Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a33363a3a2f34382d313238203d3e203532303235.roa
File: 326130353a646663343a33363a3a2f34382d313238203d3e203532303235.roa (raw, json)
Hash identifier: 8BvySEHjmLgPPmtofT1M4VzzF7iChYuc62wrsdNs354=
Subject key identifier: 13:29:1B:6C:AE:6E:9E:B1:E4:E3:3F:53:05:2C:30:54:FE:F8:3C:FE
Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial: 64F1BB143377D0A661C6A8B69CD99C643A29FF74
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a33363a3a2f34382d313238203d3e203532303235.roa
Signing time: Thu 24 Apr 2025 13:19:30 +0000
ROA not before: Thu 24 Apr 2025 13:14:30 +0000
ROA not after: Thu 23 Apr 2026 13:19:30 +0000
asID: 52025
IP address blocks: 2a05:dfc4:36::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:f1:bb:14:33:77:d0:a6:61:c6:a8:b6:9c:d9:9c:64:3a:29:ff:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Validity
Not Before: Apr 24 13:14:30 2025 GMT
Not After : Apr 23 13:19:30 2026 GMT
Subject: CN=13291B6CAE6E9EB1E4E33F53052C3054FEF83CFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ca:1c:2d:c9:68:69:c9:73:fc:da:5d:5f:fe:
cb:77:2e:92:aa:7e:59:d6:ba:d7:10:48:e3:d2:cc:
d5:fb:8a:ef:c8:66:ed:39:7a:e5:65:47:3e:82:7a:
f8:bc:4a:3b:04:fd:c7:61:42:29:32:01:16:17:ec:
bc:43:cd:f5:29:b0:8a:d8:4c:f6:cf:c2:fc:1f:a2:
59:3b:05:51:d1:09:f3:83:e0:3c:7f:57:82:27:12:
06:48:b6:a4:cd:be:ab:69:e9:44:bb:19:15:7a:dc:
be:39:42:b5:f3:2f:2b:8c:49:38:b5:65:66:bc:19:
34:f9:4a:dc:49:ce:9b:4a:f6:09:28:34:18:50:b5:
62:c6:9d:a8:f4:37:90:93:fe:88:8c:18:d3:71:e5:
5c:2b:83:b4:4e:70:56:f8:ba:27:4b:f7:2a:05:3c:
60:db:2e:7a:4c:0e:1a:d1:19:1a:b3:2c:b2:c5:0b:
2b:65:60:91:9a:8b:d4:bd:19:9e:e3:59:c5:c0:de:
c4:11:ca:77:8f:b2:18:24:38:2e:90:5d:06:69:b9:
55:26:43:e2:e5:a2:ed:bb:3d:d9:40:2c:ca:c2:71:
9f:a7:dd:97:aa:46:0f:02:16:54:c0:ba:4d:15:8a:
27:91:6c:b5:a6:a2:a3:bb:e0:dc:68:56:54:86:e5:
fa:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:29:1B:6C:AE:6E:9E:B1:E4:E3:3F:53:05:2C:30:54:FE:F8:3C:FE
X509v3 Authority Key Identifier:
keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a33363a3a2f34382d313238203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:36::/48
Signature Algorithm: sha256WithRSAEncryption
b4:c5:19:70:bb:b6:03:df:37:8f:9f:8e:4e:26:ea:df:b3:6f:
8d:25:60:e7:2e:b0:62:0f:07:31:c8:60:5d:54:68:cc:eb:9b:
17:17:a2:c4:8e:b7:fc:e3:8a:63:ce:10:44:14:cf:cf:f0:80:
ea:fa:68:18:83:ad:e4:a5:e7:ca:ef:34:e7:de:a0:b5:f2:f8:
9a:98:35:7a:c8:bc:7b:18:b2:bc:77:61:dd:ad:0f:b2:89:d1:
c2:e6:38:f8:5d:53:29:55:18:59:e7:12:e7:04:a9:db:f9:8f:
0c:c3:c1:41:ec:67:c6:ed:cd:81:60:9d:df:87:1c:2d:c2:66:
db:47:6f:17:a1:bb:1a:2d:d0:96:a1:4c:16:20:f7:cd:28:bb:
be:98:fb:d2:16:de:8e:ef:fb:f1:7b:8a:e4:a9:44:4b:fb:f6:
19:26:5c:06:76:8e:d7:35:91:b2:ae:40:34:6d:1e:bf:56:a8:
eb:2f:0d:81:bc:97:62:8a:1a:c0:99:42:79:3d:5d:45:bf:ce:
33:87:3b:f3:2f:e9:2b:16:8a:88:3a:98:34:26:60:90:9f:53:
d1:d2:ab:b0:b4:ae:c5:49:c2:42:1c:a1:55:ef:41:ed:b6:74:
0b:7a:e4:01:77:e5:79:49:68:2e:7f:c1:b3:f5:23:db:7c:b0:
a9:37:95:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 00:24:32 2025 by rpki-client