Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e31332e302f32342d3234203d3e203237343538.roa
File: 33312e3232302e31332e302f32342d3234203d3e203237343538.roa (raw, json)
Hash identifier: z0j4Xnpd9CTpZoeRr2MMLdKEtig1YaCa9tjSgWE1Y5Y=
Subject key identifier: CB:8E:F2:B7:5C:01:B2:C4:2A:3A:3D:9A:AD:96:76:A4:41:30:57:2E
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 1C7F629852D6D02258C614D6A3073D93A3AF4B46
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e31332e302f32342d3234203d3e203237343538.roa
Signing time: Sat 22 Oct 2022 04:34:25 +0000
ROA not before: Sat 22 Oct 2022 04:29:25 +0000
ROA not after: Sat 21 Oct 2023 04:34:25 +0000
asID: 27458
IP address blocks: 31.220.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:7f:62:98:52:d6:d0:22:58:c6:14:d6:a3:07:3d:93:a3:af:4b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:25 2022 GMT
Not After : Oct 21 04:34:25 2023 GMT
Subject: CN=CB8EF2B75C01B2C42A3A3D9AAD9676A44130572E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:31:55:1a:ed:19:3d:e7:5c:36:78:a0:1c:8f:
d4:9a:49:0c:cf:39:c5:d0:72:62:80:9b:ba:2d:41:
09:8a:23:f0:9e:75:1d:95:d1:13:56:3a:7c:0a:9b:
c7:9b:18:e5:80:27:42:11:dd:8a:6f:e0:f3:72:79:
dc:10:bd:4b:f1:93:92:0f:8a:60:cc:cf:0d:cc:26:
c8:f1:31:7c:65:df:66:42:12:a7:63:86:46:a0:55:
4a:f9:db:e8:75:83:f8:8d:c0:8c:cc:41:da:18:22:
7d:b7:3e:26:e9:fd:f1:19:6c:2b:bd:4b:d1:53:15:
a3:9e:f5:dd:14:ec:17:c8:0d:c6:04:38:4b:c4:e2:
83:22:c9:03:76:ce:98:7a:93:45:f3:5b:79:3a:c5:
73:83:19:07:4e:25:40:67:aa:a7:51:81:c6:69:97:
24:80:53:4b:ff:0c:cc:c9:b0:40:5f:e8:3f:a8:da:
5d:6d:4a:aa:45:6e:61:01:22:be:f4:41:51:7a:c5:
87:0d:60:29:50:f8:4e:5f:be:30:b9:20:28:53:a4:
5a:eb:26:6a:bf:47:f6:02:6a:b6:a7:8d:63:48:16:
3b:b2:86:f6:7c:45:f5:58:da:2e:f3:15:1f:1e:d7:
1a:44:5d:50:69:53:f1:aa:45:b7:c3:ed:9c:de:ff:
c1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8E:F2:B7:5C:01:B2:C4:2A:3A:3D:9A:AD:96:76:A4:41:30:57:2E
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e31332e302f32342d3234203d3e203237343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:1b:cd:68:40:95:6d:57:e2:31:83:3e:54:91:4e:9f:cf:13:
a7:b0:25:1b:55:24:10:02:a0:06:ed:eb:13:76:96:3a:09:ad:
89:23:11:a4:bc:45:9a:bb:5e:4d:df:76:25:f2:78:9f:c5:c4:
98:17:28:50:26:5a:77:e4:34:77:cb:ec:b8:71:f2:6c:84:ef:
4d:82:0f:14:b3:d0:3d:37:f5:e6:3b:ad:8d:99:ac:1e:cf:17:
05:23:2b:ba:fe:8e:a4:2e:45:d3:95:6b:02:3a:b0:84:4b:47:
c3:9f:de:e5:ed:8e:9d:ed:47:6f:b3:30:a9:03:24:aa:7c:2f:
7e:da:96:52:6b:4d:fc:bb:f2:4d:dc:6d:68:63:d7:15:da:32:
36:61:bc:89:52:c2:81:3d:bc:6e:e9:f3:7f:50:a6:4f:ab:e0:
30:62:ae:f0:11:e8:f3:5b:4e:7f:8b:1c:69:67:96:7d:de:3e:
21:35:6e:d5:c8:a6:59:bd:93:ab:3c:51:79:c2:14:00:33:1b:
c5:44:6e:ff:f8:4d:ed:1e:2f:ce:25:bc:90:06:21:b2:5d:a2:
a0:bc:aa:14:9e:99:51:e4:5d:f7:81:e6:a7:1d:9d:77:fa:df:
4f:73:38:49:0a:b9:bf:da:02:c7:6d:2c:a2:02:8b:f9:79:9e:
8f:48:77:be
-----BEGIN CERTIFICATE-----
MIIE5TCCA82gAwIBAgIUHH9imFLW0CJYxhTWowc9k6OvS0YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMjEwMjIwNDI5MjVaFw0yMzEwMjEwNDM0MjVaMDMxMTAvBgNV
BAMTKENCOEVGMkI3NUMwMUIyQzQyQTNBM0Q5QUFEOTY3NkE0NDEzMDU3MkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOMVUa7Rk951w2eKAcj9SaSQzP
OcXQcmKAm7otQQmKI/CedR2V0RNWOnwKm8ebGOWAJ0IR3Ypv4PNyedwQvUvxk5IP
imDMzw3MJsjxMXxl32ZCEqdjhkagVUr52+h1g/iNwIzMQdoYIn23Pibp/fEZbCu9
S9FTFaOe9d0U7BfIDcYEOEvE4oMiyQN2zph6k0XzW3k6xXODGQdOJUBnqqdRgcZp
lySAU0v/DMzJsEBf6D+o2l1tSqpFbmEBIr70QVF6xYcNYClQ+E5fvjC5IChTpFrr
Jmq/R/YCaranjWNIFjuyhvZ8RfVY2i7zFR8e1xpEXVBpU/GqRbfD7Zze/8HzAgMB
AAGjggHvMIIB6zAdBgNVHQ4EFgQUy47yt1wBssQqOj2arZZ2pEEwVy4wHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4Zq
cnN5bmM6Ly9ycGtpMS50ZXJyYXRyYW5zaXQuZGUvcmVwby9UZXJyYVRyYW5zaXQv
NC8zMzMxMmUzMjMyMzAyZTMxMzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3
MzQzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAH9wNMA0GCSqGSIb3DQEBCwUAA4IBAQCnG81oQJVt
V+Ixgz5UkU6fzxOnsCUbVSQQAqAG7esTdpY6Ca2JIxGkvEWau15N33Yl8nifxcSY
FyhQJlp35DR3y+y4cfJshO9Ngg8Us9A9N/XmO62NmawezxcFIyu6/o6kLkXTlWsC
OrCES0fDn97l7Y6d7UdvszCpAySqfC9+2pZSa038u/JN3G1oY9cV2jI2YbyJUsKB
Pbxu6fN/UKZPq+AwYq7wEejzW05/ixxpZ5Z93j4hNW7VyKZZvZOrPFF5whQAMxvF
RG7/+E3tHi/OJbyQBiGyXaKgvKoUnplR5F33geanHZ13+t9PczhJCrm/2gLHbSyi
Aov5eZ6PSHe+
-----END CERTIFICATE-----
Generated at Tue May 13 17:52:31 2025 by rpki-client