Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a313931633a3a2f34382d3438203d3e203532303235.roa
File: 326130353a646663343a313931633a3a2f34382d3438203d3e203532303235.roa (raw, json)
Hash identifier: 5ULCJ0KhIgZ3Es7gwRbHXFwVAT/E1w7xmzsJQ+I3pzs=
Subject key identifier: F0:88:51:F8:78:1E:80:11:AA:18:72:D5:D8:81:5F:51:A6:56:75:A0
Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial: 4E2F42CF0AF94906AF34F2C59C7AC063D881BAA0
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a313931633a3a2f34382d3438203d3e203532303235.roa
Signing time: Mon 15 Jan 2024 17:47:49 +0000
ROA not before: Mon 15 Jan 2024 17:42:49 +0000
ROA not after: Mon 13 Jan 2025 17:47:49 +0000
asID: 52025
IP address blocks: 2a05:dfc4:191c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:2f:42:cf:0a:f9:49:06:af:34:f2:c5:9c:7a:c0:63:d8:81:ba:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Validity
Not Before: Jan 15 17:42:49 2024 GMT
Not After : Jan 13 17:47:49 2025 GMT
Subject: CN=F08851F8781E8011AA1872D5D8815F51A65675A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f2:ee:4c:87:f7:de:c6:b3:58:af:a8:09:6d:
fd:86:76:ed:f6:70:84:da:bc:ea:41:fc:d6:78:83:
ac:d2:32:14:34:10:25:97:ba:80:6d:7c:54:b3:cb:
27:e6:21:9f:32:37:b5:c6:00:1f:be:93:f2:90:4c:
a4:fd:36:c0:a4:be:28:9a:32:70:b5:aa:8f:3d:29:
24:1b:57:2e:23:18:ec:e9:60:36:a3:e9:48:a2:b9:
9e:05:87:79:b1:3a:5c:43:14:99:00:1d:5a:40:cc:
21:b1:ed:e7:ae:85:43:c0:60:b1:f4:19:5f:cf:27:
50:ec:5e:d2:7b:70:ff:1e:56:03:29:f0:4e:95:77:
3b:36:26:c7:6c:6b:8d:5d:4d:53:25:fd:9e:ab:2b:
d2:ef:cd:99:75:34:bb:35:31:13:3c:42:2f:d3:c1:
63:f2:66:ef:7b:10:fe:3a:38:08:22:c3:4c:2c:5f:
c7:1b:66:52:7d:a0:87:6f:3b:e9:30:a3:46:e0:7d:
0d:2b:81:96:62:88:b9:29:ae:f6:ac:91:cf:f8:bd:
1b:64:f9:ca:f0:2b:e6:26:b4:c8:2d:b3:24:7e:60:
16:7c:0d:f8:69:b6:e0:1d:4b:3c:30:95:0a:78:5b:
1d:32:6e:3a:f8:1d:28:08:b3:b2:3c:62:97:1f:7f:
4c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:88:51:F8:78:1E:80:11:AA:18:72:D5:D8:81:5F:51:A6:56:75:A0
X509v3 Authority Key Identifier:
keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a313931633a3a2f34382d3438203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:191c::/48
Signature Algorithm: sha256WithRSAEncryption
5a:61:a7:2a:a1:95:be:89:50:c4:71:78:41:c7:bc:e4:b8:25:
96:82:a6:fd:5a:8c:94:a0:e5:94:0a:3b:4f:24:e2:d7:d9:37:
07:9b:38:32:0c:84:91:6f:77:81:18:2a:47:fa:37:3e:c5:9a:
76:19:79:cb:4d:a0:9f:6c:cf:2d:f5:18:53:dd:1d:bc:77:e2:
57:11:39:3a:fe:04:6f:45:59:46:70:e3:98:20:44:74:6d:f3:
c2:1d:4c:dd:e6:a3:98:13:09:14:e6:be:44:0c:04:14:15:e6:
57:d1:e7:5c:37:05:27:86:8f:d4:ed:ec:ba:4b:3d:46:bb:c3:
a9:67:12:3a:b3:99:e5:7b:ee:d2:be:5a:e6:24:57:11:d1:9a:
eb:4e:d3:a9:3b:f6:b6:e1:7f:2b:ce:a1:b1:ef:b7:2e:ab:b6:
47:68:b2:5d:16:bd:21:58:ea:a4:cb:12:d8:2f:dd:29:8c:bb:
e0:d3:d3:9b:74:3e:2e:d9:dc:ee:b9:2e:1e:6d:52:9c:09:8e:
99:98:fc:4e:b9:f6:8d:84:83:ac:6d:5d:2c:08:9a:e5:16:8b:
eb:ff:70:d2:15:67:a3:d6:3f:e7:c1:a0:26:0c:d8:eb:53:1a:
1c:7e:50:48:d8:91:f2:94:42:64:ca:63:b6:53:36:10:82:e0:
29:9f:e1:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:33:54 2025 by rpki-client