Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/34352e38382e3139312e302f32342d3332203d3e203531313637.roa
File: 34352e38382e3139312e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: jO28Am/1wr+uj44sKQw6Ul0kZUTXuAYpapf/KMki3Io=
Subject key identifier: A5:74:B0:8B:0D:36:8A:37:9A:34:6F:74:CF:E5:22:53:1B:23:5B:BF
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 7ACF36E5BEC125B9885B619D5A1A68EFAF726AA3
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38382e3139312e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:33:28 +0000
ROA not before: Sat 22 Oct 2022 04:28:28 +0000
ROA not after: Sat 21 Oct 2023 04:33:28 +0000
asID: 51167
IP address blocks: 45.88.191.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:cf:36:e5:be:c1:25:b9:88:5b:61:9d:5a:1a:68:ef:af:72:6a:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:28 2022 GMT
Not After : Oct 21 04:33:28 2023 GMT
Subject: CN=A574B08B0D368A379A346F74CFE522531B235BBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a2:15:6b:50:7c:7a:d5:53:7d:31:ae:31:93:
49:70:a2:59:4c:d3:1d:21:d3:49:93:4a:2b:1c:9b:
f4:fe:9c:87:80:d2:e2:3f:4b:15:ad:93:3a:46:3e:
69:77:20:cc:5f:de:6f:0a:1d:d8:1a:9c:42:96:31:
2c:8d:cd:0b:53:4c:05:57:a3:e0:93:67:dd:1f:a1:
c8:c4:33:fa:9c:32:1d:bb:d6:5e:c2:b9:9b:a6:6a:
63:63:67:1f:14:0f:1a:80:bf:cf:8c:ae:84:3d:52:
14:7f:85:85:15:dc:a9:e5:37:dd:b3:09:e0:6a:ab:
c9:c7:b9:74:01:5f:30:79:72:13:f6:c5:05:5d:a7:
25:0e:c0:97:46:62:6c:de:7a:7d:94:a3:cf:f2:d0:
7f:89:26:94:14:5a:5c:8a:e1:78:bf:3e:e1:1c:1d:
bc:ac:f9:10:3e:46:19:cf:5a:90:fe:ca:64:e3:d4:
dc:0f:1e:18:be:80:ea:3a:f5:90:91:0a:be:5f:d7:
92:de:2a:da:42:7a:0b:52:ce:bf:7a:34:d1:83:88:
b2:f0:c3:17:89:57:06:9e:f3:6b:0b:54:30:76:32:
1f:1d:6f:5b:cf:20:c3:a7:61:41:1b:b3:81:56:a1:
3a:00:6b:f9:3b:79:26:41:cd:ea:08:61:28:24:42:
7b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:74:B0:8B:0D:36:8A:37:9A:34:6F:74:CF:E5:22:53:1B:23:5B:BF
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/34352e38382e3139312e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.191.0/24
Signature Algorithm: sha256WithRSAEncryption
38:e2:ef:5f:a7:4c:5d:fe:6e:3d:fa:b3:95:a2:5e:a9:3d:f6:
ac:92:c7:d6:64:01:04:4a:02:9d:b6:5b:0f:f1:e3:66:55:eb:
36:18:28:05:ee:60:8c:ba:13:ad:ab:a7:ac:ae:61:61:3e:35:
34:7b:59:7b:20:42:33:4c:82:ab:7b:6c:c0:69:71:ed:ce:18:
62:f2:66:af:da:2e:9a:b7:48:54:0a:d7:40:32:53:47:42:f9:
7d:91:bc:ce:a3:b3:ad:57:00:9f:fd:1d:10:4f:ff:82:de:96:
00:c6:38:c3:e7:3a:78:24:fa:8a:94:bd:e5:d8:e9:53:d5:e2:
9a:7a:f9:4e:fa:52:95:14:2c:d7:43:b7:f2:ee:2b:d8:8d:e9:
03:96:09:20:94:87:97:6b:32:6a:1e:6a:bb:df:89:c1:89:b3:
54:b6:f6:a3:1f:11:1f:d2:1c:28:5c:05:ee:24:9c:05:7f:af:
f3:f6:c9:1c:f3:aa:b3:f7:a1:a1:37:5d:4d:85:3a:11:56:6d:
70:3c:ec:8a:71:4c:6d:13:1a:61:f5:b5:2c:9b:a8:3d:6b:9f:
13:4c:bd:c3:35:97:af:4c:dd:fe:95:51:49:1d:0a:50:e3:26:
8f:c3:4d:a9:59:73:28:80:d4:cb:78:08:e3:51:aa:02:c0:28:
96:50:7e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org