Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/38352e3230322e38322e302f32342d3332203d3e203536383736.roa
File: 38352e3230322e38322e302f32342d3332203d3e203536383736.roa (raw, json)
Hash identifier: RBUurbTXXUcxu6JxBz92Ry50s++kwxjajWvcWjnPHvw=
Subject key identifier: 4C:A3:71:62:AA:19:E4:12:F5:4D:4B:74:E2:3E:9B:BE:D3:6F:E9:92
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 30C8259476C38C8F220272DC6C8CC5541B5E7A73
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/38352e3230322e38322e302f32342d3332203d3e203536383736.roa
Signing time: Sat 22 Oct 2022 04:33:37 +0000
ROA not before: Sat 22 Oct 2022 04:28:37 +0000
ROA not after: Sat 21 Oct 2023 04:33:37 +0000
asID: 56876
IP address blocks: 85.202.82.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:c8:25:94:76:c3:8c:8f:22:02:72:dc:6c:8c:c5:54:1b:5e:7a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Oct 22 04:28:37 2022 GMT
Not After : Oct 21 04:33:37 2023 GMT
Subject: CN=4CA37162AA19E412F54D4B74E23E9BBED36FE992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ec:b5:be:49:72:97:ac:db:ed:07:a2:60:6f:
fc:8b:72:49:d3:43:75:5b:c2:cc:ed:f0:2d:79:77:
b3:0c:b7:15:05:0b:d8:c7:8d:20:f0:3a:1e:bc:8b:
13:0c:b5:07:96:f6:23:73:51:49:a3:a2:bc:81:4f:
b1:e4:69:44:43:78:f8:23:bb:41:5e:fa:65:c1:88:
43:68:26:9d:1e:8e:52:9a:b6:27:b5:71:9c:b4:0e:
db:b3:f9:57:06:01:fe:61:83:70:1a:f4:9e:4b:a6:
07:ba:1c:1c:8a:35:f2:34:b7:7b:2e:63:85:06:21:
64:58:3d:7d:e2:45:d5:69:da:c0:ac:37:f3:73:6a:
1b:68:01:9b:3e:28:de:32:4d:aa:2c:e8:86:c4:34:
5e:3a:2e:77:3a:d9:5c:48:bc:a7:51:ae:b3:2a:9e:
f2:50:eb:46:69:2a:23:1f:07:47:d7:87:6a:c8:2d:
80:8a:c7:39:a5:69:9d:a6:a1:1b:49:7b:49:aa:42:
65:54:0d:08:54:4d:1c:57:28:7e:83:5b:ae:0f:61:
57:b7:c3:54:ae:43:e6:07:fc:91:ca:47:bb:2b:77:
62:74:f3:db:54:f5:6e:22:a3:67:d2:e3:ca:6b:71:
f5:e3:53:ab:9c:e5:86:eb:88:97:32:c1:0f:f2:66:
e5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A3:71:62:AA:19:E4:12:F5:4D:4B:74:E2:3E:9B:BE:D3:6F:E9:92
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/38352e3230322e38322e302f32342d3332203d3e203536383736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.82.0/24
Signature Algorithm: sha256WithRSAEncryption
94:36:fd:4a:60:65:47:02:32:50:5a:fc:f6:d9:86:8d:71:0b:
60:ea:e3:4a:9e:67:bf:e8:c9:8a:ae:78:95:bc:17:d1:d7:35:
ff:38:17:eb:44:07:a3:0c:0d:a7:75:51:64:a0:c8:12:48:dd:
58:c8:69:cd:39:4f:9e:4d:d1:78:dd:92:67:d4:8d:36:cf:cc:
fd:3e:5a:ed:4d:d5:ce:73:79:ec:40:99:30:bd:8f:d9:5d:2d:
52:51:ea:eb:da:0a:c4:5f:57:ff:ef:e6:9d:cf:96:53:a2:36:
6d:01:41:98:e3:b6:eb:82:2d:b0:b2:64:62:b1:aa:60:a3:a7:
cd:44:65:40:63:f9:18:02:92:4b:f8:1a:08:f3:7b:bb:4e:cb:
e2:82:9c:51:c7:cf:ea:ee:82:3c:85:9d:96:b5:c2:a0:fa:fa:
f9:5f:5e:ab:7c:8c:6f:03:2d:c2:c4:eb:0f:40:8e:57:a7:72:
e6:2f:89:9c:6f:44:ca:91:ae:e6:fe:79:2c:5c:21:d5:6f:81:
7c:11:64:c4:fb:a6:96:86:fd:9b:65:47:59:5e:c4:01:1a:b3:
aa:f2:9e:47:13:ed:a1:32:e5:b5:75:44:d7:e1:e4:f3:35:43:
65:1d:7e:f1:84:23:60:38:ce:97:ca:30:ef:59:bd:6d:0c:90:
47:17:2a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:38 2023 by rpki-client on console-ams.rpki-client.org