Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa
File: 326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa (raw, json)
Hash identifier: MSZ3Dq0EufpL+qFd70Y110vASXDIsh6/lMrmL3emJoY=
Subject key identifier: D9:70:4F:0F:92:D9:28:33:CB:8B:A4:28:D2:AE:ED:65:09:63:9B:25
Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial: 1FAB76D5692BD8A77085D3107690662EE250D836
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa
Signing time: Thu 24 Apr 2025 13:19:25 +0000
ROA not before: Thu 24 Apr 2025 13:14:25 +0000
ROA not after: Thu 23 Apr 2026 13:19:25 +0000
asID: 52025
IP address blocks: 2a05:dfc4:68::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:ab:76:d5:69:2b:d8:a7:70:85:d3:10:76:90:66:2e:e2:50:d8:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Validity
Not Before: Apr 24 13:14:25 2025 GMT
Not After : Apr 23 13:19:25 2026 GMT
Subject: CN=D9704F0F92D92833CB8BA428D2AEED6509639B25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fa:e7:3e:52:04:6e:88:8e:a3:82:8b:72:96:
b6:fb:43:25:73:2e:01:f6:41:d8:d3:e8:93:d8:13:
89:20:b1:a1:59:d8:aa:bd:6d:a0:00:dd:54:ff:6a:
b2:f9:6e:a7:2f:6d:38:85:57:92:8b:e1:56:3c:4c:
c6:8b:33:6c:85:c3:1c:53:a4:28:7e:bd:4f:5e:c6:
dc:2e:6f:70:10:7e:fe:73:da:97:1f:6e:cc:8e:df:
5a:96:9c:73:88:ed:ff:34:9c:5a:84:7c:80:3e:d7:
4b:47:48:5f:9e:1d:95:6a:84:4b:1f:a5:93:a7:50:
91:94:73:58:ad:17:89:2a:14:f8:c7:85:a5:85:fc:
a1:1d:dd:67:d0:cd:7b:60:8f:06:84:ce:d9:45:00:
37:d4:74:44:57:95:aa:de:85:62:ab:b0:82:ae:45:
8a:a0:ea:bd:83:4e:64:a3:81:63:0d:fa:d1:91:29:
44:cd:a9:6a:59:7e:5a:2b:b7:fd:73:49:cc:a1:08:
60:07:a2:34:4d:1d:40:cd:88:7a:4d:fc:62:47:87:
59:ea:8b:2b:7e:8d:d8:68:40:6b:43:41:19:72:13:
d4:06:bb:60:1a:5c:3e:02:d7:a3:18:76:c7:21:3d:
b6:08:1c:9e:8a:03:92:ac:b2:6a:e2:e7:75:2c:5e:
2d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:70:4F:0F:92:D9:28:33:CB:8B:A4:28:D2:AE:ED:65:09:63:9B:25
X509v3 Authority Key Identifier:
keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:68::/48
Signature Algorithm: sha256WithRSAEncryption
c8:24:65:d5:13:9a:d4:1f:98:cc:28:ab:d4:94:4d:08:af:d2:
ff:51:fb:24:45:e0:dd:87:ac:b7:99:28:c1:d4:71:ae:83:5b:
bc:7c:af:25:9e:9e:20:e7:39:a3:9d:05:09:7b:e3:3f:9d:be:
07:63:d5:92:22:ed:6e:ea:0b:f0:82:ad:d4:d0:ef:3d:28:1a:
e7:26:50:63:8e:b6:12:34:25:a5:f6:8f:c8:1d:6d:1a:7c:9e:
2e:35:12:63:2a:26:01:6e:79:a0:ea:26:63:54:0b:50:4c:9d:
db:3b:e6:cc:7f:0a:23:14:bd:67:67:6b:47:39:4d:47:2f:2f:
91:78:cd:30:5a:da:bd:c3:a1:ed:b9:cd:76:24:a7:d6:3d:0f:
3c:9a:8e:f2:df:80:51:99:4d:5a:e2:c8:8a:ca:cd:17:e3:91:
94:b2:bb:63:39:06:99:20:d9:53:94:0d:ce:35:8e:18:86:1e:
59:1e:07:85:d4:5c:c3:1b:e7:46:36:9a:48:8f:26:e8:1b:33:
a1:b6:4a:25:30:94:3c:6f:de:5e:d4:8f:fe:03:e1:f0:b8:c7:
6d:a3:76:aa:c8:9a:d3:b7:5e:bf:ba:8e:e9:40:72:04:4f:a2:
c7:b9:d2:28:be:52:3b:3a:5b:6f:d2:4e:66:b3:99:db:3c:16:
8c:9c:1a:9a
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgIUH6t21Wkr2KdwhdMQdpBmLuJQ2DYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEFBRDIyMUU0MDcwOTg5RDQ5MzlGQUNBMEYwOTgxQUIy
NkU5Mzg5NTAeFw0yNTA0MjQxMzE0MjVaFw0yNjA0MjMxMzE5MjVaMDMxMTAvBgNV
BAMTKEQ5NzA0RjBGOTJEOTI4MzNDQjhCQTQyOEQyQUVFRDY1MDk2MzlCMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs+uc+UgRuiI6jgotylrb7QyVz
LgH2QdjT6JPYE4kgsaFZ2Kq9baAA3VT/arL5bqcvbTiFV5KL4VY8TMaLM2yFwxxT
pCh+vU9extwub3AQfv5z2pcfbsyO31qWnHOI7f80nFqEfIA+10tHSF+eHZVqhEsf
pZOnUJGUc1itF4kqFPjHhaWF/KEd3WfQzXtgjwaEztlFADfUdERXlarehWKrsIKu
RYqg6r2DTmSjgWMN+tGRKUTNqWpZflort/1zScyhCGAHojRNHUDNiHpN/GJHh1nq
iyt+jdhoQGtDQRlyE9QGu2AaXD4C16MYdschPbYIHJ6KA5Kssmri53UsXi1PAgMB
AAGjggIpMIICJTAdBgNVHQ4EFgQU2XBPD5LZKDPLi6Qo0q7tZQljmyUwHwYDVR0j
BBgwFoAUCq0iHkBwmJ1JOfrKDwmBqybpOJUwDgYDVR0PAQH/BAQDAgeAMG4GA1Ud
HwRnMGUwY6BhoF+GXXJzeW5jOi8vcnBraS0wMS5wZHhuZXQudWsvcmVwby9wYXJh
ZG94bmV0d29ya3MvMi8wQUFEMjIxRTQwNzA5ODlENDkzOUZBQ0EwRjA5ODFBQjI2
RTkzODk1LmNybDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUFBzAChnRyc3lu
YzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYz
ZTAxODU3NTVjOTFiZTNmOWQvMi8wQUFEMjIxRTQwNzA5ODlENDkzOUZBQ0EwRjA5
ODFBQjI2RTkzODk1LmNlcjCBjgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4Zx
cnN5bmM6Ly9ycGtpLTAxLnBkeG5ldC51ay9yZXBvL3BhcmFkb3huZXR3b3Jrcy8y
LzMyNjEzMDM1M2E2NDY2NjMzNDNhMzYzODNhM2EyZjM0MzgyZDMxMzIzODIwM2Qz
ZTIwMzUzMjMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggr
BgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF38QAaDANBgkqhkiG9w0BAQsFAAOC
AQEAyCRl1ROa1B+YzCir1JRNCK/S/1H7JEXg3Yest5kowdRxroNbvHyvJZ6eIOc5
o50FCXvjP52+B2PVkiLtbuoL8IKt1NDvPSga5yZQY462EjQlpfaPyB1tGnyeLjUS
YyomAW55oOomY1QLUEyd2zvmzH8KIxS9Z2drRzlNRy8vkXjNMFravcOh7bnNdiSn
1j0PPJqO8t+AUZlNWuLIisrNF+ORlLK7YzkGmSDZU5QNzjWOGIYeWR4HhdRcwxvn
RjaaSI8m6BszobZKJTCUPG/eXtSP/gPh8LjHbaN2qsia07dev7qO6UByBE+ix7nS
KL5SOzpbb9JOZrOZ2zwWjJwamg==
-----END CERTIFICATE-----
Generated at Thu Jul 24 00:25:13 2025 by rpki-client