Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130363a613030303a3430303a3a2f34302d3430203d3e203532303235.roa
File: 326130363a613030303a3430303a3a2f34302d3430203d3e203532303235.roa (raw, json)
Hash identifier: TVwMPhw5NI7jNAjF7RIIX5eriDQ3EyDLvHq2dUdu/eQ=
Subject key identifier: B1:75:35:EE:CF:0E:35:5D:76:16:01:11:49:65:F8:96:DD:3E:28:29
Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial: 0747E4E0B2276147277D9FE59D6B5F5C3AEECECC
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130363a613030303a3430303a3a2f34302d3430203d3e203532303235.roa
Signing time: Thu 10 Aug 2023 02:36:34 +0000
ROA not before: Thu 10 Aug 2023 02:31:34 +0000
ROA not after: Thu 08 Aug 2024 02:36:34 +0000
asID: 52025
IP address blocks: 2a06:a000:400::/40 maxlen: 40
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:47:e4:e0:b2:27:61:47:27:7d:9f:e5:9d:6b:5f:5c:3a:ee:ce:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Validity
Not Before: Aug 10 02:31:34 2023 GMT
Not After : Aug 8 02:36:34 2024 GMT
Subject: CN=B17535EECF0E355D761601114965F896DD3E2829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:63:d3:ca:11:c3:3e:ae:2d:aa:b2:a7:59:4f:
be:d0:3d:a5:38:ea:90:83:0d:f6:0e:7f:32:b3:c2:
51:dd:d5:aa:da:6c:cf:bb:83:29:fe:d5:8d:da:04:
67:d7:b0:dc:b1:14:f1:bd:47:b1:79:76:fe:d9:3c:
62:23:38:2d:58:87:c1:f8:36:64:77:f0:85:39:09:
67:b8:16:52:b2:b7:41:3c:00:8d:ef:64:91:30:62:
f6:1d:c1:a1:c9:8b:b1:43:8f:a4:58:46:e0:93:7f:
68:e3:88:69:dc:a7:76:b2:7a:45:10:81:87:ec:df:
e7:80:95:b1:87:13:e8:5b:b1:1b:e6:35:6e:48:29:
e9:bc:04:12:dd:0d:6f:44:e3:41:29:95:a6:9b:1e:
56:af:0d:2c:9a:3f:77:a0:0b:79:8d:a1:07:8a:2a:
bb:f1:66:ee:68:19:3d:18:56:f4:b0:b9:69:94:a5:
ae:38:06:e6:b8:8c:01:82:59:be:01:40:3a:45:08:
74:44:7e:b0:02:b3:7a:da:88:47:51:93:53:88:60:
7a:4b:08:e7:c3:12:b3:c3:9f:06:91:fc:3d:d9:65:
ab:59:60:5a:85:a6:b3:11:3d:cc:15:a9:ac:ac:f6:
d7:6e:41:16:53:68:ce:ff:e1:44:14:69:7f:c5:ec:
45:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:75:35:EE:CF:0E:35:5D:76:16:01:11:49:65:F8:96:DD:3E:28:29
X509v3 Authority Key Identifier:
keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130363a613030303a3430303a3a2f34302d3430203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a000:400::/40
Signature Algorithm: sha256WithRSAEncryption
42:2b:e9:e2:1f:0d:dd:3c:3a:da:ae:81:8d:de:81:88:c9:fa:
c8:52:5e:e5:da:4d:89:0e:15:65:7a:00:0d:a6:1a:d7:b8:94:
af:05:b3:78:c1:2a:41:ea:05:83:ea:22:fe:cc:5b:cf:b5:79:
40:45:d5:51:6e:5e:13:c5:a8:ff:8b:f5:4e:9c:9a:3d:e3:54:
fd:41:96:ee:8a:ef:91:95:45:87:5a:77:ca:0e:84:2b:68:80:
ad:81:52:f7:ac:59:40:fd:3d:46:c9:e1:a9:31:ee:d1:9e:d3:
f8:a3:81:37:33:45:73:b1:57:ff:e8:04:a2:a5:0e:97:a4:a6:
25:3a:6e:c6:17:be:ca:0c:64:24:db:0f:a7:76:5c:d2:3e:a9:
f6:8d:8f:51:2a:cb:36:f4:43:cc:4e:9b:2e:86:b1:ed:83:6d:
42:16:f0:35:f5:3e:a4:94:40:b5:36:b8:81:e5:b3:3a:be:4f:
05:94:dc:99:91:5d:dc:b2:a1:54:d4:36:5b:84:61:47:c9:94:
3f:d5:c7:71:cb:67:45:02:36:46:58:98:6d:eb:58:f9:22:30:
c2:53:7d:6b:d2:d1:6c:61:35:32:a9:7e:55:9b:e9:ec:b8:b0:
65:1b:02:2a:fa:72:44:27:3c:27:4d:c7:da:cf:c8:03:5c:d8:
a0:07:d7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:57 2024 by rpki-client on console-ams.rpki-client.org