nc6ATHC8AVyZxPyRv12kV6x4zrYYXW2fi2QHM+eTdy4wpNABz
Rdo8tiG2/u57QYuO3gVr3l/Ubno10VarJ/e280aWmvdP1vXqBR0Q1KaIaoPWn/Vw
dzd7oaiuJ2LHov3kiN//eK+thavmI1N1fSfTzOuQ5ik5sS+Qa8v4RKAipgEoDeHL
C7Qk4nNyQz+cDZzUWW5FVZ9xR6A6QenzIrlzZB81d0FnhHUkSlBb2fHg21Bn44IL
vs3pCD+cbDLT3esehw+OINgMJG9kN4pHAGywOgRoPXOcc3ifecun2eAeywlnAgMB
AAGjggHtMIIB6TAdBgNVHQ4EFgQU+k+Au5WSknEWcO6E1jvw6bHCJCgwHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwgYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4Zo
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
Mi8zNDM1MmUzODJlMzEzNTMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzMDM4
MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAC0IlzANBgkqhkiG9w0BAQsFAAOCAQEAfTo8sq2dJA95
oce1n4B8jsjFLLKZ9Dolvu1A5dJACEx/fvvEyjXYdMYFvGn3ntabi2tPUxqWDHUO
uJ9DG0YZ08ExP0eTfnaoyZIV1wLg+aCNi0ZbLAsQoX5E4WOMHN8jrexS9zJkvGcr
z0ShbuOhZS9gwCes99xsZmlVF+1EMeZaWFAW+E9lTK0+XmE96/9dmAmq+PP4yvR1
IqtcAkxstvh8sd24xmzTI3xz114D4yTKWpjqNMJunF4s0fftrJEDfwEQUqssSwMe
E8I4A18dfzGrehVXun4Yua+gHvAZNu0wU4ZCRijKE0f/eI3S2E4Iu1xMkcGmexjm
Z0zDc72vyA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org