Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/352e3130342e37372e302f32342d3234203d3e2030.roa
File: 352e3130342e37372e302f32342d3234203d3e2030.roa (raw, json)
Hash identifier: YdAb5vGH266HzhDQcWc7VPXHBFrOPAjy+9LT4SodL7Y=
Subject key identifier: AF:89:A6:5E:B2:D9:43:07:45:01:5F:B3:4B:45:D4:33:30:AE:0A:AB
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 0780A17CEC59DCFF7BFA0F2D4755053B258C983A
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3130342e37372e302f32342d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:47:09 +0000
ROA not before: Fri 03 Mar 2023 15:42:09 +0000
ROA not after: Fri 01 Mar 2024 15:47:09 +0000
asID: 0
IP address blocks: 5.104.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:80:a1:7c:ec:59:dc:ff:7b:fa:0f:2d:47:55:05:3b:25:8c:98:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:42:09 2023 GMT
Not After : Mar 1 15:47:09 2024 GMT
Subject: CN=AF89A65EB2D9430745015FB34B45D43330AE0AAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:64:09:56:d3:91:73:6c:fb:7a:7e:aa:07:57:
5f:b8:3f:13:51:c8:7e:48:36:4d:2c:31:20:d7:30:
24:f2:82:17:7a:82:62:a2:7a:4c:18:c2:c9:92:c7:
18:b7:9d:8c:54:23:a5:9a:00:fd:fa:59:fa:5b:35:
35:37:89:f8:5f:95:81:d6:1a:09:0e:a7:2e:62:2c:
c1:1c:8b:f7:8e:78:8c:bf:ae:04:77:d3:10:a7:70:
dd:58:ca:7c:eb:a9:86:e6:f4:39:a2:e1:97:72:72:
5f:1e:a9:d0:eb:47:64:30:02:f3:11:1d:c9:22:c3:
a4:15:4a:d1:2c:fa:50:3a:69:51:ae:05:78:79:2f:
f3:32:39:3f:31:4a:b2:4e:e9:75:b5:20:01:10:28:
65:d4:94:cb:d9:50:93:cb:bb:ef:dc:f6:fc:62:e6:
7f:a0:cf:94:22:df:1d:39:de:de:fc:46:7a:23:49:
09:72:0a:b0:27:23:88:f9:7c:95:dc:98:b5:64:88:
3f:ae:b4:cb:2c:00:30:05:20:80:13:d4:be:d2:3e:
4f:6e:19:b9:7f:2d:75:d9:42:8d:f1:54:a4:30:75:
e7:82:95:8e:e2:42:d2:7c:c3:fa:6f:b8:d6:dd:9d:
c6:82:4e:2f:a6:a4:18:dd:38:99:2e:ef:12:37:b0:
82:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:89:A6:5E:B2:D9:43:07:45:01:5F:B3:4B:45:D4:33:30:AE:0A:AB
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3130342e37372e302f32342d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.77.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2e:e8:29:fa:0f:b1:e4:f0:45:21:88:40:72:22:59:2f:4e:
a0:0a:0f:b3:87:c0:ea:f8:8c:50:0e:d3:76:a3:a5:f1:93:5d:
7d:ae:6a:5f:70:f6:a9:94:1b:7e:3e:7b:f1:ca:f7:a9:f2:ab:
10:54:05:63:82:74:b3:d4:c9:f3:c9:fc:4a:49:57:6c:6f:90:
dc:b5:af:ef:02:80:f5:4a:2d:e2:76:9a:20:8f:da:71:32:2d:
ec:82:1e:b4:0b:89:17:cf:3b:63:30:36:3d:3b:09:ec:d0:0b:
f0:3a:2d:5b:d3:36:3c:a5:07:85:02:a8:9e:49:13:9d:30:12:
11:d3:bb:6e:1f:09:77:52:4a:50:4f:4d:82:dc:c0:24:75:d2:
e3:57:43:e3:1f:ad:c7:6c:83:3a:75:e7:fb:96:9c:c0:5a:8f:
ec:d9:2e:f6:70:48:e4:07:77:bc:8c:98:fc:15:b9:4e:e5:28:
88:58:f7:22:af:dc:81:e7:3b:03:26:4f:33:9a:99:59:e7:03:
ef:ea:39:4d:39:03:b8:3d:d1:ab:6f:bb:b1:7d:c7:c1:8e:f1:
9b:32:b7:63:09:bc:dc:cd:b2:08:5a:11:65:13:1e:57:e4:97:
9e:80:1c:f5:c1:62:d6:31:4a:e1:6f:94:ef:15:b1:03:0c:72:
d4:02:4f:71
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgIUB4ChfOxZ3P97+g8tR1UFOyWMmDowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMzAzMDMxNTQyMDlaFw0yNDAzMDExNTQ3MDlaMDMxMTAvBgNV
BAMTKEFGODlBNjVFQjJEOTQzMDc0NTAxNUZCMzRCNDVENDMzMzBBRTBBQUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ZAlW05FzbPt6fqoHV1+4PxNR
yH5INk0sMSDXMCTyghd6gmKiekwYwsmSxxi3nYxUI6WaAP36WfpbNTU3ifhflYHW
GgkOpy5iLMEci/eOeIy/rgR30xCncN1YynzrqYbm9Dmi4Zdycl8eqdDrR2QwAvMR
Hckiw6QVStEs+lA6aVGuBXh5L/MyOT8xSrJO6XW1IAEQKGXUlMvZUJPLu+/c9vxi
5n+gz5Qi3x053t78RnojSQlyCrAnI4j5fJXcmLVkiD+utMssADAFIIAT1L7SPk9u
Gbl/LXXZQo3xVKQwdeeClY7iQtJ8w/pvuNbdncaCTi+mpBjdOJku7xI3sIIHAgMB
AAGjggHkMIIB4DAdBgNVHQ4EFgQUr4mmXrLZQwdFAV+zS0XUMzCuCqswHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmBy
c3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC8y
LzM1MmUzMTMwMzQyZTM3MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMC5yb2Ew
GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAAVoTTANBgkqhkiG9w0BAQsFAAOCAQEAYS7oKfoPseTwRSGIQHIiWS9O
oAoPs4fA6viMUA7TdqOl8ZNdfa5qX3D2qZQbfj578cr3qfKrEFQFY4J0s9TJ88n8
SklXbG+Q3LWv7wKA9Uot4naaII/acTIt7IIetAuJF887YzA2PTsJ7NAL8DotW9M2
PKUHhQKonkkTnTASEdO7bh8Jd1JKUE9NgtzAJHXS41dD4x+tx2yDOnXn+5acwFqP
7Nku9nBI5Ad3vIyY/BW5TuUoiFj3Iq/cgec7AyZPM5qZWecD7+o5TTkDuD3Rq2+7
sX3HwY7xmzK3Ywm83M2yCFoRZRMeV+SXnoAc9cFi1jFK4W+U7xWxAwxy1AJPcQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org