Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a35373a3a2f34382d313238203d3e203532303235.roa
File: 326130353a646663343a35373a3a2f34382d313238203d3e203532303235.roa (raw, json)
Hash identifier: uYpZkG4dfZIqmt1xZ2OfFDxZOWR+YdL2M1Bi/oY2i9I=
Subject key identifier: 5A:CB:B1:27:11:BF:BB:CE:36:8D:D7:74:C3:68:76:67:36:F5:AF:B2
Certificate issuer: /CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Certificate serial: 1CF56297E775805C3FAFD2FA983E5FF2476F2A68
Authority key identifier: F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a35373a3a2f34382d313238203d3e203532303235.roa
Signing time: Thu 03 Jul 2025 15:53:57 +0000
ROA not before: Thu 03 Jul 2025 15:48:57 +0000
ROA not after: Thu 02 Jul 2026 15:53:57 +0000
asID: 52025
IP address blocks: 2a05:dfc4:57::/48 maxlen: 128
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:f5:62:97:e7:75:80:5c:3f:af:d2:fa:98:3e:5f:f2:47:6f:2a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Validity
Not Before: Jul 3 15:48:57 2025 GMT
Not After : Jul 2 15:53:57 2026 GMT
Subject: CN=5ACBB12711BFBBCE368DD774C368766736F5AFB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7c:60:ac:6e:57:8e:9c:c7:81:d6:e9:63:4a:
cd:fc:79:ea:e7:e6:24:41:e6:6b:4c:32:ec:ca:e6:
a8:53:93:f6:a4:23:41:c4:fc:bb:3f:a7:a9:bc:38:
31:f9:36:0d:8b:28:81:31:be:34:c7:3d:33:73:fd:
dc:31:67:ee:e0:b3:2f:42:78:27:ba:5d:a9:30:2f:
c2:3b:b4:23:74:7c:18:11:97:88:d1:12:28:1d:5c:
5c:47:0c:3c:66:dc:72:70:7a:2d:23:5c:7b:8b:94:
fa:e9:ff:8a:58:49:65:c5:12:f9:b6:fe:88:96:c7:
8d:24:2b:93:f9:da:c1:03:bd:80:c8:ae:df:ea:f3:
3d:00:87:58:50:e3:12:92:48:98:3f:0b:8a:05:be:
69:c5:7c:7f:1d:d8:d3:a2:f7:35:77:4b:bf:df:47:
d5:98:08:75:99:b0:82:aa:b8:c2:5a:b9:13:98:9a:
5c:fd:55:70:4f:50:c9:48:59:36:f4:c8:22:81:d1:
4c:12:15:3e:de:65:a1:0d:7b:07:09:0a:9e:dd:74:
ce:92:45:fd:9c:ca:46:24:90:8b:93:76:58:fd:b5:
20:75:fb:0b:54:92:2e:b8:50:0d:d1:f6:2b:5f:11:
02:3a:b5:3c:d9:13:f3:e1:5a:28:a3:2b:dc:75:f0:
80:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CB:B1:27:11:BF:BB:CE:36:8D:D7:74:C3:68:76:67:36:F5:AF:B2
X509v3 Authority Key Identifier:
keyid:F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/F6386FABEA39210B665A6A55AE5DA66BE6741597.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a35373a3a2f34382d313238203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:57::/48
Signature Algorithm: sha256WithRSAEncryption
27:4d:f8:12:1b:b9:e1:15:a9:3f:53:d5:ec:ce:15:de:4a:5c:
32:80:08:af:b6:ea:a3:bf:ac:35:a8:55:35:4c:97:34:de:9f:
39:40:19:57:2c:4b:31:de:a3:df:12:6e:b7:8c:e4:38:4e:b5:
5e:46:18:3c:ba:4b:62:eb:28:82:79:1c:fc:b4:f2:0f:5e:a0:
5e:4c:dd:bd:b9:bf:f2:79:de:5f:c2:4e:65:66:6b:80:ad:a0:
67:0f:97:9d:d1:03:9d:61:a7:6d:c1:38:5c:1a:17:92:78:de:
51:71:0f:ac:77:4e:0c:76:11:64:d4:35:89:73:c0:bc:6a:19:
c4:8d:35:e6:ab:a1:ac:2d:f7:9f:a2:29:13:0b:a8:1b:d0:ae:
9a:96:79:a5:5d:b0:7a:3c:af:89:79:14:10:31:ce:ea:0a:36:
46:02:74:56:f9:13:1f:1a:6c:7b:8c:23:a3:0a:a6:80:7e:f8:
78:b7:9d:8b:fd:da:a6:fc:fd:e3:48:50:6e:94:9d:c6:eb:5f:
32:49:c6:d9:ce:8c:ca:34:2e:9a:40:d0:45:58:00:d8:f8:dc:
21:80:06:f8:92:eb:ac:11:76:ae:57:ca:4b:be:a7:6e:1d:59:
d3:4a:eb:55:05:7a:25:e2:e3:dd:b7:11:7f:e4:74:36:f2:ea:
c3:6a:4d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 21:33:36 2025 by rpki-client