Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a63343a3a2f34382d3438203d3e203532303235.roa
File: 326130353a646663343a63343a3a2f34382d3438203d3e203532303235.roa (raw, json)
Hash identifier: bgUutJi1euehZyu+5PpwS/J38uxZXgWak9HZNuGYnek=
Subject key identifier: 1F:C6:06:7F:27:8F:22:6B:3C:D0:A6:06:16:58:5C:07:8F:F2:6C:0D
Certificate issuer: /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial: 039FD4CA436AA4074B0FEA9D82ABBD1E10426091
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a63343a3a2f34382d3438203d3e203532303235.roa
Signing time: Wed 21 Feb 2024 06:26:08 +0000
ROA not before: Wed 21 Feb 2024 06:21:08 +0000
ROA not after: Wed 19 Feb 2025 06:26:08 +0000
asID: 52025
IP address blocks: 2a05:dfc4:c4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:9f:d4:ca:43:6a:a4:07:4b:0f:ea:9d:82:ab:bd:1e:10:42:60:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Validity
Not Before: Feb 21 06:21:08 2024 GMT
Not After : Feb 19 06:26:08 2025 GMT
Subject: CN=1FC6067F278F226B3CD0A60616585C078FF26C0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1a:88:f2:ec:e1:5c:b4:b0:ff:51:9d:0a:99:
c9:df:4a:06:0b:da:90:a2:79:03:e6:01:87:91:62:
87:26:c4:1e:ff:a2:60:d0:82:25:fc:b2:97:98:f3:
93:3e:3c:f2:1d:35:ec:3b:44:90:46:8b:7f:11:46:
82:19:ae:03:ce:c9:a9:f8:7d:6c:4b:83:f2:4a:0b:
d5:9a:1d:bf:c9:68:f9:49:92:71:b6:28:dc:31:fa:
f5:82:e3:a1:6b:bd:f5:78:37:c1:bf:83:95:5b:df:
14:5c:78:3d:e6:13:56:a0:d5:7f:d4:d3:12:0a:46:
e0:a5:2d:d8:0b:5b:b3:0e:e4:13:19:41:69:55:d9:
ff:86:8c:bd:1e:73:03:e5:bd:dd:b4:d9:37:3d:30:
9d:41:1d:ac:b3:b1:fc:d9:4d:1f:5c:3d:08:a3:95:
85:e5:66:c3:44:d4:c3:31:0d:50:a9:de:34:8f:5f:
89:6e:8a:92:11:0c:64:12:78:95:f7:74:d5:c9:5b:
a1:d2:62:f1:a8:e1:89:30:0f:60:2e:9a:14:b1:bc:
4d:0a:81:5c:6c:4d:88:98:dc:68:9c:0b:de:54:03:
30:8a:6e:c0:60:1c:9d:8b:37:d9:6d:3b:56:0f:ec:
8d:e2:96:90:7d:21:18:9f:43:27:16:b7:a6:19:68:
7d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C6:06:7F:27:8F:22:6B:3C:D0:A6:06:16:58:5C:07:8F:F2:6C:0D
X509v3 Authority Key Identifier:
keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a63343a3a2f34382d3438203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:c4::/48
Signature Algorithm: sha256WithRSAEncryption
be:4b:27:d0:94:b2:4c:a7:5c:2b:d9:16:dc:d0:4d:29:6c:96:
52:79:8f:c5:61:54:63:74:93:29:71:87:62:0b:06:59:eb:d7:
c7:a7:66:84:f7:9d:0e:9e:d9:95:bf:ac:4a:07:59:b2:0b:cb:
ef:f0:4d:e1:07:74:27:de:04:7f:fa:41:c3:84:9a:de:e8:49:
d7:b3:3e:53:a6:b0:d8:60:2c:1c:09:8b:5c:37:2a:97:ab:46:
30:22:ff:14:8b:37:be:25:ba:bb:d1:b9:61:0a:e6:74:5c:a8:
36:82:33:5c:25:b9:71:37:5f:df:aa:b9:06:89:74:33:e3:84:
80:b2:d3:2b:be:09:e9:1a:dc:1a:d9:75:df:f6:73:8a:68:97:
07:2a:c0:3d:35:ba:cc:b9:33:66:e1:79:3f:84:2e:2c:d8:f6:
1e:32:ef:3a:83:ea:e7:ed:1d:42:6c:6e:64:fc:df:f1:95:33:
15:8f:5e:41:6d:67:52:42:09:4b:68:fa:cf:e4:2d:77:14:e0:
94:14:51:66:c1:93:5d:a8:60:ff:d7:ce:54:34:55:ab:54:24:
b5:e2:bf:21:98:14:97:60:75:8c:b5:8e:3e:81:18:52:21:da:
7c:26:16:d3:72:92:f1:97:f7:d9:fe:e4:4b:ee:ed:0b:c0:c8:
90:f5:dc:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:53:39 2025 by rpki-client