Route Origin Authorization
$ rpki-client -vvf rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS201732.roa
File: AS201732.roa (raw, json)
Hash identifier: IKmObe1QuoiPP40B3kl4Pt4Hu13MQtyGpYF3HMwcIqA=
Subject key identifier: 13:80:1F:F2:A7:0B:34:BA:CD:CF:8B:9C:EF:26:7E:B8:1A:46:1E:52
Certificate issuer: /CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Certificate serial: 3CCDD2AA3B1C76EBDCCEB0281B99F32EC00F8B92
Authority key identifier: AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject info access: rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS201732.roa
Signing time: Sun 01 Jan 2023 14:11:42 +0000
ROA not before: Sun 01 Jan 2023 14:06:42 +0000
ROA not after: Sun 31 Dec 2023 14:11:42 +0000
asID: 201732
IP address blocks: 2a06:a005:15d2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:cd:d2:aa:3b:1c:76:eb:dc:ce:b0:28:1b:99:f3:2e:c0:0f:8b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Validity
Not Before: Jan 1 14:06:42 2023 GMT
Not After : Dec 31 14:11:42 2023 GMT
Subject: CN=13801FF2A70B34BACDCF8B9CEF267EB81A461E52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:46:fb:19:09:3d:c5:24:ff:e9:33:7e:b3:da:
06:6a:65:9f:36:57:a9:bc:27:30:0b:76:89:c5:d9:
7b:e8:56:a9:86:c8:d5:71:c1:ba:62:4d:b6:8e:66:
11:f2:05:df:22:92:d0:07:17:7b:fb:38:c1:b5:c6:
06:0b:a2:fd:01:da:76:21:b0:9c:88:cf:7e:91:ed:
2f:e8:b6:bc:0a:29:1e:01:16:b8:00:aa:df:fb:c7:
41:d0:e4:b5:1d:9e:37:a5:2c:58:73:31:09:4a:88:
eb:dc:a6:08:fe:25:d2:5c:a4:49:53:c1:70:04:8a:
d2:26:26:e0:58:18:28:23:b4:d6:0f:5b:4e:8c:b5:
d5:c8:da:0a:78:5b:e7:cf:aa:b8:4b:5d:58:ee:51:
ba:c9:bf:19:ea:8a:84:9b:35:0e:78:d7:7a:16:22:
d4:e5:a9:80:5c:f4:d1:94:5b:1d:7b:ca:47:c0:8b:
ae:e6:f9:7d:ff:07:eb:1a:c2:ab:9f:0a:cf:bb:0c:
94:b5:ec:ea:ba:c0:c2:25:62:dd:ff:0f:33:72:ff:
92:a3:82:47:73:ba:a5:2c:a3:11:6c:05:60:ac:00:
a6:b1:47:b2:d1:d2:c6:a5:c7:24:d8:22:7c:7c:aa:
3b:6e:2b:a6:a9:c5:46:65:1d:f1:b7:24:d5:eb:55:
ce:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:80:1F:F2:A7:0B:34:BA:CD:CF:8B:9C:EF:26:7E:B8:1A:46:1E:52
X509v3 Authority Key Identifier:
keyid:AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/ABDBFABAF201E2BB85B9EDB4D643594AC30BBFE2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS201732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:15d2::/48
Signature Algorithm: sha256WithRSAEncryption
a4:f4:e1:59:32:a5:1c:e8:c5:77:4f:a6:0c:b8:30:e6:71:3a:
2e:5b:d7:e7:b7:f4:7b:d6:b2:47:90:12:90:b7:3b:a2:a8:32:
0e:80:86:57:99:77:41:c1:36:19:7d:1e:c7:9b:ab:95:6d:6e:
1c:2d:77:9c:d2:f8:8d:bc:a3:a7:d9:d4:fe:4c:6f:6a:21:0b:
6d:c6:92:ab:00:48:1c:6a:e9:f6:ad:4b:41:e3:de:d9:e9:b9:
46:1c:5e:93:41:dd:4d:bd:b9:19:e3:94:01:c9:4b:e7:be:1e:
11:33:33:24:51:0d:a9:49:e6:d4:d5:09:77:ad:9f:af:01:f2:
f3:f8:a2:cd:d1:00:1f:a5:a0:f8:45:e3:f7:60:4f:42:f3:3c:
51:73:b8:15:ee:b4:a0:6d:5b:05:47:6c:a0:ce:94:aa:64:21:
c4:20:b9:40:b1:4c:35:9f:c1:ce:66:bc:14:81:15:b0:4e:45:
da:9d:9c:11:13:b2:07:8e:9b:b6:a8:07:82:62:58:83:ba:9f:
bc:a7:1e:f7:ef:89:be:ae:16:74:bb:4b:30:f5:dc:b6:63:3a:
20:a4:48:5e:f7:be:a0:96:52:77:70:28:e5:90:88:10:e6:fe:
ce:a9:d1:9d:b2:cc:dc:49:ce:9b:3e:af:8c:2e:48:01:ae:37:
34:49:cb:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:05:52 2025 by rpki-client