Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/326130313a3666303a3a2f33322d3332203d3e203432333636.roa
File: 326130313a3666303a3a2f33322d3332203d3e203432333636.roa (raw, json)
Hash identifier: nK7WrKUS05LH1wEbvJJPaN1mQ1tl0bwv+RZ+0uci0gw=
Subject key identifier: 03:7E:C4:DB:E7:D2:7E:EB:57:73:08:67:D3:59:B7:7C:77:6B:57:CA
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 41987362FF947264F6D2E59466FB917C73CA4CA5
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/326130313a3666303a3a2f33322d3332203d3e203432333636.roa
Signing time: Sat 22 Oct 2022 04:34:29 +0000
ROA not before: Sat 22 Oct 2022 04:29:29 +0000
ROA not after: Sat 21 Oct 2023 04:34:29 +0000
asID: 42366
IP address blocks: 2a01:6f0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:98:73:62:ff:94:72:64:f6:d2:e5:94:66:fb:91:7c:73:ca:4c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:29 2022 GMT
Not After : Oct 21 04:34:29 2023 GMT
Subject: CN=037EC4DBE7D27EEB57730867D359B77C776B57CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2b:47:4a:45:50:bd:05:0e:be:c3:c3:6d:3d:
04:00:e6:6a:3f:1b:d4:f4:7c:bd:08:17:be:40:ef:
3c:1c:d6:5d:34:b0:48:2a:12:aa:1c:fe:bf:77:ca:
10:9f:80:0e:ff:dc:22:db:f8:60:80:0a:f5:38:c6:
1b:d3:3a:b4:77:2b:90:21:76:61:85:70:d9:70:eb:
40:c1:5f:4c:18:84:96:be:5a:b1:c3:fc:45:cd:93:
3e:af:16:03:fe:68:15:41:c6:59:32:a8:73:a1:64:
79:c1:fd:5a:d8:23:21:0a:d9:eb:25:0c:2e:7f:b9:
79:85:09:44:2b:53:8d:5a:1a:75:c7:33:b3:4f:44:
55:3e:2e:d5:40:fe:54:af:a5:3c:1c:ff:c0:81:c8:
50:bf:62:11:47:a0:d5:b1:5f:44:dc:78:7f:0a:5b:
c8:5c:8c:8f:2f:d6:e8:ed:c4:63:00:ff:8e:e4:eb:
dc:12:be:63:1c:0f:40:59:d5:0c:a8:22:87:ce:53:
8d:32:b3:b3:9a:de:a7:7c:e4:cd:84:07:05:6b:6c:
27:4e:0d:1b:08:38:cd:1d:12:d2:97:ac:d2:48:a7:
ea:89:90:b0:3c:3b:dc:e8:b0:bc:7a:4c:16:45:b0:
0d:dd:20:0f:9d:4a:a5:e7:88:76:da:ee:15:8b:3c:
5a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7E:C4:DB:E7:D2:7E:EB:57:73:08:67:D3:59:B7:7C:77:6B:57:CA
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/326130313a3666303a3a2f33322d3332203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:6f0::/32
Signature Algorithm: sha256WithRSAEncryption
80:d0:54:b2:9c:e9:bc:eb:48:ec:96:e6:51:fb:53:af:7f:e2:
08:35:23:4f:92:05:32:84:0f:58:14:d9:83:52:63:9a:57:43:
69:d6:e9:a6:45:28:75:e3:32:ea:ee:3a:9f:c1:1c:8d:7f:21:
42:b5:e7:a6:f5:f7:9e:c0:12:46:e7:88:67:d4:9f:8d:16:da:
50:18:39:5b:ab:89:af:27:d9:87:1c:77:8c:c6:dc:e6:3b:2f:
93:9b:fd:6c:ec:81:08:a4:d1:68:63:f7:b7:94:15:db:fe:5f:
c4:f1:62:31:ee:4a:0a:71:4f:c5:85:dd:c7:27:5a:20:e7:c8:
a0:b2:ad:93:30:66:71:59:d3:8c:d2:15:17:9c:89:4a:e6:68:
54:ff:fb:65:80:40:89:ff:de:cc:d9:eb:6b:e7:e7:c4:a1:de:
51:86:6b:14:f0:ff:c3:ee:e9:6c:1e:21:4c:c3:c0:a7:fa:9b:
66:a4:49:14:12:90:03:fb:a4:f5:0b:f9:a3:fb:d6:f1:5b:77:
a7:1a:36:e1:ba:d0:8e:5b:31:b1:75:3c:dd:bb:c8:15:01:3f:
b8:cb:f1:e3:35:82:c4:7c:41:9b:38:31:49:da:03:fb:05:0e:
3b:22:0c:4f:c1:c6:09:5e:1e:c1:0d:51:7f:99:b9:02:0f:a7:
78:a4:c2:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 19:10:27 2025 by rpki-client