Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/7/3138352e3139362e302e302f32322d3234203d3e2030.roa
File: 3138352e3139362e302e302f32322d3234203d3e2030.roa (raw, json)
Hash identifier: VklQiCNgHcrwSc5CO73dSopWtS9pXV4I2yZfakIMOds=
Subject key identifier: 45:3F:19:FF:38:62:A8:3A:20:0D:D8:86:DF:4B:54:79:6E:A8:75:83
Certificate issuer: /CN=5dc970755824cb967cad6f3b964709b092d43069
Certificate serial: 2C7AE28DAFEA746330F0ECCAC64769484C00C46F
Authority key identifier: 5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/7/3138352e3139362e302e302f32322d3234203d3e2030.roa
Signing time: Fri 03 Mar 2023 15:57:44 +0000
ROA not before: Fri 03 Mar 2023 15:52:44 +0000
ROA not after: Fri 01 Mar 2024 15:57:44 +0000
asID: 0
IP address blocks: 185.196.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:7a:e2:8d:af:ea:74:63:30:f0:ec:ca:c6:47:69:48:4c:00:c4:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc970755824cb967cad6f3b964709b092d43069
Validity
Not Before: Mar 3 15:52:44 2023 GMT
Not After : Mar 1 15:57:44 2024 GMT
Subject: CN=453F19FF3862A83A200DD886DF4B54796EA87583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d9:2a:0e:a7:48:19:d7:d4:f8:54:25:84:f6:
f3:2f:89:bb:96:7c:48:6a:97:ae:d4:f5:e5:b4:bc:
a7:94:4a:f8:a8:af:dc:1a:2c:2a:0c:c8:0f:76:64:
15:15:92:a9:51:80:ca:1a:b7:dc:8c:9c:eb:80:f9:
e5:3a:c1:ab:84:dd:54:cf:15:22:36:66:ed:f9:5f:
42:75:5e:99:54:d6:f0:a4:5a:ee:a8:9a:0c:c1:f6:
86:d0:e5:d3:6f:44:53:47:a0:01:0f:f1:4f:3d:0d:
87:ef:1a:61:07:1f:d1:6d:94:87:f3:3b:f1:c1:c8:
4c:76:84:ff:af:44:5a:07:c4:9d:00:3f:83:38:64:
bd:06:2f:c7:97:87:65:da:98:6c:f4:7c:3a:46:00:
e4:fe:19:f8:8e:99:c7:7c:4f:99:64:7d:3e:94:b5:
19:95:4a:6b:2a:fb:67:20:a6:d6:5b:23:77:ae:84:
8a:45:c2:43:36:0e:d6:83:0d:f6:8e:e4:de:35:74:
47:ed:6c:a1:bf:8f:11:3a:55:b8:ac:5e:8e:ff:52:
f7:5e:79:df:cd:6e:7b:64:fd:12:d4:78:45:34:f1:
fa:fd:03:e4:3b:44:af:0b:98:54:d0:8d:4b:53:69:
88:0f:7c:86:3c:0f:a5:0e:61:52:84:75:6d:45:54:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3F:19:FF:38:62:A8:3A:20:0D:D8:86:DF:4B:54:79:6E:A8:75:83
X509v3 Authority Key Identifier:
keyid:5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/3138352e3139362e302e302f32322d3234203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.0.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:ed:e1:0a:33:7c:3f:cc:04:18:25:d6:d4:b9:54:60:3a:79:
8f:09:41:44:d1:7c:4a:79:25:db:3d:16:53:7b:ee:0b:f5:f5:
c7:ed:d9:d8:a2:9a:0e:88:c6:4e:a1:93:27:4e:36:ed:65:c5:
7e:02:60:eb:ee:ab:e4:6a:52:ff:74:9d:a6:f1:a8:6b:4c:ab:
2f:40:2a:3d:4c:8d:c1:b3:f8:3d:40:26:12:eb:b6:7f:e5:7d:
64:ea:ea:2f:1d:91:ec:11:5c:49:c7:ad:00:fa:c9:95:ae:4b:
f0:aa:d5:3c:3a:d7:03:d5:10:19:81:fd:54:43:1a:a7:63:e8:
5d:64:a4:c0:6e:2c:64:d2:79:d3:1e:f7:35:76:1b:ad:6c:93:
36:2e:66:3d:19:ca:7f:8e:a7:6c:72:86:7c:09:0e:a7:1c:a8:
09:2b:70:ac:8d:a7:60:93:20:57:5e:79:be:a7:0e:5e:23:b3:
b4:81:1a:43:b3:fb:f6:dc:f7:21:d8:fc:1d:d0:68:1c:80:39:
0c:29:09:ca:61:9e:8f:7a:2f:dc:4f:09:ff:d3:dc:12:c4:9c:
c1:fd:2d:d0:e9:97:8c:75:94:0d:17:0f:79:21:72:1e:1c:75:
5a:cb:28:0a:5d:82:89:16:fa:b8:e7:31:fe:f1:a0:7a:c6:27:
b7:c8:80:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:58 2024 by rpki-client on console-ams.rpki-client.org