Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/352e3130342e37382e302f32332d3234203d3e2030.roa
File: 352e3130342e37382e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: J9glFAm6qRFWuc/5jl4KPQTBNVUSJmt1awFKCY59uoI=
Subject key identifier: A3:4B:5B:24:EB:2F:E1:07:5A:8A:74:9A:84:3A:32:78:50:72:6D:18
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 77BA7458BAEB31AD09A976D0B3E8E1D0DE4C1831
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3130342e37382e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:47:25 +0000
ROA not before: Fri 03 Mar 2023 15:42:25 +0000
ROA not after: Fri 01 Mar 2024 15:47:25 +0000
asID: 0
IP address blocks: 5.104.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:ba:74:58:ba:eb:31:ad:09:a9:76:d0:b3:e8:e1:d0:de:4c:18:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:42:25 2023 GMT
Not After : Mar 1 15:47:25 2024 GMT
Subject: CN=A34B5B24EB2FE1075A8A749A843A327850726D18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:97:86:1a:9e:3d:c3:3c:a8:a4:fe:08:06:47:
a8:cc:3a:d2:ac:f4:89:80:15:c6:d5:75:e8:0f:84:
93:67:bc:2d:99:ad:55:57:03:26:ff:b0:f7:9d:6a:
3c:dc:58:d0:b4:ed:f5:ce:16:f8:db:67:01:65:40:
e3:23:bc:93:44:03:7d:ac:84:08:9a:56:ce:ae:7d:
6d:c3:06:fd:93:af:d1:6c:86:6b:54:40:d5:04:3c:
7c:d3:c6:bc:22:ce:a6:45:30:5a:2d:ea:30:37:34:
05:38:4d:5a:90:25:93:89:08:17:00:c6:41:00:0b:
71:a3:92:b0:25:da:f0:0e:6b:01:42:3f:58:9e:2a:
fb:35:75:11:aa:a8:51:50:77:97:19:d7:90:cb:e4:
58:67:bc:1d:40:ca:3f:98:5d:d5:e3:8c:fd:1d:40:
cf:eb:d3:99:3b:dd:01:1b:6b:9c:e5:9b:4b:a5:b0:
f0:8e:9c:39:94:70:71:09:ef:dc:b2:92:05:63:c9:
58:1b:65:38:52:36:08:14:1a:1f:2b:cb:d7:b6:bc:
94:aa:10:82:d2:5f:8b:80:a2:a6:ed:e2:b3:8c:cd:
39:e8:f2:d5:99:74:25:33:47:45:a6:68:a7:de:1b:
ab:94:4b:fa:c3:64:a2:8f:71:d0:62:6e:a8:69:16:
b8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4B:5B:24:EB:2F:E1:07:5A:8A:74:9A:84:3A:32:78:50:72:6D:18
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3130342e37382e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.78.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:9f:bd:4d:da:19:9b:0d:e7:10:73:3f:a0:83:50:0e:ca:8a:
37:1f:ea:cb:3e:70:ff:42:af:6c:d9:84:87:c9:3a:fb:30:26:
39:72:6b:5c:44:a3:7d:fc:c5:32:b8:eb:48:86:7f:74:8b:4a:
01:cb:d4:ce:60:e2:66:d9:72:c5:2b:4c:ef:af:3a:14:cf:e9:
df:cc:0c:fc:84:d3:40:27:f2:63:31:ba:7f:da:ff:ba:e5:06:
af:79:6f:85:e0:16:69:05:40:33:69:51:93:35:4a:32:ff:82:
cd:8e:6c:2a:b4:93:84:b5:bb:c4:ef:08:15:6d:02:73:44:c6:
ea:13:36:bb:51:a5:78:2a:fa:70:9a:ef:04:0d:aa:f7:b3:3b:
07:56:bc:e5:e5:66:b3:7a:13:c4:01:7b:dd:65:75:45:6d:e8:
9d:c8:33:02:52:94:73:16:8a:1d:3e:70:96:97:00:e2:0a:dd:
3a:81:89:b8:26:04:d4:38:53:85:6d:fe:de:ba:91:3c:75:49:
c5:44:a5:eb:87:d7:ea:18:14:ac:dd:51:a3:81:9e:44:22:91:
1e:ac:48:e8:ce:6a:8f:8c:a6:0d:97:3f:a1:30:38:55:48:c4:
be:cb:5e:ae:c7:8a:8f:b8:fa:56:34:12:6a:dd:2a:f8:f9:4e:
d5:13:0d:7d
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgIUd7p0WLrrMa0JqXbQs+jh0N5MGDEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMzAzMDMxNTQyMjVaFw0yNDAzMDExNTQ3MjVaMDMxMTAvBgNV
BAMTKEEzNEI1QjI0RUIyRkUxMDc1QThBNzQ5QTg0M0EzMjc4NTA3MjZEMTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDal4Yanj3DPKik/ggGR6jMOtKs
9ImAFcbVdegPhJNnvC2ZrVVXAyb/sPedajzcWNC07fXOFvjbZwFlQOMjvJNEA32s
hAiaVs6ufW3DBv2Tr9FshmtUQNUEPHzTxrwizqZFMFot6jA3NAU4TVqQJZOJCBcA
xkEAC3GjkrAl2vAOawFCP1ieKvs1dRGqqFFQd5cZ15DL5FhnvB1Ayj+YXdXjjP0d
QM/r05k73QEba5zlm0ulsPCOnDmUcHEJ79yykgVjyVgbZThSNggUGh8ry9e2vJSq
EILSX4uAoqbt4rOMzTno8tWZdCUzR0WmaKfeG6uUS/rDZKKPcdBibqhpFrg9AgMB
AAGjggHkMIIB4DAdBgNVHQ4EFgQUo0tbJOsv4QdainSahDoyeFBybRgwHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmBy
c3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC8y
LzM1MmUzMTMwMzQyZTM3MzgyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMC5yb2Ew
GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAQVoTjANBgkqhkiG9w0BAQsFAAOCAQEAW5+9TdoZmw3nEHM/oINQDsqK
Nx/qyz5w/0KvbNmEh8k6+zAmOXJrXESjffzFMrjrSIZ/dItKAcvUzmDiZtlyxStM
7686FM/p38wM/ITTQCfyYzG6f9r/uuUGr3lvheAWaQVAM2lRkzVKMv+CzY5sKrST
hLW7xO8IFW0Cc0TG6hM2u1GleCr6cJrvBA2q97M7B1a85eVms3oTxAF73WV1RW3o
ncgzAlKUcxaKHT5wlpcA4grdOoGJuCYE1DhThW3+3rqRPHVJxUSl64fX6hgUrN1R
o4GeRCKRHqxI6M5qj4ymDZc/oTA4VUjEvsterseKj7j6VjQSat0q+PlO1RMNfQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org