Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa
File: 326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa (raw, json)
Hash identifier: +VXUhXVGLXejNcRziqUDE7n+LzX30oSUJi+qhzK62g8=
Subject key identifier: D2:E6:0B:33:35:B2:09:89:38:49:D5:EC:02:11:D3:BF:82:D1:4E:A8
Certificate issuer: /CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Certificate serial: 104558C13753920A460C34EF2353866B9BF48EBD
Authority key identifier: F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa
Signing time: Thu 03 Jul 2025 15:53:51 +0000
ROA not before: Thu 03 Jul 2025 15:48:51 +0000
ROA not after: Thu 02 Jul 2026 15:53:51 +0000
asID: 52025
IP address blocks: 2a05:dfc4:68::/48 maxlen: 128
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:45:58:c1:37:53:92:0a:46:0c:34:ef:23:53:86:6b:9b:f4:8e:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Validity
Not Before: Jul 3 15:48:51 2025 GMT
Not After : Jul 2 15:53:51 2026 GMT
Subject: CN=D2E60B3335B209893849D5EC0211D3BF82D14EA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:16:ba:dc:73:f1:40:c4:d9:d1:57:de:90:ac:
5f:67:52:60:f3:2d:5d:d9:3e:03:a5:e8:44:45:70:
b4:67:47:67:83:71:9a:fc:39:89:ed:b4:61:70:2f:
86:2d:e3:59:98:48:4e:7c:3d:a4:dc:1e:f8:22:3b:
24:d8:42:82:c9:45:d5:85:c7:b4:89:6b:c4:8c:25:
16:43:bc:20:ab:0a:0d:00:11:67:fc:e1:05:e4:1b:
a9:e2:f8:3c:a1:3b:ef:6c:92:c6:71:da:a4:db:a3:
cc:75:eb:7a:9f:2f:45:7d:f3:c2:2f:63:f3:d0:f1:
b5:ee:76:a7:67:47:f4:91:cf:f3:86:c3:03:1c:00:
53:7b:bd:21:90:55:a7:cd:e5:99:a6:01:8f:ff:fc:
22:af:c9:9c:b6:24:30:d7:75:38:a2:81:14:fb:aa:
11:7b:7f:57:6c:14:0f:11:ad:f2:23:ac:07:b8:14:
66:93:35:31:7d:46:68:9e:9f:eb:e7:4a:ba:30:98:
ce:ea:72:f9:e7:5b:a2:4e:9a:5a:ca:82:71:e5:0d:
19:a5:2b:4a:9b:38:37:2e:a8:e3:3d:99:f8:d5:28:
ad:38:86:6b:63:23:3b:4d:64:c8:6e:e4:d8:0d:28:
2d:27:aa:49:5d:37:3e:0f:74:42:fe:53:ab:9b:52:
03:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E6:0B:33:35:B2:09:89:38:49:D5:EC:02:11:D3:BF:82:D1:4E:A8
X509v3 Authority Key Identifier:
keyid:F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/F6386FABEA39210B665A6A55AE5DA66BE6741597.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a36383a3a2f34382d313238203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:68::/48
Signature Algorithm: sha256WithRSAEncryption
0c:29:6f:c0:03:cc:c0:99:89:1a:d9:8f:ce:e4:1c:ba:6c:21:
7c:12:5b:8f:05:74:f1:58:aa:ca:8a:b0:d4:5f:0d:65:ee:c8:
60:42:49:2b:b7:c6:18:1f:a0:05:69:7a:3b:cd:cb:6a:55:1b:
65:55:81:bc:9c:95:a1:37:dd:ca:b4:bb:c5:8b:93:1d:67:c8:
f8:36:57:c3:65:87:93:58:e4:86:a5:5c:bc:0c:57:03:04:d2:
f6:0d:68:e2:ea:cf:65:66:f6:94:77:02:64:03:8e:5d:da:34:
0c:b2:5a:6d:b1:f1:13:bc:c0:3a:f5:57:2f:a2:65:da:f1:02:
ed:a1:f5:e3:e6:05:32:7a:19:8e:a1:30:73:a3:7a:22:d6:94:
97:e5:80:ea:7a:cd:84:99:78:6d:6e:f9:ce:01:19:4f:ca:7f:
0b:9b:7d:69:71:ad:09:e0:b3:b6:00:86:6d:ea:bf:34:2e:ea:
05:6f:59:0c:84:ca:b9:04:5a:51:38:17:7b:16:b0:9e:17:fa:
37:b4:9e:34:87:d0:df:54:62:1e:3e:28:da:e3:66:70:24:2b:
87:be:cd:f0:88:d1:c9:4c:6c:15:af:6a:4c:08:fc:2c:ab:70:
c6:fd:fc:6e:c7:03:6b:a9:43:dd:ed:cd:3a:97:51:c5:a8:aa:
94:30:cb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 21:32:36 2025 by rpki-client