Route Origin Authorization
$ rpki-client -vvf rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS202888.roa
File: AS202888.roa (raw, json)
Hash identifier: rryZfoGyTos62jdoCMnT9RVU0Bm54mv93ju5mVLgoqw=
Subject key identifier: 07:DA:58:80:57:AD:69:4C:9B:CD:5A:36:EE:F0:44:02:79:2B:F0:7C
Certificate issuer: /CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Certificate serial: 3C9B0F0808EB47FFA58D4C5B22FA77500FDDF02C
Authority key identifier: AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject info access: rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS202888.roa
Signing time: Wed 21 Dec 2022 16:56:51 +0000
ROA not before: Wed 21 Dec 2022 16:51:51 +0000
ROA not after: Wed 20 Dec 2023 16:56:51 +0000
asID: 202888
IP address blocks: 2a06:a005:1c70::/45 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:9b:0f:08:08:eb:47:ff:a5:8d:4c:5b:22:fa:77:50:0f:dd:f0:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Validity
Not Before: Dec 21 16:51:51 2022 GMT
Not After : Dec 20 16:56:51 2023 GMT
Subject: CN=07DA588057AD694C9BCD5A36EEF04402792BF07C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5a:1e:15:e7:55:6d:a0:e0:21:f9:dc:7d:e8:
3d:75:e3:dc:57:82:2d:a3:ba:bd:5c:c7:07:3b:59:
cd:84:12:72:21:a5:c9:e6:99:cd:10:70:06:ed:b2:
67:9f:80:5a:9d:dc:89:24:25:3b:cd:e6:30:21:bc:
18:41:85:09:8b:4f:c4:86:4f:f1:f9:44:d7:ab:50:
52:37:e1:3f:ac:f9:2d:3d:1a:8e:66:da:eb:87:4a:
18:92:a7:e4:36:25:90:4c:c0:64:36:99:05:4c:1a:
6b:74:7f:72:0f:0e:5f:b0:c5:0c:5f:e3:87:b1:60:
89:36:9c:ce:17:c2:39:36:52:4c:77:af:89:d6:bf:
9e:c5:00:53:06:4c:34:04:89:30:b5:27:5d:b1:b2:
ff:fc:86:4b:b2:c1:84:6d:80:df:4f:6e:0a:dc:c6:
22:2a:f1:52:b2:3a:c9:9a:78:1b:19:2c:d4:ee:f5:
bc:93:1d:1e:04:5e:53:50:8c:f9:f7:d6:42:d2:30:
ee:79:fd:3f:65:b2:bd:fc:b8:ef:81:38:7f:27:d5:
fd:2c:d8:c7:f4:a2:b2:4b:65:7c:1c:85:3e:68:9e:
8f:83:ed:02:6c:4c:88:62:46:5f:69:4d:d4:a2:3e:
09:e1:58:26:60:d8:33:d0:bf:b4:23:94:65:e7:4e:
7b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:DA:58:80:57:AD:69:4C:9B:CD:5A:36:EE:F0:44:02:79:2B:F0:7C
X509v3 Authority Key Identifier:
keyid:AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/ABDBFABAF201E2BB85B9EDB4D643594AC30BBFE2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS202888.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c70::/45
Signature Algorithm: sha256WithRSAEncryption
13:21:54:f4:c0:76:32:e5:b8:f3:69:14:fc:5a:62:7e:0c:e0:
af:a7:17:c5:05:b0:fa:a1:fa:04:3e:fe:46:fc:26:4e:95:bd:
53:42:d6:fb:b2:0a:74:7c:20:de:9c:1d:e5:b5:08:ec:be:a2:
75:b8:9d:d0:6a:3d:7c:41:5a:53:fc:6a:8d:d0:49:ce:10:a6:
87:03:6d:57:c1:bc:8f:34:39:5b:a1:eb:52:94:50:62:0a:9a:
30:c3:32:59:b0:0f:f4:ec:a6:37:d5:5a:7a:0c:28:0d:ce:db:
c6:b5:97:b9:32:28:79:f7:ea:1c:71:83:61:12:b6:79:ab:7f:
c5:5d:f6:a6:64:af:63:15:50:47:c8:30:3a:07:c4:39:f7:eb:
bb:b0:9c:33:d7:6e:f4:05:05:b0:33:33:f7:71:10:96:6a:ca:
6b:cd:ef:36:2c:8c:80:42:43:f2:8a:13:32:86:f7:86:0f:fd:
44:8f:a6:8b:ca:5b:df:05:8c:16:a5:fb:cf:45:b1:de:df:82:
5c:09:be:bc:07:47:df:e6:a0:1a:35:1d:2a:30:b7:be:45:e9:
e2:90:ec:8f:2d:fd:7f:c9:21:04:15:d6:bd:b7:4d:a9:9e:93:
04:4b:d6:38:23:93:9d:18:06:a2:37:9d:3e:bc:67:35:89:6a:
00:5d:8b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:23:49 2025 by rpki-client