Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/352e3235332e3233322e302f32322d3234203d3e2030.roa
File: 352e3235332e3233322e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: 3eNtJl+pre2oMV7NnKNYN7fmobrNKZDwkP/nIe4LFPg=
Subject key identifier: 81:B4:E7:80:51:7E:B9:0B:45:C0:61:DA:F7:88:79:3B:52:27:7F:C6
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 23025C8694D709A6EE748C2694F51EE25D94D5AC
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3235332e3233322e302f32322d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:52:14 +0000
ROA not before: Fri 03 Mar 2023 15:47:14 +0000
ROA not after: Fri 01 Mar 2024 15:52:14 +0000
asID: 0
IP address blocks: 5.253.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:02:5c:86:94:d7:09:a6:ee:74:8c:26:94:f5:1e:e2:5d:94:d5:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:47:14 2023 GMT
Not After : Mar 1 15:52:14 2024 GMT
Subject: CN=81B4E780517EB90B45C061DAF788793B52277FC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cb:03:96:88:60:fb:47:c8:18:58:07:84:f2:
e2:3c:a9:9f:a6:7b:8b:fc:80:1a:1d:3f:5d:9f:1d:
32:0b:cc:5a:46:3b:d9:18:08:23:a4:d1:6a:d7:fc:
84:b0:a4:e7:8e:c7:02:e2:2a:53:ae:ed:54:de:07:
36:47:ad:64:00:d0:a6:8c:24:6b:aa:8d:c4:bf:3b:
05:8d:9a:c5:1a:b0:b6:41:d7:10:c6:a3:88:50:d0:
77:e9:08:93:96:51:36:9f:f4:20:c8:a9:2a:74:48:
7f:d1:0e:26:6b:91:14:2c:52:57:e7:cc:85:6a:2f:
35:26:be:26:ef:64:02:94:0a:8f:8b:23:d7:14:74:
5f:31:4a:6e:44:e0:29:29:88:8f:74:19:af:12:89:
21:12:df:9d:8d:10:5b:e4:14:68:69:41:6d:a3:ed:
78:4b:14:d8:26:8c:88:6f:b3:ef:79:41:18:3b:64:
b3:e0:9d:e2:f7:3d:aa:93:70:32:e5:c4:21:1f:08:
f7:30:a1:a8:21:f3:22:ed:48:98:de:0c:6a:0a:3a:
f4:20:b5:d1:05:4c:41:c4:6f:eb:25:52:69:3b:f5:
40:90:1f:9c:3d:7b:e1:e1:26:92:85:b3:58:82:06:
2b:5a:20:8a:5d:9b:bf:79:8a:df:40:ba:b6:95:38:
1d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B4:E7:80:51:7E:B9:0B:45:C0:61:DA:F7:88:79:3B:52:27:7F:C6
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/352e3235332e3233322e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.232.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:fe:62:4e:01:b0:d8:e1:d6:f3:1c:88:56:5a:30:82:f0:2c:
99:3b:7c:28:d8:67:51:a1:7e:2c:fc:06:66:87:b1:b0:ba:52:
0b:a8:54:da:12:d9:32:a7:4b:d2:61:f8:35:0d:50:c3:44:6a:
1b:ea:08:d9:ae:54:4f:50:b3:5d:b0:5d:a6:83:75:5b:29:55:
72:5e:e7:61:4e:9c:1e:cc:ce:4d:94:4a:98:21:a7:13:a6:00:
2e:c0:b9:b3:60:2c:5d:66:cb:9a:93:5b:f9:4b:39:dd:42:12:
2c:a9:30:03:c1:44:27:b3:da:12:11:60:47:32:e6:47:d5:07:
5a:2e:1e:6e:6a:f7:0a:8e:2b:06:00:ba:66:43:3c:8a:12:0b:
70:46:3a:27:89:1f:9b:fd:5b:52:2c:2c:52:25:fd:af:d6:5c:
fc:00:f8:b9:bc:c9:f2:81:ee:41:e4:c7:61:91:78:af:c2:9d:
d9:12:e3:52:bb:19:a5:5a:68:51:f7:d7:91:e3:c2:f8:f5:eb:
0d:2f:62:01:4d:ae:84:92:8b:d8:d6:a2:0b:6f:d9:79:e2:6c:
47:01:3f:ef:96:f3:2c:7b:04:96:2d:0f:d7:60:99:b6:ec:c2:
5e:e2:aa:12:98:17:e4:16:c4:2b:b5:cc:75:c6:be:35:e9:a8:
00:fa:d7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org