Route Origin Authorization
$ rpki-client -vvf rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS200912.roa
File: AS200912.roa (raw, json)
Hash identifier: lIiBrLuzVDN+HsZS6a5w7otsmNBC31sDUgxq/yXHD1o=
Subject key identifier: CD:F9:36:07:DF:1C:17:3C:3A:68:FC:BC:1F:DC:10:76:5F:12:C9:B8
Certificate issuer: /CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Certificate serial: 3F31B954621B83E16A8DF3263A063194268BB016
Authority key identifier: AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject info access: rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS200912.roa
Signing time: Wed 21 Dec 2022 16:56:52 +0000
ROA not before: Wed 21 Dec 2022 16:51:52 +0000
ROA not after: Wed 20 Dec 2023 16:56:52 +0000
asID: 200912
IP address blocks: 2a06:a005:2500::/44 maxlen: 48
2a06:a005:2510::/44 maxlen: 48
2a06:a005:2520::/44 maxlen: 48
2a06:a005:25b0::/44 maxlen: 48
2a06:a005:25c0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:31:b9:54:62:1b:83:e1:6a:8d:f3:26:3a:06:31:94:26:8b:b0:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abdbfabaf201e2bb85b9edb4d643594ac30bbfe2
Validity
Not Before: Dec 21 16:51:52 2022 GMT
Not After : Dec 20 16:56:52 2023 GMT
Subject: CN=CDF93607DF1C173C3A68FCBC1FDC10765F12C9B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5d:e9:5f:b9:6a:8d:f2:c1:54:a7:bc:b7:ee:
b4:43:e0:fe:13:74:7f:57:5b:35:06:16:1e:54:23:
4e:a6:ac:92:e8:c2:bf:31:df:57:cc:c4:9b:96:69:
fd:8a:63:8a:95:50:4d:43:c1:c5:21:4b:71:6d:f7:
02:45:5b:08:f3:bf:6a:42:aa:9b:bf:6f:49:eb:72:
ca:ee:9d:bf:b3:ae:8e:8e:04:b7:ff:5a:4b:ab:15:
f4:85:c9:ca:9d:78:74:86:e2:99:bf:87:29:cd:d8:
46:aa:06:1c:6a:8b:f3:3f:53:5b:fd:76:2e:82:6f:
dc:7b:de:d7:6a:99:57:0f:8e:70:21:8d:3f:eb:34:
83:ab:b3:b1:a3:79:19:b7:6f:61:c1:89:2c:07:0e:
59:3f:b3:9f:96:19:e3:33:1c:48:68:99:f4:e9:8f:
40:30:35:11:b3:28:e1:6b:d5:0b:0f:ac:58:1c:bf:
78:1d:68:52:16:e4:bf:77:44:35:91:89:1b:06:f4:
6c:1e:18:2e:82:e3:ff:27:9e:48:53:4c:15:c9:ba:
4d:46:39:74:dd:5c:dc:ad:94:2e:0b:83:ac:1e:03:
a8:30:20:0d:4a:90:95:80:c9:ff:9f:b4:c7:0f:08:
81:a6:ef:c6:54:87:b3:d1:51:47:12:68:e2:36:1d:
0e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F9:36:07:DF:1C:17:3C:3A:68:FC:BC:1F:DC:10:76:5F:12:C9:B8
X509v3 Authority Key Identifier:
keyid:AB:DB:FA:BA:F2:01:E2:BB:85:B9:ED:B4:D6:43:59:4A:C3:0B:BF:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/ABDBFABAF201E2BB85B9EDB4D643594AC30BBFE2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9v6uvIB4ruFue201kNZSsMLv-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.zappiehost.com/repo/ZAPPIE-RPKI/2/AS200912.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2500::-2a06:a005:252f:ffff:ffff:ffff:ffff:ffff
2a06:a005:25b0::-2a06:a005:25cf:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
c3:5d:bf:aa:d9:4c:59:71:25:37:a8:6d:76:7c:89:32:ca:d3:
13:2f:f3:c1:52:60:b5:18:55:83:be:11:71:c0:6b:df:4a:bc:
16:38:5b:63:1e:97:0a:42:cb:80:1a:19:3a:6f:e1:9e:7d:8f:
48:b6:b5:31:1d:79:9f:8f:74:cc:d6:86:34:29:ff:e7:0d:b4:
a7:c3:78:66:ff:33:e0:20:b4:85:90:b0:f2:a9:31:9f:c1:c3:
0b:b1:d5:32:eb:53:07:0f:12:7b:07:b6:59:a2:24:ed:07:af:
1c:2c:d7:1f:5f:11:a1:ed:f5:2b:8e:ec:96:ba:01:92:b2:38:
2f:74:22:97:7b:46:d1:12:26:8f:85:87:36:33:15:11:01:f4:
fd:32:ee:2f:64:2c:2f:52:d9:a1:47:53:e6:d7:1c:b7:0f:d0:
cf:90:b8:4f:37:d6:07:16:58:80:d1:a4:e3:e4:da:f0:16:b7:
14:ef:16:fa:82:ae:73:0c:67:c2:04:2a:18:74:9a:83:78:65:
35:98:00:a0:1b:7f:d3:e2:39:aa:9c:e0:46:02:ec:7f:a4:be:
37:df:99:4c:ff:f7:55:de:91:3d:bf:ec:4b:7c:3b:49:b8:ac:
a2:82:35:06:39:72:a1:a7:bd:f2:a1:fa:22:13:78:0e:94:0d:
6b:f6:5a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:57 2023 by rpki-client on console.sobornost.net