Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34322e302f32342d3234203d3e203432373038.roa
File: 33312e3232302e34322e302f32342d3234203d3e203432373038.roa (raw, json)
Hash identifier: +BCRro7trbizDBsR7HDtWK2XjQtq1/5Dh6oAjyb0dtA=
Subject key identifier: 9B:60:42:57:03:A1:F7:CE:A3:0B:4A:DF:16:FF:DB:8B:AB:DD:51:11
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: 4190C176BEDEB8FA6521D0172297625B4EEED262
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34322e302f32342d3234203d3e203432373038.roa
Signing time: Sat 22 Oct 2022 04:34:36 +0000
ROA not before: Sat 22 Oct 2022 04:29:36 +0000
ROA not after: Sat 21 Oct 2023 04:34:36 +0000
asID: 42708
IP address blocks: 31.220.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:90:c1:76:be:de:b8:fa:65:21:d0:17:22:97:62:5b:4e:ee:d2:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Oct 22 04:29:36 2022 GMT
Not After : Oct 21 04:34:36 2023 GMT
Subject: CN=9B60425703A1F7CEA30B4ADF16FFDB8BABDD5111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9a:0e:55:6d:2d:71:0d:4f:6e:94:15:48:9d:
5b:ea:f9:b5:1b:13:b9:24:ac:2d:44:ad:fa:06:3b:
e7:2d:af:2a:4f:8f:b0:61:c1:2e:1c:13:34:e7:6d:
60:d5:35:5c:f9:c3:57:d6:30:b7:48:7d:15:3d:c3:
c0:ac:bd:fc:78:e5:d7:ff:ac:c0:91:92:9e:9b:b1:
64:fa:ba:9d:db:e4:f0:78:d1:1a:79:d9:9a:e4:0f:
7e:a7:65:59:a8:5e:49:46:1d:5a:14:fc:7d:b2:74:
52:8a:d6:4f:4c:a6:b2:e9:54:ed:1c:e8:c7:f9:29:
ca:5f:6c:b6:82:7d:9a:fc:84:a1:56:28:72:0e:dc:
56:5a:f5:ce:63:47:71:32:47:82:f1:97:f2:4f:e9:
07:24:c7:76:23:e6:f6:66:02:8f:7d:e6:57:83:19:
0e:c2:0e:10:c0:44:db:26:53:94:a5:ce:08:c4:49:
68:54:c7:02:56:da:c2:a9:9f:88:8c:58:88:23:f1:
e9:50:57:8a:74:21:22:a5:a0:9a:d3:28:7e:64:4e:
13:39:23:4d:8b:fe:79:90:a7:8c:88:c6:a6:8b:86:
57:1f:c3:f1:df:2c:47:fd:f9:87:60:cf:dc:89:0d:
ca:6a:02:b2:dc:68:6a:e9:fa:4a:3d:a8:7b:ea:09:
08:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:60:42:57:03:A1:F7:CE:A3:0B:4A:DF:16:FF:DB:8B:AB:DD:51:11
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/33312e3232302e34322e302f32342d3234203d3e203432373038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.42.0/24
Signature Algorithm: sha256WithRSAEncryption
74:54:7b:3a:b2:dc:34:de:1b:4c:95:96:83:12:f3:55:eb:15:
c7:ac:4a:dc:69:41:26:8a:ec:6e:a1:c4:3c:00:93:8a:81:40:
73:d5:09:0b:38:22:ee:d2:fe:88:50:39:61:bf:8c:18:4e:bd:
b0:5a:1e:26:08:04:db:87:fa:21:13:54:29:47:02:48:b3:81:
d3:a0:f0:79:9b:f8:b4:b8:d1:b1:3e:a3:08:b2:88:17:60:be:
59:ec:34:85:21:88:f2:e1:54:4c:22:1f:a3:a8:a3:41:78:43:
da:ee:5d:fe:0f:4d:8b:f9:5b:dd:e3:e0:b5:0b:91:8f:ee:eb:
44:8b:5a:fb:b2:3d:57:d8:96:b9:3d:11:42:94:a0:f1:ff:01:
1d:0d:25:48:30:4d:58:a3:e2:0f:09:1e:f3:26:7b:24:a7:52:
77:e5:88:35:f5:79:7a:42:fc:c4:60:98:dd:aa:d9:68:65:da:
79:49:91:91:21:14:a1:65:4d:92:1b:b5:8a:4f:ab:46:09:ed:
cf:9a:45:ba:6f:15:65:38:7e:33:ff:32:d1:43:5d:f9:10:22:
43:d6:2c:2e:32:19:c6:96:a6:ab:4b:7c:da:7b:16:4b:db:02:
fd:cb:c8:8d:71:d9:90:2e:dc:19:a7:1d:94:41:e4:e1:76:e5:
45:84:71:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 17:55:59 2025 by rpki-client