$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa File: 326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa (raw, json) Hash identifier: cOVbfq6PQjbusvDjrcH/VjsPd+sv8sokv8y5/E/MWic= Subject key identifier: A9:21:CE:C4:47:0B:D1:01:A2:AA:48:84:78:65:C8:B2:BC:73:74:D0 Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895 Certificate serial: 4A6582F670A6876C1F106E1B68EAA3344E271D42 Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa Signing time: Thu 24 Apr 2025 13:19:38 +0000 ROA not before: Thu 24 Apr 2025 13:14:38 +0000 ROA not after: Thu 23 Apr 2026 13:19:38 +0000 asID: 52025 IP address blocks: 2a05:dfc4:c1bf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 30 Apr 2025 09:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:65:82:f6:70:a6:87:6c:1f:10:6e:1b:68:ea:a3:34:4e:27:1d:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895 Validity Not Before: Apr 24 13:14:38 2025 GMT Not After : Apr 23 13:19:38 2026 GMT Subject: CN=A921CEC4470BD101A2AA48847865C8B2BC7374D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:d2:33:28:3d:0f:de:a7:7e:3a:b6:eb:31: c0:ed:2b:20:40:4f:28:27:a1:b1:74:b9:82:eb:5e: bd:19:aa:f9:da:1e:d4:f7:af:ba:bd:c3:29:b9:63: 73:9b:e5:85:79:90:39:6e:45:dd:74:fd:e8:83:7a: 89:e3:43:98:5f:5b:3a:78:f9:c3:b2:23:38:9c:a9: 71:7d:2f:36:1f:59:bc:ff:c2:23:e1:4a:31:d8:b6: 78:fb:9e:53:1f:58:33:93:06:e2:b6:7a:bd:2c:8a: 89:fc:d0:fd:99:53:c3:0b:ea:3a:d9:46:c4:a8:6a: 97:19:e0:ae:b3:09:8a:aa:4b:fe:1f:f4:8a:a6:b9: 92:30:75:c4:ee:dc:e1:e9:25:98:07:87:bd:b2:c9: 7e:d5:1c:b9:98:48:36:aa:36:fa:8d:cb:4d:1e:34: b0:13:3d:25:03:a4:42:ff:32:28:bb:9b:2e:8e:74: 80:f7:6e:3b:ea:8d:d8:39:e4:0b:6b:2d:3a:fb:83: 05:6b:81:4f:16:0e:fe:4d:6b:d1:f1:25:9e:d9:2e: 0a:6a:79:7b:70:63:9e:89:b3:18:5c:b3:32:e4:c5: a7:e2:5c:6b:c4:76:9a:59:8c:48:55:6c:63:b4:8a: 8d:d7:66:bc:ae:68:74:ff:3d:60:6a:23:60:85:df: 41:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:21:CE:C4:47:0B:D1:01:A2:AA:48:84:78:65:C8:B2:BC:73:74:D0 X509v3 Authority Key Identifier: keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer Subject Information Access: Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a633162663a3a2f34382d3438203d3e203532303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc4:c1bf::/48 Signature Algorithm: sha256WithRSAEncryption 10:05:9e:1d:93:08:0d:0c:ef:74:7d:38:bb:3f:d5:3f:90:b4: 9d:9d:f6:5d:bb:50:e1:85:e5:f3:6d:34:a8:d1:58:d7:0f:bc: 05:94:96:bc:5d:7a:57:8f:75:0e:e3:70:0d:53:33:34:60:3f: 8c:3c:72:64:b9:1b:6d:47:31:bf:7e:ac:36:b1:01:53:03:3d: 67:ae:29:5e:bc:98:36:32:41:73:b4:04:1d:f4:e6:41:4f:1e: b9:4e:9b:2e:ac:12:32:f2:dd:60:23:10:2a:ec:48:93:4a:7e: 2f:44:d8:09:02:13:46:7c:2e:b8:49:20:08:a1:d4:71:34:e8: 44:84:53:3a:65:92:a5:21:35:a8:59:d3:a4:76:b1:f8:4a:0c: 05:1a:87:61:17:6d:52:cd:93:21:09:55:1a:5a:90:b4:7d:01: 52:b5:7c:6d:3c:b6:2e:54:26:e2:be:ee:0e:76:86:e2:f4:a9: c8:2f:a6:13:d5:00:4f:f2:4a:0a:7c:b7:12:79:a1:dc:29:94: d3:f3:b9:ea:11:94:d6:33:a0:64:18:6f:a6:2a:22:54:ab:4d: 17:6f:29:76:2c:68:ac:92:ed:cc:b0:8b:ec:5d:c8:a7:7a:d9: 46:c1:cd:1a:65:57:ce:6c:4f:34:dd:20:5a:57:02:82:b7:a7: 5a:1a:ed:01 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUSmWC9nCmh2wfEG4baOqjNE4nHUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEFBRDIyMUU0MDcwOTg5RDQ5MzlGQUNBMEYwOTgxQUIy NkU5Mzg5NTAeFw0yNTA0MjQxMzE0MzhaFw0yNjA0MjMxMzE5MzhaMDMxMTAvBgNV BAMTKEE5MjFDRUM0NDcwQkQxMDFBMkFBNDg4NDc4NjVDOEIyQkM3Mzc0RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jdIzKD0P3qd+OrbrMcDtKyBA TygnobF0uYLrXr0ZqvnaHtT3r7q9wym5Y3Ob5YV5kDluRd10/eiDeonjQ5hfWzp4 +cOyIzicqXF9LzYfWbz/wiPhSjHYtnj7nlMfWDOTBuK2er0sion80P2ZU8ML6jrZ RsSoapcZ4K6zCYqqS/4f9IqmuZIwdcTu3OHpJZgHh72yyX7VHLmYSDaqNvqNy00e NLATPSUDpEL/Mii7my6OdID3bjvqjdg55AtrLTr7gwVrgU8WDv5Na9HxJZ7ZLgpq eXtwY56JsxhcszLkxafiXGvEdppZjEhVbGO0io3XZryuaHT/PWBqI2CF30FbAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUqSHOxEcL0QGiqkiEeGXIsrxzdNAwHwYDVR0j BBgwFoAUCq0iHkBwmJ1JOfrKDwmBqybpOJUwDgYDVR0PAQH/BAQDAgeAMG4GA1Ud HwRnMGUwY6BhoF+GXXJzeW5jOi8vcnBraS0wMS5wZHhuZXQudWsvcmVwby9wYXJh ZG94bmV0d29ya3MvMi8wQUFEMjIxRTQwNzA5ODlENDkzOUZBQ0EwRjA5ODFBQjI2 RTkzODk1LmNybDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUFBzAChnRyc3lu YzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYz ZTAxODU3NTVjOTFiZTNmOWQvMi8wQUFEMjIxRTQwNzA5ODlENDkzOUZBQ0EwRjA5 ODFBQjI2RTkzODk1LmNlcjCBkQYIKwYBBQUHAQsEgYQwgYEwfwYIKwYBBQUHMAuG c3JzeW5jOi8vcnBraS0wMS5wZHhuZXQudWsvcmVwby9wYXJhZG94bmV0d29ya3Mv Mi8zMjYxMzAzNTNhNjQ2NjYzMzQzYTYzMzE2MjY2M2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzUzMjMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF38TBvzANBgkqhkiG9w0BAQsF AAOCAQEAEAWeHZMIDQzvdH04uz/VP5C0nZ32XbtQ4YXl8200qNFY1w+8BZSWvF16 V491DuNwDVMzNGA/jDxyZLkbbUcxv36sNrEBUwM9Z64pXryYNjJBc7QEHfTmQU8e uU6bLqwSMvLdYCMQKuxIk0p+L0TYCQITRnwuuEkgCKHUcTToRIRTOmWSpSE1qFnT pHax+EoMBRqHYRdtUs2TIQlVGlqQtH0BUrV8bTy2LlQm4r7uDnaG4vSpyC+mE9UA T/JKCny3Enmh3CmU0/O56hGU1jOgZBhvpioiVKtNF28pdixorJLtzLCL7F3Ip3rZ RsHNGmVXzmxPNN0gWlcCgrenWhrtAQ== -----END CERTIFICATE-----Generated at Tue Apr 29 21:07:51 2025 by rpki-client