Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/37372e37332e32302e302f32322d3232203d3e20323033303631.roa
File: 37372e37332e32302e302f32322d3232203d3e20323033303631.roa (raw, json)
Hash identifier: 0DKOVNVC1tI3CJ+wa+UHKNFQx2o1dhPngGTZr1gQcC4=
Subject key identifier: 96:95:F4:CA:62:56:EF:E3:46:17:A4:80:6E:43:19:9C:75:9C:4E:56
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 6C0C1736EC920B4C6E7CF92E36C35F96DC1597E8
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/37372e37332e32302e302f32322d3232203d3e20323033303631.roa
Signing time: Sat 22 Oct 2022 04:33:33 +0000
ROA not before: Sat 22 Oct 2022 04:28:33 +0000
ROA not after: Sat 21 Oct 2023 04:33:33 +0000
asID: 203061
IP address blocks: 77.73.20.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:0c:17:36:ec:92:0b:4c:6e:7c:f9:2e:36:c3:5f:96:dc:15:97:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:33 2022 GMT
Not After : Oct 21 04:33:33 2023 GMT
Subject: CN=9695F4CA6256EFE34617A4806E43199C759C4E56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:62:d8:4e:ab:5a:a7:84:89:b6:a9:9b:51:5b:
4b:5d:a4:7d:bd:d7:8a:f6:a2:ad:97:c7:49:bf:e2:
0d:aa:cc:99:ab:ab:ba:98:b6:e6:db:66:24:7f:b8:
42:95:76:46:1b:06:f5:27:38:45:a6:f9:23:50:77:
00:a3:3b:dc:1b:79:b6:b6:75:38:80:ab:73:d3:36:
5a:d8:51:b0:07:d5:e3:bc:30:bd:a5:3c:eb:43:80:
9b:90:ba:8a:1b:b0:76:89:c6:cb:bd:02:bf:d3:82:
bd:f5:ad:74:96:6e:6f:7c:69:f6:4f:87:82:be:f9:
64:7a:23:6c:44:20:7c:5e:73:6f:43:4e:a9:16:8b:
fe:62:f3:40:08:09:3d:9f:00:a8:c6:ee:9a:20:dd:
98:0d:2d:96:ca:25:5d:5a:be:9e:17:ca:ae:01:62:
29:7c:f1:39:8d:bf:26:22:fb:21:80:6f:39:f7:dc:
11:e0:1a:21:76:6a:6f:7c:d0:a0:90:43:f7:e7:2a:
06:5f:42:b4:ce:fc:e9:18:ca:49:4a:1d:45:81:e5:
31:50:36:84:de:8d:e2:55:fb:01:f4:68:94:52:89:
16:2f:6a:98:fc:76:33:4c:94:2d:05:3e:bc:34:9d:
81:f0:f7:70:00:01:fb:ac:22:77:8e:8d:c4:4e:37:
4b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:95:F4:CA:62:56:EF:E3:46:17:A4:80:6E:43:19:9C:75:9C:4E:56
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/37372e37332e32302e302f32322d3232203d3e20323033303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.20.0/22
Signature Algorithm: sha256WithRSAEncryption
66:93:29:d2:bf:13:d0:df:e0:ee:36:e7:28:31:00:43:d4:9d:
c2:cc:e8:e4:68:87:e8:76:73:c7:0a:fc:8b:bc:8d:23:ba:0b:
91:77:ad:02:40:b8:67:9d:4a:6b:9a:9c:d5:c8:50:1e:5d:95:
14:b1:bd:96:4b:f8:8e:52:ae:b5:71:70:26:48:da:1e:26:6e:
a3:88:c9:0d:24:a0:54:91:10:e4:1e:7c:ae:1f:b2:39:60:0a:
92:d3:47:4a:8a:5c:65:63:86:80:34:f6:98:79:e9:2b:f1:62:
3a:6e:92:aa:6c:be:b0:4b:b9:f7:1a:88:fb:77:a8:e3:87:a0:
1c:07:40:8c:61:44:bf:d5:8b:1c:92:18:e6:ff:e0:bd:f8:fa:
58:75:23:9e:30:fd:5a:2a:1b:a1:ba:fd:46:2e:0a:81:59:82:
b8:e0:3d:f8:d0:e3:8c:37:50:a0:81:c3:a6:70:98:45:af:33:
47:fa:57:82:af:6e:65:0a:a6:8a:c7:05:29:39:35:54:db:63:
aa:4e:80:0a:8e:8d:17:7c:80:58:6b:08:ae:47:69:1b:45:9a:
a5:e6:65:cb:29:40:f6:b5:c4:82:dc:c5:ec:f8:5e:54:36:ed:
9d:fa:5e:73:3a:e1:c6:8e:3e:f3:7c:1e:66:96:51:bb:32:2e:
d2:43:84:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org