Route Origin Authorization
$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a6531303a3a2f34382d3438203d3e203532303235.roa
File: 326130353a646663343a6531303a3a2f34382d3438203d3e203532303235.roa (raw, json)
Hash identifier: FTJHPvtzRKz4I/E8ZVPmXwZ0T7hE2AJBsEriGUl+AUY=
Subject key identifier: D7:91:D4:65:E8:81:57:E7:D7:0A:13:C9:80:BB:F5:43:07:61:5C:74
Certificate issuer: /CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Certificate serial: 3208821E60FBBB43BE89AB9A10AD47D36D77F6B3
Authority key identifier: F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject info access: rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a6531303a3a2f34382d3438203d3e203532303235.roa
Signing time: Thu 03 Jul 2025 15:54:04 +0000
ROA not before: Thu 03 Jul 2025 15:49:04 +0000
ROA not after: Thu 02 Jul 2026 15:54:04 +0000
asID: 52025
IP address blocks: 2a05:dfc4:e10::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:08:82:1e:60:fb:bb:43:be:89:ab:9a:10:ad:47:d3:6d:77:f6:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6386FABEA39210B665A6A55AE5DA66BE6741597
Validity
Not Before: Jul 3 15:49:04 2025 GMT
Not After : Jul 2 15:54:04 2026 GMT
Subject: CN=D791D465E88157E7D70A13C980BBF54307615C74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:df:1c:f6:ea:08:67:22:50:d4:55:a4:b4:aa:
7b:bd:62:af:45:df:75:4c:66:51:7e:51:1d:11:93:
4a:d8:76:5a:c3:c5:27:c1:e9:b3:db:ce:dd:7c:19:
5b:4b:9b:cc:fb:3c:d3:df:9e:44:a7:a5:af:e6:a3:
71:ee:b5:c7:48:1a:2a:c7:2d:3b:42:5a:dc:e4:5c:
c7:ca:63:48:38:93:db:ee:c1:04:b0:f1:11:7f:63:
c1:5b:1c:aa:ae:52:19:8b:57:ba:69:3b:47:51:d0:
bb:db:07:79:70:af:93:ed:4a:bd:a9:83:a9:30:12:
8c:cd:86:2c:a8:96:34:f3:7e:14:63:1c:73:e5:6e:
b9:81:ff:4f:4d:ae:3c:84:4e:e8:aa:56:3b:1a:08:
b5:c0:9d:1c:6d:69:2e:0e:e8:23:40:b9:32:f9:0d:
26:7e:ec:29:35:d6:23:ba:0b:30:46:3f:a5:8a:40:
69:e8:3c:8f:f2:17:5b:28:65:25:5e:91:c4:72:64:
ff:1d:6c:fa:86:02:97:d3:6a:35:b8:9c:fe:ba:05:
50:f2:7b:a4:84:6a:15:11:0b:b1:7e:e8:5e:fe:90:
e4:49:fd:57:cf:b4:73:c0:25:52:b2:0a:3b:a3:b7:
10:3a:7a:dd:3b:f1:65:b5:d5:b4:25:9e:8d:55:92:
4d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:91:D4:65:E8:81:57:E7:D7:0A:13:C9:80:BB:F5:43:07:61:5C:74
X509v3 Authority Key Identifier:
keyid:F6:38:6F:AB:EA:39:21:0B:66:5A:6A:55:AE:5D:A6:6B:E6:74:15:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/F6386FABEA39210B665A6A55AE5DA66BE6741597.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/F6386FABEA39210B665A6A55AE5DA66BE6741597.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/8/326130353a646663343a6531303a3a2f34382d3438203d3e203532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc4:e10::/48
Signature Algorithm: sha256WithRSAEncryption
82:b3:73:a2:e8:82:a2:bf:04:85:a2:3b:14:db:fb:8e:73:6a:
b0:bf:7b:30:1e:45:fc:a8:1d:de:9e:64:86:1e:42:d7:13:61:
71:92:f8:2d:09:00:fb:ab:c1:6c:57:5a:97:bf:ba:ea:99:b5:
f9:ee:b0:a5:cd:28:55:dc:32:bd:9b:3a:30:52:4b:72:32:36:
d1:a9:12:d5:ad:71:43:09:b9:28:6e:ac:4e:cc:cd:2c:0b:08:
44:a1:87:35:d6:a4:c7:f7:18:5b:64:e6:5d:b5:38:b0:ad:28:
1d:42:12:5f:b2:ea:33:2a:f8:f8:fa:88:e0:f3:4e:6a:4c:2f:
77:e7:dc:43:2c:30:a1:26:ff:6c:50:88:11:55:d7:ba:8d:e4:
56:b2:ce:d2:bb:44:ce:01:4e:05:ac:db:db:16:a1:0c:2e:9a:
95:98:60:b2:9f:65:a5:f6:5d:9c:32:ae:db:d2:c1:f6:ea:13:
d2:ac:82:1d:f6:23:a4:9d:8f:64:16:c3:a8:c1:93:9e:97:a8:
11:cc:60:42:99:9a:8d:ce:e3:eb:8b:58:99:cb:d3:88:ab:52:
90:df:04:45:56:49:bd:28:e2:d6:7a:4c:db:d3:b7:01:37:4c:
3a:5d:1c:7f:f1:32:88:34:a3:cf:32:e4:f1:5b:e8:15:91:cf:
a7:87:6b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 21:32:43 2025 by rpki-client