Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a3963663a3a2f34382d313238203d3e203532303235.roa
File: 326130353a646663343a3963663a3a2f34382d313238203d3e203532303235.roa (raw, json)
Hash identifier: GZchU/d+vzw6D11lxkTK4QIxt/fki9y2HUbHbyujPp8=
Subject key identifier: 25:1A:CD:C2:A5:AE:71:86:58:85:44:07:51:99:EF:85:E0:89:84:35
Certificate issuer: /CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Certificate serial: 6CCA5A430AABD309BC2601B0033346976F6E7AC0
Authority key identifier: F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a3963663a3a2f34382d313238203d3e203532303235.roa
Signing time: Thu 03 Jul 2025 15:53:53 +0000
ROA not before: Thu 03 Jul 2025 15:48:53 +0000
ROA not after: Thu 02 Jul 2026 15:53:53 +0000
asID: 52025
IP address blocks: 2a05:dfc4:9cf::/48 maxlen: 128
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:ca:5a:43:0a:ab:d3:09:bc:26:01:b0:03:33:46:97:6f:6e:7a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Validity
Not Before: Jul 3 15:48:53 2025 GMT
Not After : Jul 2 15:53:53 2026 GMT
Subject: CN=251ACDC2A5AE7186588544075199EF85E0898435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:18:a4:2c:05:3b:8c:b3:b7:0d:b7:4b:60:6e:
60:7a:80:a2:08:70:6a:0a:7d:29:c0:37:04:4e:b1:
e8:bb:3c:88:b6:c6:d1:1f:2a:7a:79:b1:3f:e8:27:
5d:ae:c2:e8:af:22:65:67:ca:99:a6:60:af:3d:59:
c0:3c:9a:31:c9:fc:e0:22:26:18:65:46:d1:04:52:
ca:f9:64:7f:4f:25:12:a8:6e:f6:49:75:e2:15:dd:
10:51:23:3a:93:68:29:c2:7d:0c:5a:fc:d6:63:cf:
11:78:2f:4f:3b:b8:0c:11:36:59:19:db:26:53:3b:
3e:b1:18:df:8f:22:a9:eb:c9:25:7c:27:2a:f7:ef:
21:3a:60:46:5d:9a:30:09:85:dc:f6:42:91:e8:f8:
93:4e:5e:be:89:18:de:09:f3:1c:55:9b:90:ad:dd:
17:6a:73:31:7e:51:9f:3e:8a:33:34:bd:31:95:cd:
4b:ec:90:7f:9b:35:e7:c3:f5:59:07:a8:88:58:67:
2e:74:5a:c0:58:6c:1a:4c:a6:83:d9:b7:c9:69:d2:
2f:f6:c5:88:4e:21:d1:37:59:24:8c:0c:73:38:c7:
13:55:92:1d:19:bd:08:f4:90:e6:ca:c8:64:90:b3:
45:f6:c2:ea:e5:55:05:3b:f7:0b:d1:a8:42:e2:fc:
75:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1A:CD:C2:A5:AE:71:86:58:85:44:07:51:99:EF:85:E0:89:84:35
X509v3 Authority Key Identifier:
keyid:F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/F6386FABEA39210B665A6A55AE5DA66BE6741597.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a3963663a3a2f34382d313238203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:9cf::/48
Signature Algorithm: sha256WithRSAEncryption
8d:6f:f2:3e:35:f9:e5:f0:79:67:70:13:00:5e:93:76:25:a8:
d8:bf:1a:88:80:19:40:00:f3:b4:35:33:8b:42:91:f8:c6:d9:
35:f7:5f:5d:01:8f:83:c3:12:2f:be:b6:33:fc:89:fd:52:e2:
44:ad:13:4f:c3:a9:f0:7f:94:8e:9c:59:cd:6c:bb:e5:4e:70:
f1:ac:79:e3:c9:29:8b:40:bf:2e:61:90:df:dd:6b:05:d8:de:
a3:85:0d:9b:fa:ce:ff:10:49:74:55:f7:54:aa:1b:8f:f1:b4:
49:ba:87:64:f6:18:01:eb:af:48:c6:b6:27:8a:00:bc:1e:fc:
fb:79:3f:c3:1d:9c:d8:9e:3c:d7:cc:c9:7e:bb:e7:de:8c:b6:
a6:d4:60:c6:d1:0b:70:e5:d5:70:3a:34:dd:da:15:ef:ff:ab:
f6:b6:02:7c:d1:9c:5e:e9:a0:77:3b:e9:58:96:51:77:4f:db:
99:51:4a:3c:c0:ab:de:5d:7c:5d:50:83:e6:c4:97:39:6b:74:
a1:6b:f3:7c:77:a5:0e:d9:63:b5:07:9e:0d:4c:58:a7:6f:a0:
4a:bc:43:3a:06:f2:ee:49:d8:09:98:01:93:6c:8b:09:00:0c:
54:a6:b2:5a:15:42:ab:28:be:2a:b7:0d:4b:98:7c:09:5e:d3:
d4:da:43:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 21:32:51 2025 by rpki-client