Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/2/39312e3231342e36342e302f32332d3234203d3e2030.roa
File: 39312e3231342e36342e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: EB152o8GsiNTRzmJH/a0HBdq1JRwzT7conl4+n/44G8=
Subject key identifier: 8D:46:00:2B:C9:53:49:37:9C:F0:00:34:A9:BF:AF:BA:26:72:DF:D8
Certificate issuer: /CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Certificate serial: 4C5F68CBC4E8A850F06D72175A8844BB657A6ECC
Authority key identifier: 07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/2/39312e3231342e36342e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:45:25 +0000
ROA not before: Fri 03 Mar 2023 15:40:25 +0000
ROA not after: Fri 01 Mar 2024 15:45:25 +0000
asID: 0
IP address blocks: 91.214.64.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:5f:68:cb:c4:e8:a8:50:f0:6d:72:17:5a:88:44:bb:65:7a:6e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
Validity
Not Before: Mar 3 15:40:25 2023 GMT
Not After : Mar 1 15:45:25 2024 GMT
Subject: CN=8D46002BC95349379CF00034A9BFAFBA2672DFD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:af:4a:84:8d:0b:cc:33:d5:00:21:62:0a:
24:99:9b:7e:fb:7d:2f:fe:8d:fb:91:23:33:25:30:
f5:29:5c:2a:0f:06:1a:9b:42:83:b5:b3:05:b1:58:
bb:fb:36:e6:94:be:a8:b2:93:39:c4:f6:82:8f:a4:
3d:aa:d1:54:26:df:01:36:14:49:9e:fa:43:1e:54:
ad:7e:97:4f:da:20:5b:b1:5c:14:8d:a2:f6:26:c7:
a3:35:92:35:36:02:b7:9d:cb:ea:0a:bf:f6:e8:25:
71:23:8e:9c:6b:2e:55:ab:a6:0a:4d:6c:31:f3:6a:
45:50:32:5e:ee:1a:bc:1a:0d:28:df:9b:7a:a4:dc:
c2:d1:44:27:3e:23:ca:0f:3f:70:32:e3:58:bf:bf:
39:c3:fe:d7:88:d6:bd:52:33:ab:25:48:e6:d3:18:
3d:41:a9:b2:1e:1d:25:95:0f:15:9e:93:1c:4a:b0:
6b:3f:b2:47:e1:23:ca:2f:01:5d:43:b0:eb:8d:69:
69:3c:80:34:1c:79:40:bc:82:b6:c6:52:b1:65:67:
37:e9:82:1b:b7:80:b3:8c:88:95:14:c9:18:8c:8d:
ad:06:9f:f7:3c:bb:f9:1e:9b:e7:b8:c8:cd:48:d1:
3d:f6:6d:e1:68:6e:00:98:06:be:0f:5a:ee:13:9f:
60:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:46:00:2B:C9:53:49:37:9C:F0:00:34:A9:BF:AF:BA:26:72:DF:D8
X509v3 Authority Key Identifier:
keyid:07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/39312e3231342e36342e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.64.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:48:6b:f5:35:1b:06:66:65:b9:0e:c9:0c:a0:02:c5:b8:60:
f8:29:88:e5:f5:7e:3f:88:89:2f:4f:8b:d4:1e:45:31:2f:94:
79:6e:ae:c9:36:38:96:60:b8:df:99:00:d7:28:ae:5f:3c:cc:
15:3d:2e:dd:32:fb:01:55:ec:db:d6:91:d5:9e:ec:b0:06:cf:
11:63:d0:27:d9:42:ab:08:8a:f9:18:37:fb:18:23:0a:6d:8a:
a0:a6:63:b0:b0:3f:30:8d:c0:22:38:98:5d:a3:d6:60:22:33:
a6:65:d3:bf:41:2b:5e:c5:85:68:b4:e0:06:57:bb:8c:5e:b9:
8c:d0:9b:f4:41:65:02:bd:57:ac:8f:ff:b7:7a:08:a8:93:d7:
1e:b0:2e:9b:c2:ea:eb:a4:5b:3a:5e:3b:81:91:ef:18:62:fa:
64:85:8e:a6:61:3e:df:82:e3:ba:36:2f:22:8b:1b:cf:03:ee:
e1:eb:c3:f7:d5:da:4c:37:1e:77:06:61:71:dc:50:58:e1:50:
21:2f:78:74:8b:73:da:72:81:94:6f:04:df:bb:cb:d8:14:fd:
ff:d6:63:56:7b:73:26:01:16:1c:fc:05:e8:9e:6d:eb:61:25:
ce:1b:64:ff:0f:d1:7d:0b:73:5a:a0:70:26:76:24:c6:b6:8e:
da:8e:9a:da
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUTF9oy8ToqFDwbXIXWohEu2V6bswwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDdhOGFmMmI1ZmU4MzFmZjU4OWViMzhhZTNjMDI1Y2U4
NzFmMjNlNzAeFw0yMzAzMDMxNTQwMjVaFw0yNDAzMDExNTQ1MjVaMDMxMTAvBgNV
BAMTKDhENDYwMDJCQzk1MzQ5Mzc5Q0YwMDAzNEE5QkZBRkJBMjY3MkRGRDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ga9KhI0LzDPVACFiCiSZm377
fS/+jfuRIzMlMPUpXCoPBhqbQoO1swWxWLv7NuaUvqiykznE9oKPpD2q0VQm3wE2
FEme+kMeVK1+l0/aIFuxXBSNovYmx6M1kjU2Aredy+oKv/boJXEjjpxrLlWrpgpN
bDHzakVQMl7uGrwaDSjfm3qk3MLRRCc+I8oPP3Ay41i/vznD/teI1r1SM6slSObT
GD1BqbIeHSWVDxWekxxKsGs/skfhI8ovAV1DsOuNaWk8gDQceUC8grbGUrFlZzfp
ghu3gLOMiJUUyRiMja0Gn/c8u/kem+e4yM1I0T32beFobgCYBr4PWu4Tn2BfAgMB
AAGjggHmMIIB4jAdBgNVHQ4EFgQUjUYAK8lTSTec8AA0qb+vuiZy39gwHwYDVR0j
BBgwFoAUB6ivK1/oMf9YnrOK48AlzocfI+cwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzIvMDdBOEFGMkI1RkU4MzFGRjU4OUVCMzhBRTNDMDI1Q0U4
NzFGMjNFNy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0I2aXZLMV9vTWY5WW5y
T0s0OEFsem9jZkktYy5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJy
c3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC8y
LzM5MzEyZTMyMzEzNDJlMzYzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMwLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQBW9ZAMA0GCSqGSIb3DQEBCwUAA4IBAQBPSGv1NRsGZmW5DskMoALF
uGD4KYjl9X4/iIkvT4vUHkUxL5R5bq7JNjiWYLjfmQDXKK5fPMwVPS7dMvsBVezb
1pHVnuywBs8RY9An2UKrCIr5GDf7GCMKbYqgpmOwsD8wjcAiOJhdo9ZgIjOmZdO/
QStexYVotOAGV7uMXrmM0Jv0QWUCvVesj/+3egiok9cesC6bwurrpFs6XjuBke8Y
YvpkhY6mYT7fguO6Ni8iixvPA+7h68P31dpMNx53BmFx3FBY4VAhL3h0i3PacoGU
bwTfu8vYFP3/1mNWe3MmARYc/AXonm3rYSXOG2T/D9F9C3NaoHAmdiTGto7ajpra
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:48 2023 by rpki-client on console-fra.rpki-client.org