Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/38312e33312e3231322e302f32342d3332203d3e203532303235.roa
File: 38312e33312e3231322e302f32342d3332203d3e203532303235.roa (raw, json)
Hash identifier: eBgRV08Tqqa6Zxd54flQDH+DjJbq905qwpBY86gTa8M=
Subject key identifier: BB:D3:22:15:01:DE:CD:DA:24:6A:E8:66:8E:6F:B5:16:39:C5:1C:9C
Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial: 0533998379C29A67819D3E73D25F45CBFDA936CD
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/38312e33312e3231322e302f32342d3332203d3e203532303235.roa
Signing time: Wed 10 Jan 2024 19:46:09 +0000
ROA not before: Wed 10 Jan 2024 19:41:09 +0000
ROA not after: Wed 08 Jan 2025 19:46:09 +0000
asID: 52025
IP address blocks: 81.31.212.0/24 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:33:99:83:79:c2:9a:67:81:9d:3e:73:d2:5f:45:cb:fd:a9:36:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Validity
Not Before: Jan 10 19:41:09 2024 GMT
Not After : Jan 8 19:46:09 2025 GMT
Subject: CN=BBD3221501DECDDA246AE8668E6FB51639C51C9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:61:e0:14:31:e1:ea:8f:1e:39:16:0d:99:8a:
1a:d4:4a:39:53:f0:0a:3f:57:f3:b9:18:bf:d5:ed:
b7:81:8b:cd:7d:c9:3b:23:53:08:5f:48:bd:34:db:
b8:3c:4a:53:0e:2a:24:0d:ca:99:34:d0:a5:88:06:
ab:e9:c4:67:07:77:79:90:e3:71:27:08:28:90:7a:
7b:24:c5:8d:b5:d9:41:57:2b:56:c4:7d:63:f4:ca:
83:08:4d:b2:36:64:a8:ff:d0:b4:74:cf:c5:66:39:
2a:74:c1:c7:27:0e:fa:f2:4b:c0:c6:c1:36:ab:56:
19:41:20:0b:3b:7b:5f:36:3d:42:75:80:bc:3a:9f:
57:8a:ce:66:b7:4c:d6:73:4d:85:14:68:4e:27:f1:
c1:bd:5d:85:d1:41:07:94:00:38:47:41:64:19:a4:
09:94:34:43:ea:76:b3:75:5e:2e:57:68:58:d1:61:
a7:cd:ed:1a:d7:e6:ce:d2:96:b7:4f:03:c8:ce:9f:
e0:b0:5c:35:ef:3a:45:96:cd:7e:fd:31:cc:9c:7f:
74:2e:26:1d:cb:7c:5b:26:cf:34:55:a9:64:54:01:
29:89:7b:8b:ea:ec:c8:ec:a3:55:2c:4d:99:c3:6e:
b9:3c:24:cd:11:a6:8a:55:ce:de:53:ed:0e:61:52:
3d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D3:22:15:01:DE:CD:DA:24:6A:E8:66:8E:6F:B5:16:39:C5:1C:9C
X509v3 Authority Key Identifier:
keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/38312e33312e3231322e302f32342d3332203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.212.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:7c:9b:aa:16:ee:e4:4b:cc:68:65:a5:f7:b3:b0:e6:38:ed:
48:a6:7b:71:b8:9e:d4:b6:a4:95:0e:9d:07:63:3c:5e:67:fc:
55:5c:58:54:96:b0:7a:de:b4:1a:93:77:4a:7b:5a:4c:f1:7f:
29:6e:ff:09:98:5b:b0:e9:b7:df:21:92:0e:c5:1b:74:e3:1c:
42:2d:fc:e4:71:25:11:f2:76:a9:13:5e:95:f7:f7:ef:a3:17:
04:8c:d3:87:7a:b9:95:75:6d:22:de:20:1d:ea:5e:1d:3b:00:
3e:8c:b4:b6:05:73:4b:3f:f3:04:f1:a9:f1:22:3c:4a:72:17:
75:98:5f:4a:4b:9a:28:a6:f1:f4:df:c8:f9:5b:3e:d5:9b:3f:
16:52:58:a6:c6:33:d0:99:8c:5c:21:cd:b4:75:84:9b:bd:42:
a9:f0:0f:7d:df:94:a2:95:7f:be:ea:03:27:33:cf:c9:1d:6f:
0c:df:dc:cb:a3:ad:bf:3d:be:bf:fa:d7:64:e3:86:49:9e:65:
df:bd:7b:9f:fc:1b:86:09:c1:cd:97:fd:44:02:28:01:7f:d0:
c4:84:6e:92:cb:1d:50:df:c2:3b:8f:86:cd:10:e0:50:34:42:
24:01:e3:b5:68:8e:f3:0b:e2:f3:da:70:95:dd:48:84:c3:ba:
32:47:74:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:16 2024 by rpki-client on console-fra.rpki-client.org