Route Origin Authorization
$ rpki-client -vvf rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS207320.roa
File: AS207320.roa (raw, json)
Hash identifier: /vXy5e1noRD8nZjUw/eG7blMT+1/9MXfXPRbza9qkz4=
Subject key identifier: 87:B8:FC:87:41:DC:C7:8C:AF:95:14:1F:3C:BC:27:46:FB:97:A7:F3
Certificate issuer: /CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Certificate serial: 4DCC79B89001148C47A51F2BB70BACDAE303C3F9
Authority key identifier: AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject info access: rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS207320.roa
Signing time: Wed 21 Dec 2022 16:56:52 +0000
ROA not before: Wed 21 Dec 2022 16:51:52 +0000
ROA not after: Wed 20 Dec 2023 16:56:52 +0000
asID: 207320
IP address blocks: 2a06:a005:43d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:cc:79:b8:90:01:14:8c:47:a5:1f:2b:b7:0b:ac:da:e3:03:c3:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Validity
Not Before: Dec 21 16:51:52 2022 GMT
Not After : Dec 20 16:56:52 2023 GMT
Subject: CN=87B8FC8741DCC78CAF95141F3CBC2746FB97A7F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fb:88:fd:55:d8:93:89:96:8d:67:d2:5f:8b:
11:78:e2:0a:49:11:88:07:bd:6e:1c:5b:1e:90:da:
f0:68:5f:ea:b0:92:ac:7b:94:a1:db:8d:48:d3:29:
6a:87:ef:22:1d:1f:3f:8e:23:e1:cd:79:e7:49:19:
e9:36:a5:bb:f0:9e:6f:d7:f6:b7:71:76:3d:cb:6c:
d3:16:0e:8e:08:ee:24:28:0b:91:da:55:0a:a2:f0:
2b:c7:2c:a7:fb:df:bc:0d:49:1d:0c:97:80:86:95:
41:c9:55:ab:09:b5:92:cd:37:1c:a9:66:d5:c4:3a:
7e:0a:37:f5:76:90:b8:96:fe:ea:35:16:ef:55:b6:
eb:f6:ba:8e:5c:ea:6f:0a:9e:cd:81:2b:bf:a1:65:
d6:0e:3a:3c:0f:ae:4e:61:b2:dd:27:d7:b9:a5:dc:
65:76:1b:1f:b3:52:f7:44:9d:9f:d2:96:40:f1:5b:
76:f3:a4:3e:78:d0:4d:40:53:f4:f0:16:b2:40:0e:
68:bb:0c:bc:72:5c:92:01:dc:6c:f7:3b:3a:f0:2a:
cf:54:20:f2:87:e2:d5:ec:57:a9:d4:2a:14:0c:76:
88:6e:26:aa:a2:48:c2:77:85:ea:41:50:e4:19:3d:
06:f8:9c:de:5f:7f:8b:0e:59:c1:b6:68:6c:d8:17:
a8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B8:FC:87:41:DC:C7:8C:AF:95:14:1F:3C:BC:27:46:FB:97:A7:F3
X509v3 Authority Key Identifier:
keyid:AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/ABDBFABAF201E2BB85B9EDB4D643594AC30BBFE2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS207320.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:43d::/48
Signature Algorithm: sha256WithRSAEncryption
63:d5:35:9d:e0:44:e8:3b:3c:ab:3d:8d:c2:ae:c1:e3:f1:31:
9a:bc:e6:c1:2f:4d:38:11:72:e6:a7:b1:1d:81:01:c0:35:cb:
cf:a4:0a:c3:ef:5f:ca:1e:c1:7c:96:e2:e8:75:0b:06:1d:45:
fe:e6:41:cc:3b:b2:b5:31:10:46:69:30:44:e6:bf:d2:c5:4a:
9c:80:b0:a6:79:ee:11:52:71:54:32:10:d4:c2:cf:6b:eb:0d:
34:26:ad:bf:1e:80:e8:8c:5a:8d:e0:33:8c:90:bd:cd:e4:9a:
c6:c0:76:34:f8:9a:d8:fc:51:57:0b:52:34:c7:e0:58:1d:42:
49:50:be:15:bc:69:05:6d:43:3d:51:71:80:d1:20:b8:c1:cb:
cd:74:46:f4:87:dd:2d:ea:60:66:90:58:2b:6c:61:9f:41:12:
97:ee:45:73:f6:9d:d3:96:41:65:07:14:e4:0a:f6:a1:ee:72:
a8:a0:09:d9:37:65:5d:40:97:66:8c:43:c4:d3:30:10:b7:d0:
c3:8e:f1:29:88:1b:83:99:3f:f5:82:8e:3a:32:0e:53:f0:f0:
d9:33:d3:aa:d4:18:3f:6d:37:c2:86:06:c3:f0:85:b3:a2:a8:
e0:d5:ee:84:75:38:37:85:fe:fe:03:d1:ab:a3:b7:ff:24:14:
08:46:52:e6
-----BEGIN CERTIFICATE-----
MIIEtTCCA52gAwIBAgIUTcx5uJABFIxHpR8rtwus2uMDw/kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWJkYmZhYmFmMjAxZTJiYjg1YjllZGI0ZDY0MzU5NGFj
MzBiYmZlMjAeFw0yMjEyMjExNjUxNTJaFw0yMzEyMjAxNjU2NTJaMDMxMTAvBgNV
BAMTKDg3QjhGQzg3NDFEQ0M3OENBRjk1MTQxRjNDQkMyNzQ2RkI5N0E3RjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL+4j9VdiTiZaNZ9JfixF44gpJ
EYgHvW4cWx6Q2vBoX+qwkqx7lKHbjUjTKWqH7yIdHz+OI+HNeedJGek2pbvwnm/X
9rdxdj3LbNMWDo4I7iQoC5HaVQqi8CvHLKf737wNSR0Ml4CGlUHJVasJtZLNNxyp
ZtXEOn4KN/V2kLiW/uo1Fu9Vtuv2uo5c6m8Kns2BK7+hZdYOOjwPrk5hst0n17ml
3GV2Gx+zUvdEnZ/SlkDxW3bzpD540E1AU/TwFrJADmi7DLxyXJIB3Gz3OzrwKs9U
IPKH4tXsV6nUKhQMdohuJqqiSMJ3hepBUOQZPQb4nN5ff4sOWcG2aGzYF6gpAgMB
AAGjggG/MIIBuzAdBgNVHQ4EFgQUh7j8h0Hcx4yvlRQfPLwnRvuXp/MwHwYDVR0j
BBgwFoAUq9v6uvIB4ruFue201kNZSsMLv+IwDgYDVR0PAQH/BAQDAgeAMGwGA1Ud
HwRlMGMwYaBfoF2GW3JzeW5jOi8vcnBraS56YXBwaWVob3N0LmNvbS9yZXBvL1pB
UFBJRS1SUEtJLzIvQUJEQkZBQkFGMjAxRTJCQjg1QjlFREI0RDY0MzU5NEFDMzBC
QkZFMi5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jw
a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3E5djZ1dklCNHJ1RnVlMjAx
a05aU3NNTHYtSS5jZXIwVwYIKwYBBQUHAQsESzBJMEcGCCsGAQUFBzALhjtyc3lu
YzovL3Jwa2kuemFwcGllaG9zdC5jb20vcmVwby9aQVBQSUUtUlBLSS8yL0FTMjA3
MzIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/
BBMwETAPBAIAAjAJAwcAKgagBQQ9MA0GCSqGSIb3DQEBCwUAA4IBAQBj1TWd4ETo
OzyrPY3CrsHj8TGavObBL004EXLmp7EdgQHANcvPpArD71/KHsF8luLodQsGHUX+
5kHMO7K1MRBGaTBE5r/SxUqcgLCmee4RUnFUMhDUws9r6w00Jq2/HoDojFqN4DOM
kL3N5JrGwHY0+JrY/FFXC1I0x+BYHUJJUL4VvGkFbUM9UXGA0SC4wcvNdEb0h90t
6mBmkFgrbGGfQRKX7kVz9p3TlkFlBxTkCvah7nKooAnZN2VdQJdmjEPE0zAQt9DD
jvEpiBuDmT/1go46Mg5T8PDZM9Oq1Bg/bTfChgbD8IWzoqjg1e6EdTg3hf7+A9Gr
o7f/JBQIRlLm
-----END CERTIFICATE-----
Generated at Fri Feb 21 11:04:30 2025 by rpki-client