Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/211/33312e32342e38342e302f32342d3234203d3e20323033303631.roa
File: 33312e32342e38342e302f32342d3234203d3e20323033303631.roa (raw, json)
Hash identifier: kndY1rz+aA/OEttjNPunUAjLStbPaVIn03o002mdjg0=
Subject key identifier: 59:84:8D:F3:A9:42:7A:D6:6D:02:DA:DA:CE:C0:EA:7A:38:EC:56:9B
Certificate issuer: /CN=6d301966bcbbd889c257f256f1c15a261948bb65
Certificate serial: 301CDBF72E7ECC8BD6067DC53997D9115963464F
Authority key identifier: 6D:30:19:66:BC:BB:D8:89:C2:57:F2:56:F1:C1:5A:26:19:48:BB:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTAZZry72InCV_JW8cFaJhlIu2U.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/211/33312e32342e38342e302f32342d3234203d3e20323033303631.roa
Signing time: Sat 22 Oct 2022 04:33:40 +0000
ROA not before: Sat 22 Oct 2022 04:28:40 +0000
ROA not after: Sat 21 Oct 2023 04:33:40 +0000
asID: 203061
IP address blocks: 31.24.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:1c:db:f7:2e:7e:cc:8b:d6:06:7d:c5:39:97:d9:11:59:63:46:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d301966bcbbd889c257f256f1c15a261948bb65
Validity
Not Before: Oct 22 04:28:40 2022 GMT
Not After : Oct 21 04:33:40 2023 GMT
Subject: CN=59848DF3A9427AD66D02DADACEC0EA7A38EC569B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d4:83:8c:c6:66:79:39:32:ca:c4:13:20:fa:
09:45:2d:f1:b0:9b:1f:93:b7:d1:50:92:f1:9a:20:
b6:78:2e:65:f0:d9:57:3d:18:4e:34:56:e8:aa:e3:
85:d6:41:99:5b:99:75:5f:67:9f:ab:b2:91:e7:c4:
70:de:b8:77:6e:05:cd:89:0d:e8:7e:81:76:f6:82:
77:a1:b2:eb:08:fe:94:67:0d:4e:cb:24:8a:cc:55:
c4:9b:cf:44:58:92:1a:dd:d4:88:55:d7:a1:a3:ac:
77:16:c3:40:27:dd:b2:dc:e8:98:ed:bd:e2:a5:10:
d7:1a:7a:19:0f:fe:08:2a:7f:d4:af:df:c1:a7:f8:
3c:7d:f4:1e:8a:4f:2b:15:b0:f6:7f:af:9e:b9:19:
f8:c5:91:b1:be:b6:35:87:be:fe:3d:01:39:e4:c4:
de:1e:e9:6d:71:e3:8f:72:73:d4:be:8f:c8:41:4b:
be:ba:01:66:aa:00:02:b5:0a:f9:92:08:ee:c9:9d:
6e:15:cb:86:51:c7:0e:0d:d1:c5:ed:fd:4a:01:d5:
47:f7:f4:1e:b3:b4:cc:40:31:46:2f:86:3d:a2:17:
f2:b6:c0:c4:a0:36:5c:80:e9:a0:5f:30:64:54:47:
0f:12:a2:dd:73:15:c2:76:4d:6b:52:29:55:0e:1b:
89:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:84:8D:F3:A9:42:7A:D6:6D:02:DA:DA:CE:C0:EA:7A:38:EC:56:9B
X509v3 Authority Key Identifier:
keyid:6D:30:19:66:BC:BB:D8:89:C2:57:F2:56:F1:C1:5A:26:19:48:BB:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/211/6D301966BCBBD889C257F256F1C15A261948BB65.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTAZZry72InCV_JW8cFaJhlIu2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/211/33312e32342e38342e302f32342d3234203d3e20323033303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.84.0/24
Signature Algorithm: sha256WithRSAEncryption
11:dd:c8:cd:bb:7e:b3:0a:84:28:51:e4:be:a6:03:87:97:0d:
b8:32:45:8b:1b:66:d3:2d:92:ac:05:91:8f:58:7d:0b:05:d2:
15:76:b4:81:36:3d:79:21:20:ab:4a:04:5b:0d:28:d7:e9:93:
2d:d0:ac:46:3d:23:a2:b8:b3:91:c3:b3:12:7c:58:63:c8:da:
ec:4c:f0:23:43:52:58:27:6d:90:93:27:e4:69:19:07:d0:0a:
78:e8:7c:cd:46:66:d2:13:e1:32:07:25:99:80:87:c9:b0:08:
a4:80:fa:4e:6a:51:ea:ee:ca:6b:24:2e:38:7f:36:74:f1:5c:
cd:d1:38:f7:41:fe:ce:c1:e9:96:41:20:14:b1:eb:36:6d:93:
bd:69:a8:f7:ee:d8:06:30:77:dc:eb:22:39:80:a9:1b:34:c8:
24:af:3b:21:16:2d:fa:fa:80:3b:08:41:62:9a:b2:67:0e:1f:
59:47:a4:48:6b:9f:f4:a1:5b:79:7b:f1:d3:90:d8:3c:3c:d9:
9f:66:db:16:cb:45:af:96:3e:53:25:e5:fe:12:01:0b:9c:2f:
1f:eb:b1:33:d0:0b:53:cc:89:e7:3e:35:c4:5c:29:98:5f:ae:
69:2f:8c:8a:bb:95:1f:44:f5:94:17:17:88:97:3f:95:61:2d:
cb:58:2f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:55 2024 by rpki-client on console-ams.rpki-client.org