Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/7/3133302e3138352e3131362e302f32332d3234203d3e2030.roa
File: 3133302e3138352e3131362e302f32332d3234203d3e2030.roa (raw, json)
Hash identifier: VkjEh9BlZhRgwyyj5cDBm/DQSttK+zFXojsHXhcX2Gs=
Subject key identifier: C0:49:D9:BC:DA:6C:FF:6B:20:B8:BC:BA:27:BD:AB:A2:0C:83:4A:9C
Certificate issuer: /CN=5dc970755824cb967cad6f3b964709b092d43069
Certificate serial: 66D24379B9895D3E580B6445E9758C72FB196641
Authority key identifier: 5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/7/3133302e3138352e3131362e302f32332d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:56:33 +0000
ROA not before: Fri 03 Mar 2023 15:51:33 +0000
ROA not after: Fri 01 Mar 2024 15:56:33 +0000
asID: 0
IP address blocks: 130.185.116.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:d2:43:79:b9:89:5d:3e:58:0b:64:45:e9:75:8c:72:fb:19:66:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc970755824cb967cad6f3b964709b092d43069
Validity
Not Before: Mar 3 15:51:33 2023 GMT
Not After : Mar 1 15:56:33 2024 GMT
Subject: CN=C049D9BCDA6CFF6B20B8BCBA27BDABA20C834A9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ab:8f:e4:4d:15:38:b4:5b:20:0c:68:43:3a:
2d:45:99:19:8f:77:65:72:b2:f4:56:ed:ce:03:ee:
35:54:c7:d0:9d:72:3d:4c:f0:3d:b3:f3:f3:f0:6a:
36:ec:c6:b2:18:aa:83:4a:a9:0c:6e:72:b4:90:a1:
bf:8e:ce:b3:8b:7b:f0:e0:ac:df:0f:bf:c0:59:b1:
96:a3:18:21:b4:76:61:98:72:30:0b:52:c2:a7:11:
f7:c3:4f:76:ff:84:20:c9:cb:69:e8:18:5a:f3:b1:
65:cd:64:2b:66:7f:02:f3:6b:21:03:b6:a8:44:02:
8a:9e:58:f0:78:b8:7f:6c:70:2e:03:ca:28:71:bf:
90:b7:cb:08:b2:84:4a:aa:91:10:fe:48:90:0a:64:
b7:57:03:aa:13:39:fc:c6:5c:bd:19:45:fe:79:f3:
da:6d:89:bb:19:aa:91:00:7b:e3:9b:27:99:c6:a0:
9b:a9:7a:3f:89:9e:57:58:2e:f6:ac:ba:a6:36:77:
22:52:82:0f:21:e2:84:36:e4:33:d4:ea:b4:86:58:
75:45:92:f1:3b:78:10:f1:f1:8d:50:87:30:de:8a:
93:08:e4:b9:4e:03:1f:11:83:9a:60:c0:d1:cd:bd:
0c:0d:51:cd:e0:3a:97:d6:27:a9:27:4a:33:4e:34:
53:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:49:D9:BC:DA:6C:FF:6B:20:B8:BC:BA:27:BD:AB:A2:0C:83:4A:9C
X509v3 Authority Key Identifier:
keyid:5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/3133302e3138352e3131362e302f32332d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.116.0/23
Signature Algorithm: sha256WithRSAEncryption
15:aa:ae:af:63:47:ba:12:b3:80:c3:da:23:a0:f1:19:07:0b:
de:4c:61:9d:28:cf:0f:0c:1b:98:6d:6d:44:f8:82:c3:13:40:
d4:b1:3f:d4:06:2e:43:03:d5:d1:a8:70:54:39:dd:61:b8:7e:
bd:0a:ec:3e:24:7b:0a:cb:e4:25:7a:7d:cc:5e:3c:3a:68:e3:
e9:a5:74:50:d0:8c:14:aa:53:4c:c4:b9:c5:a8:f5:94:da:68:
9e:fa:e6:af:5c:42:ac:d2:ad:04:a5:0f:9b:6e:39:b6:dc:f2:
18:ca:7d:83:d4:d2:ed:c4:81:af:01:41:e1:49:2f:f4:27:c0:
39:23:23:97:08:cc:f7:36:76:00:a4:9f:f3:82:67:1b:a1:c0:
af:7a:bc:48:71:8a:a2:4d:2d:29:a2:80:81:00:3a:7a:e4:14:
a8:54:9c:26:8b:73:83:ba:13:cc:e2:6a:86:4b:c8:19:08:3c:
4a:26:cd:10:5e:39:bd:49:48:ab:72:91:34:70:1f:92:3d:6f:
ef:0e:c8:62:04:f4:b8:43:7d:73:b9:94:6d:30:4d:81:d0:5e:
15:28:58:94:35:a1:d8:c2:fc:49:87:8e:6f:6b:8f:4f:72:81:
ca:1f:3e:0e:f9:55:e7:06:86:26:7e:8f:30:6d:3e:ef:69:e1:
3f:34:39:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:42 2023 by rpki-client on console-ams.rpki-client.org