Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a326433383a3a2f34382d3438203d3e203532303235.roa
File: 326130353a646663343a326433383a3a2f34382d3438203d3e203532303235.roa (raw, json)
Hash identifier: +ZaYpd1qnCIeTMMHFLLJj5Igmq6cyL0FtQOTzhmt6ks=
Subject key identifier: 08:BF:A2:CA:14:36:CC:F1:0C:51:F0:4A:F9:A4:A5:E6:37:39:73:D7
Certificate issuer: /CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Certificate serial: 5C74B52E86F91DA3EA91A12EAAEEB0D02729B69C
Authority key identifier: F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a326433383a3a2f34382d3438203d3e203532303235.roa
Signing time: Thu 03 Jul 2025 15:54:08 +0000
ROA not before: Thu 03 Jul 2025 15:49:08 +0000
ROA not after: Thu 02 Jul 2026 15:54:08 +0000
asID: 52025
IP address blocks: 2a05:dfc4:2d38::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:74:b5:2e:86:f9:1d:a3:ea:91:a1:2e:aa:ee:b0:d0:27:29:b6:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Validity
Not Before: Jul 3 15:49:08 2025 GMT
Not After : Jul 2 15:54:08 2026 GMT
Subject: CN=08BFA2CA1436CCF10C51F04AF9A4A5E6373973D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:41:f8:f2:39:3b:b8:0e:8b:45:fa:c6:8c:ec:
35:6f:26:90:d4:b4:7a:9f:52:eb:d4:45:1d:87:36:
bc:c3:bc:68:ee:e6:fd:e5:36:41:82:d2:0b:06:69:
80:1e:33:d0:78:3c:38:13:7a:ed:2e:1e:f2:39:46:
57:2d:a7:67:b6:d8:65:83:4e:3f:24:25:56:45:0f:
fc:a1:83:19:df:08:76:7c:4e:6a:ff:c8:75:fb:fb:
f4:ad:0a:e2:fb:b8:e7:d3:30:71:2a:b0:0f:14:2d:
33:93:f0:5e:11:62:e5:02:ba:8a:31:2c:1f:be:9f:
0c:80:47:7a:cd:f6:82:2c:6e:b5:43:a6:35:2b:5b:
11:0d:5c:ef:30:aa:bb:db:ac:47:3c:a6:08:68:9a:
9b:f5:84:16:06:d4:43:35:16:44:c7:99:49:5f:12:
86:3e:a6:af:96:d3:22:2d:42:1b:ed:90:3d:db:07:
a0:24:3c:a5:fe:a3:72:b3:8e:80:97:99:e8:45:db:
eb:54:37:87:af:90:7d:dc:fc:3e:aa:59:05:85:be:
b2:8e:73:61:89:6f:bb:be:9f:ca:06:f2:d9:e1:1f:
57:e9:42:3b:5a:5d:c7:a8:a8:ce:9e:8b:f3:b5:86:
89:42:3f:3c:0c:a7:6b:88:ce:79:50:5b:26:87:8c:
87:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BF:A2:CA:14:36:CC:F1:0C:51:F0:4A:F9:A4:A5:E6:37:39:73:D7
X509v3 Authority Key Identifier:
keyid:F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/F6386FABEA39210B665A6A55AE5DA66BE6741597.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a326433383a3a2f34382d3438203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:2d38::/48
Signature Algorithm: sha256WithRSAEncryption
58:ee:9c:da:e1:6f:11:39:6a:48:56:fd:11:89:a0:ff:c4:ae:
c1:22:a8:c7:b7:ec:1d:f8:6c:61:c3:d1:b4:a2:4b:a0:d1:7e:
d6:f1:a3:39:67:65:4b:f0:8d:85:c8:70:63:26:31:fb:f1:13:
ac:6b:d5:33:16:ca:c2:52:ce:85:f4:15:66:ff:7a:8b:7e:fd:
33:32:bb:8e:2f:a3:2a:e6:65:1e:7a:2c:d9:24:00:51:52:3d:
de:2d:b6:43:a0:e0:50:2e:4e:4b:69:0b:b6:f0:61:18:10:32:
37:64:7a:5d:f8:8f:da:1a:02:fe:e1:1e:95:40:60:31:80:76:
d8:e9:e1:50:bf:36:ca:94:28:c1:16:63:6b:46:97:dd:b3:ef:
10:9b:3f:e2:3c:f6:b5:ab:46:d3:74:c2:2e:9b:17:32:64:87:
9d:3f:e1:3a:84:25:f2:e5:13:26:29:a8:f9:8e:da:c1:fd:9c:
ff:e2:41:33:72:62:58:12:d3:3d:e0:5f:dd:8d:d4:cf:48:0f:
9a:cd:35:ed:2d:b2:6a:e1:a0:f4:4e:1e:ef:b1:63:f5:03:2d:
bb:8e:f8:28:c8:13:51:0b:ae:29:25:b2:a5:c8:de:a5:ab:ff:
dd:73:3a:2a:07:88:8c:4f:97:3e:1a:c6:5c:e3:8a:5f:35:56:
16:18:ef:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 21:32:48 2025 by rpki-client