Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a326333373a3a2f34382d3438203d3e203532303235.roa
File: 326130353a646663343a326333373a3a2f34382d3438203d3e203532303235.roa (raw, json)
Hash identifier: ORJCgaUTBDYdRapWoo63rATv+c0ABCOd6CApgFEA650=
Subject key identifier: 84:6B:B3:2F:54:05:AB:F7:78:03:05:6E:C5:79:84:44:2F:48:8B:0B
Certificate issuer: /CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Certificate serial: 46CE597EEF60055E84B0C4D7307FAECF15B9A694
Authority key identifier: F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a326333373a3a2f34382d3438203d3e203532303235.roa
Signing time: Thu 03 Jul 2025 15:54:04 +0000
ROA not before: Thu 03 Jul 2025 15:49:04 +0000
ROA not after: Thu 02 Jul 2026 15:54:04 +0000
asID: 52025
IP address blocks: 2a05:dfc4:2c37::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:ce:59:7e:ef:60:05:5e:84:b0:c4:d7:30:7f:ae:cf:15:b9:a6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Validity
Not Before: Jul 3 15:49:04 2025 GMT
Not After : Jul 2 15:54:04 2026 GMT
Subject: CN=846BB32F5405ABF77803056EC57984442F488B0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7e:d8:48:c9:3d:3e:4d:ca:c4:ed:de:0f:0d:
9f:67:b6:d3:42:23:68:0d:a6:7d:4e:1d:d1:20:28:
02:bb:3b:b1:00:53:85:fb:e2:39:0f:63:d2:81:3d:
fa:dc:df:33:b0:eb:44:e8:c7:cc:33:46:57:24:2c:
5f:25:e3:1a:fe:09:28:21:21:24:3c:53:02:a2:fd:
92:25:61:e6:ff:a7:c0:92:ea:61:d2:ee:4f:7d:ac:
3f:ae:67:08:85:cd:1c:2a:79:70:13:71:2f:96:44:
10:73:d5:46:60:e3:00:3a:d8:a9:f6:78:88:8c:f3:
28:f8:d0:2e:0f:88:e7:c7:46:6e:8a:53:c3:97:e0:
c4:4c:a8:99:c7:b5:77:b4:f4:90:dc:12:39:f5:13:
1c:3d:e2:63:9c:c3:44:2a:fd:cf:79:ec:c8:35:d1:
ec:96:45:50:48:9f:c1:1f:a7:96:93:ec:e1:07:ea:
cc:d5:9c:5a:1e:72:e5:2d:03:11:d6:e3:9c:3e:9b:
7b:3f:7c:88:39:cf:f9:21:82:e4:d0:50:c1:f4:dc:
dd:d1:b9:c3:ae:62:11:2a:56:d9:7d:7f:85:b1:a4:
45:fb:40:ce:2a:c5:7c:70:14:e2:a0:b1:e0:61:b2:
4e:6b:22:d7:0c:ab:7a:b1:7f:a5:17:31:68:de:95:
e0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6B:B3:2F:54:05:AB:F7:78:03:05:6E:C5:79:84:44:2F:48:8B:0B
X509v3 Authority Key Identifier:
keyid:F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/F6386FABEA39210B665A6A55AE5DA66BE6741597.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a326333373a3a2f34382d3438203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:2c37::/48
Signature Algorithm: sha256WithRSAEncryption
48:3e:8e:97:80:b7:43:bf:23:0a:ae:a7:d8:7e:63:9c:0c:06:
17:cd:7c:43:a7:b5:9c:37:1a:19:26:cc:93:f0:ec:1c:17:81:
6c:4c:97:f6:ec:e3:87:c6:d5:bf:2d:e0:3c:ba:79:0b:a2:3f:
61:1e:d7:d2:17:eb:0b:fc:87:26:09:9a:50:df:ae:f2:d4:d2:
d5:27:70:cb:5b:b5:06:9b:80:92:eb:a9:33:ab:73:fb:dd:00:
0f:ff:88:d1:ac:44:e3:23:1a:4c:cb:34:0e:38:6a:7f:35:ed:
b8:d1:64:f8:e2:02:4b:b9:00:4a:af:7c:ef:fc:4b:40:4f:19:
77:5c:90:53:61:bc:b0:49:6a:9a:d0:f4:88:58:2c:1c:fc:db:
d6:9b:be:ac:f8:1d:68:d6:45:78:9e:a3:c6:e0:bc:01:57:16:
f9:0e:31:e9:28:41:d9:ea:c2:87:df:95:56:d1:42:0f:2c:81:
77:40:46:8b:1e:fc:9b:fb:38:de:e3:0e:a0:00:00:e8:90:9f:
a4:d1:e2:ed:46:06:45:0a:11:d7:9d:0c:db:6a:24:82:28:12:
19:29:47:e5:67:09:00:da:8a:51:5a:32:48:af:50:d3:99:15:
74:3b:50:6b:57:00:b2:93:f9:ac:a8:4e:f1:56:b4:be:da:4d:
15:42:db:84
-----BEGIN CERTIFICATE-----
MIIFIjCCBAqgAwIBAgIURs5Zfu9gBV6EsMTXMH+uzxW5ppQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjYzODZGQUJFQTM5MjEwQjY2NUE2QTU1QUU1REE2NkJF
Njc0MTU5NzAeFw0yNTA3MDMxNTQ5MDRaFw0yNjA3MDIxNTU0MDRaMDMxMTAvBgNV
BAMTKDg0NkJCMzJGNTQwNUFCRjc3ODAzMDU2RUM1Nzk4NDQ0MkY0ODhCMEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsfthIyT0+TcrE7d4PDZ9nttNC
I2gNpn1OHdEgKAK7O7EAU4X74jkPY9KBPfrc3zOw60Tox8wzRlckLF8l4xr+CSgh
ISQ8UwKi/ZIlYeb/p8CS6mHS7k99rD+uZwiFzRwqeXATcS+WRBBz1UZg4wA62Kn2
eIiM8yj40C4PiOfHRm6KU8OX4MRMqJnHtXe09JDcEjn1Exw94mOcw0Qq/c957Mg1
0eyWRVBIn8Efp5aT7OEH6szVnFoecuUtAxHW45w+m3s/fIg5z/khguTQUMH03N3R
ucOuYhEqVtl9f4WxpEX7QM4qxXxwFOKgseBhsk5rItcMq3qxf6UXMWjeleAxAgMB
AAGjggIsMIICKDAdBgNVHQ4EFgQUhGuzL1QFq/d4AwVuxXmERC9IiwswHwYDVR0j
BBgwFoAU9jhvq+o5IQtmWmpVrl2ma+Z0FZcwDgYDVR0PAQH/BAQDAgeAMG4GA1Ud
HwRnMGUwY6BhoF+GXXJzeW5jOi8vcnBraS0wMS5wZHhuZXQudWsvcmVwby9wYXJh
ZG94bmV0d29ya3MvOC9GNjM4NkZBQkVBMzkyMTBCNjY1QTZBNTVBRTVEQTY2QkU2
NzQxNTk3LmNybDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUFBzAChnRyc3lu
YzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYz
ZTAxODU3NTVjOTFiZTNmOWQvNy9GNjM4NkZBQkVBMzkyMTBCNjY1QTZBNTVBRTVE
QTY2QkU2NzQxNTk3LmNlcjCBkQYIKwYBBQUHAQsEgYQwgYEwfwYIKwYBBQUHMAuG
c3JzeW5jOi8vcnBraS0wMS5wZHhuZXQudWsvcmVwby9wYXJhZG94bmV0d29ya3Mv
OC8zMjYxMzAzNTNhNjQ2NjYzMzQzYTMyNjMzMzM3M2EzYTJmMzQzODJkMzQzODIw
M2QzZTIwMzUzMjMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAi
BggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF38QsNzANBgkqhkiG9w0BAQsF
AAOCAQEASD6Ol4C3Q78jCq6n2H5jnAwGF818Q6e1nDcaGSbMk/DsHBeBbEyX9uzj
h8bVvy3gPLp5C6I/YR7X0hfrC/yHJgmaUN+u8tTS1Sdwy1u1BpuAkuupM6tz+90A
D/+I0axE4yMaTMs0DjhqfzXtuNFk+OICS7kASq987/xLQE8Zd1yQU2G8sElqmtD0
iFgsHPzb1pu+rPgdaNZFeJ6jxuC8AVcW+Q4x6ShB2erCh9+VVtFCDyyBd0BGix78
m/s43uMOoAAA6JCfpNHi7UYGRQoR150M22okgigSGSlH5WcJANqKUVoySK9Q05kV
dDtQa1cAspP5rKhO8Va0vtpNFULbhA==
-----END CERTIFICATE-----
Generated at Wed Oct 8 21:32:46 2025 by rpki-client