Route Origin Authorization
$ rpki-client -vvf rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/352e3235332e38362e302f32342d3234203d3e20323038303436.roa
File: 352e3235332e38362e302f32342d3234203d3e20323038303436.roa (raw, json)
Hash identifier: VfZpSTe1LemNEB82pJSgtZvaDwjWVGQcCXtfZUtZ/3s=
Subject key identifier: 82:49:16:76:8A:24:17:3C:A3:95:83:B0:16:18:B7:D4:F7:E3:63:82
Certificate issuer: /CN=75c8c9900b56bbdb036a4341059e1705401d0a35
Certificate serial: 3690943A7CFEDADE731641A6BAB07A6F40EBBF67
Authority key identifier: 75:C8:C9:90:0B:56:BB:DB:03:6A:43:41:05:9E:17:05:40:1D:0A:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dcjJkAtWu9sDakNBBZ4XBUAdCjU.cer
Subject info access: rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/352e3235332e38362e302f32342d3234203d3e20323038303436.roa
Signing time: Fri 09 Dec 2022 05:05:06 +0000
ROA not before: Fri 09 Dec 2022 05:00:06 +0000
ROA not after: Fri 08 Dec 2023 05:05:06 +0000
asID: 208046
IP address blocks: 5.253.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:90:94:3a:7c:fe:da:de:73:16:41:a6:ba:b0:7a:6f:40:eb:bf:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75c8c9900b56bbdb036a4341059e1705401d0a35
Validity
Not Before: Dec 9 05:00:06 2022 GMT
Not After : Dec 8 05:05:06 2023 GMT
Subject: CN=824916768A24173CA39583B01618B7D4F7E36382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f7:b9:51:1c:fd:50:53:de:28:7f:f3:29:f5:
c7:20:7f:a8:05:2f:76:3a:da:41:dc:31:7c:54:2b:
bb:db:64:14:36:54:69:cc:fb:90:5a:fe:73:81:1c:
ab:97:ba:7f:dd:2a:77:34:bc:68:3d:94:50:25:eb:
c9:82:ce:39:51:8c:72:03:12:cb:31:7c:66:22:15:
06:fa:67:59:8a:9a:fa:8e:51:a7:1b:ae:e6:ed:08:
07:c8:95:32:94:8a:86:2d:03:fe:e8:9f:0b:fe:44:
f3:b9:4f:58:7e:a6:65:be:b6:95:53:b2:02:86:9e:
56:c2:74:92:8c:4c:4a:84:5a:e9:fd:d8:d9:a4:f4:
31:fd:ca:b8:84:13:4d:5b:29:ca:85:b4:c8:28:54:
84:f5:f1:7b:95:9e:ab:05:ce:37:a7:ec:cf:a8:3b:
7a:bd:cc:cd:ad:6d:93:e1:ad:aa:31:24:82:1d:02:
ff:23:10:05:e9:7a:59:6a:0d:a8:ce:02:9d:fe:f4:
6d:af:33:4c:47:32:4d:1d:5c:91:3c:31:ec:5f:60:
e6:2b:ae:68:98:2b:ce:2a:bd:00:90:5e:12:dd:54:
cd:ae:03:6a:19:bb:58:b8:d5:e8:fb:35:44:44:05:
b6:66:d1:ed:9f:79:15:9f:b0:f7:b8:1f:02:25:8b:
1e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:49:16:76:8A:24:17:3C:A3:95:83:B0:16:18:B7:D4:F7:E3:63:82
X509v3 Authority Key Identifier:
keyid:75:C8:C9:90:0B:56:BB:DB:03:6A:43:41:05:9E:17:05:40:1D:0A:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/75C8C9900B56BBDB036A4341059E1705401D0A35.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dcjJkAtWu9sDakNBBZ4XBUAdCjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/352e3235332e38362e302f32342d3234203d3e20323038303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.86.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:2c:97:73:5c:b6:33:2a:4e:0f:b7:ff:28:f5:70:16:bc:68:
6b:32:da:95:66:34:84:bf:25:a6:06:64:0b:ad:79:8e:a9:df:
b1:74:2f:64:de:74:03:f6:76:22:95:5d:f9:7e:93:52:7b:3e:
7e:2d:ef:4e:b6:c5:6e:a7:2a:d1:c0:d4:ff:80:fd:a1:7f:d7:
9b:eb:e4:38:b2:bd:2a:30:c5:39:92:e4:41:c4:60:82:ae:4e:
3f:d3:4a:bf:81:1a:2e:a4:24:7e:60:52:f6:a4:8a:f8:be:61:
fa:11:9e:d3:2c:cd:2f:08:76:d2:8c:e1:b6:6d:8d:4e:5c:a5:
c5:da:ed:aa:ce:03:37:ba:03:e1:2c:8f:79:9a:e7:fd:5a:87:
da:ff:40:07:5f:69:81:f3:d4:18:77:27:b1:b1:0e:fa:73:5a:
9f:18:84:3e:b7:4e:04:3e:15:a1:e3:04:01:19:45:1d:f7:f7:
78:c9:fe:25:b7:b2:0a:50:4d:35:b6:26:dd:ea:56:d7:e7:ce:
8a:e3:95:c5:56:e9:72:2b:66:68:da:ad:4b:81:a4:bd:e2:8a:
69:11:06:b2:67:fe:46:64:06:ad:bb:66:1f:30:aa:21:d9:e4:
ed:3f:9d:97:8c:1e:1b:ea:97:02:48:c9:ae:b0:6b:25:23:06:
f4:c5:ce:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:20:25 2025 by rpki-client