Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/352e3138322e31372e302f32342d3332203d3e203531313637.roa
File: 352e3138322e31372e302f32342d3332203d3e203531313637.roa (raw, json)
Hash identifier: SmYLVSmEY59ZC68i7nmNnVrDVWRAYDs04AYDO7qFviY=
Subject key identifier: 64:3F:64:6D:58:D8:C9:71:6B:9F:CD:7B:3C:9B:3B:04:D1:49:A0:23
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 1D9ED5FD3AA9464865AC18A6E4074673A89D9601
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3138322e31372e302f32342d3332203d3e203531313637.roa
Signing time: Sat 22 Oct 2022 04:33:29 +0000
ROA not before: Sat 22 Oct 2022 04:28:29 +0000
ROA not after: Sat 21 Oct 2023 04:33:29 +0000
asID: 51167
IP address blocks: 5.182.17.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:9e:d5:fd:3a:a9:46:48:65:ac:18:a6:e4:07:46:73:a8:9d:96:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:29 2022 GMT
Not After : Oct 21 04:33:29 2023 GMT
Subject: CN=643F646D58D8C9716B9FCD7B3C9B3B04D149A023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6a:a1:8a:fc:0b:bb:b1:02:88:94:4a:13:d3:
22:06:f5:73:c1:d3:d4:eb:f3:8c:8e:65:41:61:2e:
79:1d:6e:68:ae:10:3f:45:80:be:f6:d5:1a:7b:89:
f4:57:cc:3a:9c:7f:ee:fc:0d:67:66:ad:29:2f:57:
01:32:db:33:66:27:bf:74:ae:e7:4d:95:2a:ba:16:
06:56:61:03:12:a9:1f:d9:3d:d9:86:00:95:fd:b4:
7c:13:0d:93:6f:9a:f7:41:75:f0:3c:1c:f2:f6:56:
d4:e5:35:3f:be:d1:5c:29:27:3a:06:52:f6:9e:86:
15:9e:77:9f:3e:fc:1c:ba:f5:09:02:09:73:f0:e1:
81:98:7b:45:a0:5e:14:89:df:11:36:31:1b:15:05:
82:07:83:7f:29:9d:14:5e:83:b6:cd:3e:62:04:3d:
0c:50:8a:4a:18:fd:54:ae:e7:7d:ba:05:8f:2a:04:
a2:37:fb:08:7f:b3:c2:e0:eb:a0:f3:4f:70:5c:34:
9d:37:c8:04:58:c0:b1:b7:11:d0:c8:09:d7:94:93:
5a:54:03:ba:4a:a5:a6:90:1a:ad:b7:53:9a:41:3e:
97:67:b3:19:23:7d:d9:e3:64:cc:a8:a0:b8:2f:62:
1d:ca:5f:fc:c3:61:ea:0a:d3:88:f3:bd:af:6a:c0:
02:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:3F:64:6D:58:D8:C9:71:6B:9F:CD:7B:3C:9B:3B:04:D1:49:A0:23
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3138322e31372e302f32342d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.17.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:1c:4a:73:82:e6:ee:e3:a7:ca:35:ec:38:23:a8:8e:fe:3c:
35:1b:21:73:e0:e6:72:87:e3:0d:56:68:58:ac:91:07:96:6f:
59:c9:df:1e:20:42:28:d6:47:d3:2d:56:fb:e0:71:c4:73:2b:
4c:6b:6f:bc:46:cd:4e:a5:fa:c8:da:76:68:95:c9:2b:3e:7c:
e7:bf:65:b9:a4:d7:f7:cb:81:d9:aa:ad:b4:3f:f5:c3:a2:9b:
32:fa:b4:e4:32:f8:cf:68:c7:78:a8:ee:af:2f:b2:f5:45:ff:
16:87:ca:51:94:02:0f:9a:8a:39:8c:8b:3f:90:34:e3:9b:96:
61:32:a7:67:5a:d2:d0:6b:45:3c:f6:fc:94:10:f1:50:ec:8a:
82:4c:1e:8a:68:45:4f:e9:8d:9c:9b:bb:54:d9:d6:41:e1:12:
97:fd:f6:f1:cf:41:2b:e9:37:72:13:01:3d:79:b6:61:2b:e4:
ee:09:59:12:41:73:af:08:81:62:fb:47:a1:44:e9:11:a2:c3:
cf:a4:28:be:ee:fa:54:f3:8e:5f:bd:52:f1:4b:55:cc:1b:00:
00:bb:87:0d:aa:27:d0:59:fe:61:b2:ac:e1:61:22:93:99:46:
ef:23:4d:cd:ca:68:3b:9b:cb:fc:1a:72:10:bc:b6:59:92:95:
f6:a2:e6:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org