Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e38382e3138392e302f32342d3332203d3e203531313637.roa
File: 34352e38382e3138392e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: kmEqktWwe1JjRriMPhsqt1ofvpAh+LLRlYQ8JCAY15g=
Subject key identifier: C4:C4:1D:B1:A9:54:89:F3:25:B2:70:A4:11:D7:37:3F:34:3B:99:3D
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 79427022258C8DF9D076064C65227E0EA04760E7
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38382e3138392e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:33:30 +0000
ROA not before: Sat 22 Oct 2022 04:28:30 +0000
ROA not after: Sat 21 Oct 2023 04:33:30 +0000
asID: 51167
IP address blocks: 45.88.189.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:42:70:22:25:8c:8d:f9:d0:76:06:4c:65:22:7e:0e:a0:47:60:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:30 2022 GMT
Not After : Oct 21 04:33:30 2023 GMT
Subject: CN=C4C41DB1A95489F325B270A411D7373F343B993D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:57:15:b7:25:ff:8f:57:68:ec:ea:7c:2c:6a:
95:bb:c0:ad:be:0d:5f:76:2a:c5:14:22:b9:7f:2e:
1c:d2:fc:9e:d0:6b:d5:1c:83:45:4f:fa:59:f8:13:
7c:78:db:8d:8a:1f:39:d5:75:b4:8e:83:1a:a0:16:
52:52:e7:65:d5:5d:71:c1:19:15:96:49:19:54:d0:
d4:cb:18:72:e4:89:0e:95:41:bf:d5:03:84:b5:dc:
71:65:65:dd:ca:af:9c:28:cf:6b:e8:46:05:de:a8:
d8:a4:58:6a:50:a4:e4:68:7c:82:ff:5e:16:5e:b4:
4e:80:1c:ef:b6:ca:4b:c3:d2:60:57:29:e5:e7:12:
f9:c5:cd:06:dc:aa:24:db:9b:f6:df:c7:c8:05:b4:
50:9f:3d:27:c9:8d:fe:89:34:a8:d9:70:7f:68:54:
ef:25:fa:8b:47:e5:1e:10:c6:06:bb:d7:43:5c:e8:
b9:61:05:9b:9f:43:3a:0d:f4:ea:45:6e:b8:2e:0f:
f5:d2:9c:13:2b:1f:58:7e:37:6d:c8:14:c4:53:d8:
4d:e0:ec:a5:10:a5:0b:38:97:6b:ee:c7:2a:c7:8a:
20:9f:61:9f:4f:d8:bb:02:f7:30:16:d2:86:48:04:
f7:04:96:01:63:69:79:f1:ff:b8:65:b1:ab:42:af:
cc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C4:1D:B1:A9:54:89:F3:25:B2:70:A4:11:D7:37:3F:34:3B:99:3D
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38382e3138392e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.189.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:93:24:ba:ea:5c:61:da:56:00:ab:10:6e:85:bc:a5:ed:49:
52:c3:10:d0:b5:57:be:e6:e4:01:f7:ab:b4:d4:d2:cb:51:86:
4f:db:eb:51:1b:61:18:6f:7e:45:43:ba:78:89:da:3b:1b:5e:
a9:5e:d5:8f:c0:55:2a:1f:31:05:8a:21:66:26:21:84:03:20:
3c:17:26:f2:99:17:18:81:ac:fb:bf:a1:2c:8b:4d:49:c4:ab:
70:c2:08:65:37:ff:6a:f0:76:75:74:fc:0c:47:db:04:a6:ff:
dc:9e:b1:d4:ee:29:22:18:25:35:d0:35:ef:55:ca:9c:c2:a4:
04:e8:24:5f:5e:72:e2:6b:9a:15:3f:ad:e7:5b:f1:e8:32:e5:
a1:36:c9:19:20:ee:71:98:1c:70:13:e6:99:d9:5f:88:77:5c:
4b:3a:bb:9c:21:9d:fc:a1:7d:e4:96:24:46:3a:1f:90:b9:e7:
f1:3c:e4:03:d8:e3:10:71:8e:0a:bb:2b:db:85:91:d8:fe:cf:
d7:22:03:8e:32:a7:90:85:6a:06:5e:d5:a2:88:bc:92:09:07:
13:d1:bc:72:fc:fd:db:88:14:58:49:2f:16:16:bb:d0:0f:99:
f2:b2:89:2d:a3:39:e2:eb:57:39:72:49:c8:c9:10:6c:de:e6:
5f:5d:25:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:48 2023 by rpki-client on console-fra.rpki-client.org