Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa
File: 326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa (raw, json)
Hash identifier: cOVbfq6PQjbusvDjrcH/VjsPd+sv8sokv8y5/E/MWic=
Subject key identifier: A9:21:CE:C4:47:0B:D1:01:A2:AA:48:84:78:65:C8:B2:BC:73:74:D0
Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial: 4A6582F670A6876C1F106E1B68EAA3344E271D42
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa
Signing time: Thu 24 Apr 2025 13:19:38 +0000
ROA not before: Thu 24 Apr 2025 13:14:38 +0000
ROA not after: Thu 23 Apr 2026 13:19:38 +0000
asID: 52025
IP address blocks: 2a05:dfc4:c1bf::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:65:82:f6:70:a6:87:6c:1f:10:6e:1b:68:ea:a3:34:4e:27:1d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Validity
Not Before: Apr 24 13:14:38 2025 GMT
Not After : Apr 23 13:19:38 2026 GMT
Subject: CN=A921CEC4470BD101A2AA48847865C8B2BC7374D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8d:d2:33:28:3d:0f:de:a7:7e:3a:b6:eb:31:
c0:ed:2b:20:40:4f:28:27:a1:b1:74:b9:82:eb:5e:
bd:19:aa:f9:da:1e:d4:f7:af:ba:bd:c3:29:b9:63:
73:9b:e5:85:79:90:39:6e:45:dd:74:fd:e8:83:7a:
89:e3:43:98:5f:5b:3a:78:f9:c3:b2:23:38:9c:a9:
71:7d:2f:36:1f:59:bc:ff:c2:23:e1:4a:31:d8:b6:
78:fb:9e:53:1f:58:33:93:06:e2:b6:7a:bd:2c:8a:
89:fc:d0:fd:99:53:c3:0b:ea:3a:d9:46:c4:a8:6a:
97:19:e0:ae:b3:09:8a:aa:4b:fe:1f:f4:8a:a6:b9:
92:30:75:c4:ee:dc:e1:e9:25:98:07:87:bd:b2:c9:
7e:d5:1c:b9:98:48:36:aa:36:fa:8d:cb:4d:1e:34:
b0:13:3d:25:03:a4:42:ff:32:28:bb:9b:2e:8e:74:
80:f7:6e:3b:ea:8d:d8:39:e4:0b:6b:2d:3a:fb:83:
05:6b:81:4f:16:0e:fe:4d:6b:d1:f1:25:9e:d9:2e:
0a:6a:79:7b:70:63:9e:89:b3:18:5c:b3:32:e4:c5:
a7:e2:5c:6b:c4:76:9a:59:8c:48:55:6c:63:b4:8a:
8d:d7:66:bc:ae:68:74:ff:3d:60:6a:23:60:85:df:
41:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:21:CE:C4:47:0B:D1:01:A2:AA:48:84:78:65:C8:B2:BC:73:74:D0
X509v3 Authority Key Identifier:
keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:c1bf::/48
Signature Algorithm: sha256WithRSAEncryption
10:05:9e:1d:93:08:0d:0c:ef:74:7d:38:bb:3f:d5:3f:90:b4:
9d:9d:f6:5d:bb:50:e1:85:e5:f3:6d:34:a8:d1:58:d7:0f:bc:
05:94:96:bc:5d:7a:57:8f:75:0e:e3:70:0d:53:33:34:60:3f:
8c:3c:72:64:b9:1b:6d:47:31:bf:7e:ac:36:b1:01:53:03:3d:
67:ae:29:5e:bc:98:36:32:41:73:b4:04:1d:f4:e6:41:4f:1e:
b9:4e:9b:2e:ac:12:32:f2:dd:60:23:10:2a:ec:48:93:4a:7e:
2f:44:d8:09:02:13:46:7c:2e:b8:49:20:08:a1:d4:71:34:e8:
44:84:53:3a:65:92:a5:21:35:a8:59:d3:a4:76:b1:f8:4a:0c:
05:1a:87:61:17:6d:52:cd:93:21:09:55:1a:5a:90:b4:7d:01:
52:b5:7c:6d:3c:b6:2e:54:26:e2:be:ee:0e:76:86:e2:f4:a9:
c8:2f:a6:13:d5:00:4f:f2:4a:0a:7c:b7:12:79:a1:dc:29:94:
d3:f3:b9:ea:11:94:d6:33:a0:64:18:6f:a6:2a:22:54:ab:4d:
17:6f:29:76:2c:68:ac:92:ed:cc:b0:8b:ec:5d:c8:a7:7a:d9:
46:c1:cd:1a:65:57:ce:6c:4f:34:dd:20:5a:57:02:82:b7:a7:
5a:1a:ed:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 00:23:08 2025 by rpki-client