Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e342e302f32342d3234203d3e203530363733.roa
File: 33312e3232302e342e302f32342d3234203d3e203530363733.roa (raw, json)
Hash identifier: iYJ+yA4Yjcmm8irZueq2RNe70CkYebL3rJqr3jhqNXA=
Subject key identifier: B3:97:7C:F5:A3:97:19:1B:66:97:10:6C:CB:2E:12:4E:8A:33:C7:DA
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 50A67789D228EA88CAFD106F848C92B5921535D1
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e342e302f32342d3234203d3e203530363733.roa
Signing time: Sat 22 Oct 2022 04:34:33 +0000
ROA not before: Sat 22 Oct 2022 04:29:33 +0000
ROA not after: Sat 21 Oct 2023 04:34:33 +0000
asID: 50673
IP address blocks: 31.220.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:a6:77:89:d2:28:ea:88:ca:fd:10:6f:84:8c:92:b5:92:15:35:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:33 2022 GMT
Not After : Oct 21 04:34:33 2023 GMT
Subject: CN=B3977CF5A397191B6697106CCB2E124E8A33C7DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a2:ee:58:74:bf:7a:33:a6:6f:20:58:cf:51:
66:1f:a8:64:81:9c:d5:25:a3:f1:b4:18:69:a7:1b:
e6:e3:be:6c:c8:38:3f:6d:85:0e:35:cb:2c:34:fa:
e5:92:e8:42:b1:99:41:83:38:a0:7f:66:bb:9f:40:
4c:ad:a2:38:5a:25:0f:44:74:3e:f3:73:b7:75:a8:
b9:11:0d:86:28:6a:20:87:e0:19:ab:f7:89:ab:10:
f4:2a:97:02:4d:0e:73:05:30:88:99:ce:b1:32:de:
bd:a9:a9:be:4b:4a:2b:e8:be:e4:47:b8:d1:1e:b9:
1d:a4:86:b8:7f:5e:e0:e7:87:2d:5a:1b:62:37:ee:
bd:98:69:92:c9:fe:63:e4:74:47:72:a8:8e:08:23:
14:37:dc:48:aa:06:05:f0:0e:f0:6e:db:22:13:d5:
b5:45:f1:5a:9d:3a:06:6d:4a:cd:c9:08:2a:1a:b4:
33:0a:36:eb:84:45:14:4a:bf:8c:e9:c5:f6:0a:df:
d9:5d:34:bf:59:1e:c7:f0:81:78:14:02:59:0f:23:
83:0c:26:4d:a3:9f:16:78:b4:34:27:13:88:86:f0:
63:b1:a9:78:52:88:21:28:e8:dc:a9:4d:1f:09:7a:
4b:55:09:4e:43:6e:0f:5c:a8:f3:f1:9c:2a:7d:fa:
49:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:97:7C:F5:A3:97:19:1B:66:97:10:6C:CB:2E:12:4E:8A:33:C7:DA
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e342e302f32342d3234203d3e203530363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.4.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:35:42:90:83:04:e4:50:2a:01:50:4e:ad:46:44:1c:46:ec:
3a:51:47:17:3d:2f:b2:00:c6:13:a7:8b:d8:7b:42:e8:56:c7:
7c:cc:a4:99:76:81:92:15:c1:9f:9a:2c:18:d7:ee:40:a8:c6:
58:ec:ee:36:ec:4d:fe:e3:a6:37:bf:96:c8:78:be:5b:61:8c:
a1:59:2f:ac:4e:17:36:fb:d8:3d:3c:d9:9b:48:85:51:e8:40:
23:d3:77:f0:af:2c:a9:17:05:23:f0:04:46:cf:19:32:73:bd:
88:e3:9c:5f:3b:1f:5e:58:2f:04:f5:7c:89:06:05:7d:d4:34:
59:9b:69:7e:c9:94:75:7c:11:7d:7a:62:b7:0e:72:e5:f4:41:
63:43:cf:1c:c1:70:e8:04:91:02:b5:0b:58:d4:63:fb:bc:bf:
ef:0d:7a:bf:bc:72:71:12:4e:36:9c:0b:45:c3:89:ee:c6:4e:
db:75:2c:f9:ad:64:a3:c6:df:f2:9d:6c:2a:76:35:1d:d9:26:
df:4e:87:31:24:19:5d:8f:1d:8e:40:e8:15:11:d2:87:66:36:
d2:51:8f:03:1c:0f:30:ce:64:d3:13:03:39:6b:bc:3e:0c:df:
dc:4c:5b:ad:97:0c:46:95:08:4f:5e:aa:e7:ec:f6:69:06:7b:
be:2c:e3:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:50 2023 by rpki-client on console-fra.rpki-client.org