Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a316530303a3a2f34302d3430203d3e20323132323934.roa
File: 326131343a3763303a316530303a3a2f34302d3430203d3e20323132323934.roa (raw, json)
Hash identifier: JzDM4n6JGrJPwLNMVNJxZjTm1bBFFSyTG0lBm9odTZI=
Subject key identifier: 26:9C:51:FF:FC:BA:E7:4B:77:4C:58:C5:F4:91:27:A1:4C:7E:5A:BE
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 314A1A9964F3B07B1617D6169998D87133D5E9B6
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a316530303a3a2f34302d3430203d3e20323132323934.roa
Signing time: Tue 29 Apr 2025 15:19:15 +0000
ROA not before: Tue 29 Apr 2025 15:14:15 +0000
ROA not after: Tue 28 Apr 2026 15:19:15 +0000
asID: 212294
IP address blocks: 2a14:7c0:1e00::/40 maxlen: 40
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:4a:1a:99:64:f3:b0:7b:16:17:d6:16:99:98:d8:71:33:d5:e9:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Apr 29 15:14:15 2025 GMT
Not After : Apr 28 15:19:15 2026 GMT
Subject: CN=269C51FFFCBAE74B774C58C5F49127A14C7E5ABE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2b:d8:f2:e8:31:a1:45:79:0b:3f:7a:3b:9f:
56:a2:30:5d:77:e9:79:b3:02:d2:4b:b4:c9:c2:75:
fe:62:7d:52:33:30:ee:53:09:58:88:72:0c:ea:9e:
ec:86:3c:34:5e:81:d9:ac:8e:fc:71:e2:4f:51:9a:
d6:6b:0c:a0:69:f2:32:6e:39:ac:32:f8:3f:fd:ff:
0b:06:5e:1d:3d:f4:3b:ed:81:e1:4e:7a:0c:8b:b0:
e8:3b:10:70:3f:7d:14:9d:82:07:f1:85:ca:d0:0c:
99:36:51:52:b9:ef:9d:8b:19:ba:b9:c1:61:43:d5:
84:fd:87:ea:f1:21:2f:b9:89:dd:f3:bb:42:37:4b:
4a:5a:93:06:a9:d4:24:62:a9:1f:26:e7:55:8a:9f:
eb:fc:e4:6a:fe:cd:79:45:bb:18:53:51:fe:25:87:
7c:95:80:a6:28:af:24:3f:99:b9:d8:ce:ab:ec:3b:
82:fd:fd:3c:d1:be:7c:12:de:94:a9:eb:7b:4e:ef:
d5:08:83:2e:96:31:8b:cf:2f:ad:c5:58:7f:22:83:
06:80:c1:ee:7a:70:9e:89:fc:18:d2:fb:3b:d6:8c:
ba:7b:82:13:81:72:19:19:9e:a7:ec:ad:d0:65:b8:
ee:46:eb:84:fe:57:97:18:a1:03:52:f8:a3:c4:9a:
2c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9C:51:FF:FC:BA:E7:4B:77:4C:58:C5:F4:91:27:A1:4C:7E:5A:BE
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a316530303a3a2f34302d3430203d3e20323132323934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:1e00::/40
Signature Algorithm: sha256WithRSAEncryption
9f:b0:71:10:f0:e3:5f:f5:f7:43:9b:47:31:d8:bd:e4:91:c0:
a1:2c:17:22:93:a8:21:67:ac:4a:ce:ce:96:07:7d:8a:f1:18:
ef:9a:f8:97:1a:07:ca:f0:54:37:eb:9f:19:24:74:ae:25:44:
7f:b0:c0:09:42:71:c4:8f:22:d8:ab:b0:92:62:1c:b5:3a:6e:
0b:cc:e7:10:06:db:1c:26:a5:e2:c2:04:fa:45:d0:35:f8:3c:
5c:86:b9:30:d1:a5:8c:47:37:06:0c:f8:9e:a9:15:8c:63:44:
10:de:4b:69:be:02:f1:4d:8c:89:10:97:e7:2e:d7:d3:5d:3b:
03:1b:cc:84:4c:62:e9:c8:5e:5d:39:80:83:06:a4:e8:51:88:
52:b2:ad:f7:f4:80:30:e6:a2:41:27:96:87:a2:e8:21:ca:82:
ae:20:a8:4c:8f:34:64:16:ef:e3:f0:23:b8:6e:de:d7:8e:b3:
5c:1f:c6:c0:a4:64:f8:e4:ed:13:81:0d:93:b7:5c:41:53:0f:
93:86:fc:6e:0f:5e:26:60:a1:59:a2:3e:38:4c:4d:cb:3d:30:
34:b3:8d:11:a5:c4:56:ad:86:33:50:2e:b3:10:8d:c5:6f:09:
d7:79:93:f5:8a:54:c9:54:82:98:b4:c7:a3:a0:9b:43:2d:8a:
6d:48:45:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 07:08:12 2025 by rpki-client