Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/1/326130353a646663313a3530303a3a2f34302d3430203d3e203532303235.roa
File: 326130353a646663313a3530303a3a2f34302d3430203d3e203532303235.roa (raw, json)
Hash identifier: hnOSReG/7hd4p1QjBxkQpn/X6pBVjQcA/addSxh/P54=
Subject key identifier: 93:0E:97:DD:BA:DD:B2:6F:17:C0:76:95:E9:62:1D:06:9E:DB:6F:15
Certificate issuer: /CN=3C5FE9D6A8FDEBBCD8EFBD40280B287A1CDB2A56
Certificate serial: 67290A21A53ADB33382103A2324716D2D7664006
Authority key identifier: 3C:5F:E9:D6:A8:FD:EB:BC:D8:EF:BD:40:28:0B:28:7A:1C:DB:2A:56
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/3C5FE9D6A8FDEBBCD8EFBD40280B287A1CDB2A56.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/1/326130353a646663313a3530303a3a2f34302d3430203d3e203532303235.roa
Signing time: Thu 12 Jun 2025 23:21:32 +0000
ROA not before: Thu 12 Jun 2025 23:16:32 +0000
ROA not after: Thu 11 Jun 2026 23:21:32 +0000
asID: 52025
IP address blocks: 2a05:dfc1:500::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:29:0a:21:a5:3a:db:33:38:21:03:a2:32:47:16:d2:d7:66:40:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3C5FE9D6A8FDEBBCD8EFBD40280B287A1CDB2A56
Validity
Not Before: Jun 12 23:16:32 2025 GMT
Not After : Jun 11 23:21:32 2026 GMT
Subject: CN=930E97DDBADDB26F17C07695E9621D069EDB6F15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:22:e9:2d:7c:fb:97:87:ad:9d:4c:5b:16:87:
aa:1b:69:4c:30:8b:e0:05:f0:99:78:c7:19:29:0e:
ee:65:ac:5a:29:75:cd:28:76:36:99:d7:51:ef:58:
52:ea:32:77:ed:13:28:b7:04:d6:5b:57:f8:92:9c:
3c:ad:e4:05:c5:2e:5a:ee:16:5d:f3:e2:44:bc:bd:
52:bf:a2:c2:23:3a:e9:60:f0:03:74:37:f2:f7:67:
6f:d1:b9:fc:f3:a8:00:9e:1a:45:1e:45:5a:f6:8a:
71:51:b4:3a:c9:dc:cf:66:39:e8:55:b0:1f:8d:82:
0a:2f:d2:dc:01:b3:a0:cd:c7:8d:b4:bc:79:48:c2:
ab:59:6c:6d:89:b0:52:36:4d:c5:fa:13:b8:b5:c9:
ae:9c:ab:40:9f:ab:df:e2:6e:82:07:a1:f7:a0:21:
b0:57:e4:94:90:0c:02:32:9c:36:e4:a3:2e:9e:43:
2d:9a:cc:da:83:ae:1e:cb:1a:61:d1:ea:4d:38:65:
fb:2b:a3:a4:82:69:50:87:bf:e8:6c:b1:11:1b:9c:
76:bd:b0:ed:ca:56:af:5c:22:3f:2c:e6:4c:fe:b5:
ce:06:80:c4:5d:4c:c5:5d:ba:26:f8:33:96:4a:94:
84:ad:cb:fe:af:47:ea:d4:86:0c:fd:db:71:59:2d:
6c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0E:97:DD:BA:DD:B2:6F:17:C0:76:95:E9:62:1D:06:9E:DB:6F:15
X509v3 Authority Key Identifier:
keyid:3C:5F:E9:D6:A8:FD:EB:BC:D8:EF:BD:40:28:0B:28:7A:1C:DB:2A:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/1/3C5FE9D6A8FDEBBCD8EFBD40280B287A1CDB2A56.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/3C5FE9D6A8FDEBBCD8EFBD40280B287A1CDB2A56.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/1/326130353a646663313a3530303a3a2f34302d3430203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:500::/40
Signature Algorithm: sha256WithRSAEncryption
48:12:1a:9c:a2:0d:a8:db:e7:f6:25:8c:3c:d4:20:2d:1f:69:
47:ac:6d:70:64:dc:f2:86:d7:29:fb:d9:bb:32:8c:1f:dc:e9:
07:5f:d3:8b:43:75:a3:45:51:b6:ca:ca:77:18:b7:f5:1d:b1:
90:3c:6f:94:a7:86:aa:be:e7:b1:74:5b:77:ba:8d:e1:27:94:
24:0a:13:ea:9a:54:64:b8:51:03:9b:8e:19:03:8e:33:11:14:
11:6d:f9:51:4f:bb:b2:03:68:24:7f:75:77:c7:0a:30:f0:98:
ec:50:18:86:73:d9:fb:97:45:37:63:1e:86:de:a0:76:f8:58:
87:a8:24:99:04:72:9b:82:c6:de:39:d1:e5:5f:b5:3a:38:55:
88:a2:6d:76:5d:d0:56:4b:00:2f:3a:a3:0d:88:9c:a4:09:d2:
ec:03:62:6a:fd:34:47:4d:8b:37:46:de:f5:37:98:f5:78:75:
87:78:fd:67:2a:f4:a3:2e:89:53:ee:c3:81:17:a8:66:bd:a6:
45:6b:83:6c:6c:b6:f6:00:94:7b:99:62:37:24:2d:eb:99:ce:
2a:9c:68:27:7d:7e:24:91:55:8c:97:94:8c:0a:5c:5c:c9:84:
9b:7a:9b:be:31:2e:f7:17:0b:5d:c7:4a:50:e9:89:d2:f2:5c:
87:2b:43:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 16:02:01 2025 by rpki-client