Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3330303a3a2f34302d3438203d3e20323136303631.roa
File: 326131343a3763303a3330303a3a2f34302d3438203d3e20323136303631.roa (raw, json)
Hash identifier: QzPtELR+ma4zR0vhK65QbIo8fWgRK7Qxl4kQSBf3kz8=
Subject key identifier: 91:73:E1:FF:73:AC:01:01:7C:35:3B:F9:C0:90:B7:93:4A:38:62:70
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 0154669C2701AE7D6792C7375FB4D99331E7A8F9
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3330303a3a2f34302d3438203d3e20323136303631.roa
Signing time: Tue 29 Apr 2025 15:19:14 +0000
ROA not before: Tue 29 Apr 2025 15:14:14 +0000
ROA not after: Tue 28 Apr 2026 15:19:14 +0000
asID: 216061
IP address blocks: 2a14:7c0:300::/40 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:54:66:9c:27:01:ae:7d:67:92:c7:37:5f:b4:d9:93:31:e7:a8:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Apr 29 15:14:14 2025 GMT
Not After : Apr 28 15:19:14 2026 GMT
Subject: CN=9173E1FF73AC01017C353BF9C090B7934A386270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:66:02:4c:fd:00:9e:50:b7:aa:3c:72:2c:
d4:c7:64:5d:f4:15:3d:be:ba:8c:7c:d2:d8:e5:2e:
1b:4f:6c:6e:4b:35:11:de:95:14:68:93:50:42:4e:
db:33:a6:00:02:da:0b:90:09:97:03:31:ec:18:e9:
ee:50:d9:2d:6b:e6:3a:05:83:a5:99:cd:4a:d3:b5:
b4:ed:cd:ff:b5:fb:df:44:51:55:a7:2a:85:5c:28:
37:d2:03:4f:b8:42:04:69:9e:07:30:d8:e4:94:0b:
b4:41:b0:39:6c:7c:73:9e:0c:4b:89:07:cb:c0:07:
12:ab:4c:17:22:c8:9d:13:ee:ad:ea:bc:06:2c:c3:
04:86:f1:f8:89:60:bd:13:ef:e1:81:f3:ee:dc:0a:
10:6c:dd:92:ce:cc:a5:d8:c4:2b:d7:2c:18:62:8d:
ba:7f:0c:5a:dd:b0:bb:25:71:1b:0b:b1:75:06:78:
e6:21:19:02:0b:31:46:9e:11:b8:65:5d:b1:b5:56:
7d:01:18:72:f5:00:22:ec:53:29:e7:27:58:da:42:
20:87:d4:aa:c1:11:18:03:14:58:8a:fd:ff:3f:12:
f6:f1:13:77:67:18:ff:da:5b:a0:19:84:21:62:5a:
95:00:53:2e:45:85:b6:04:71:e6:cc:36:13:19:5c:
fb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:73:E1:FF:73:AC:01:01:7C:35:3B:F9:C0:90:B7:93:4A:38:62:70
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3330303a3a2f34302d3438203d3e20323136303631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:300::/40
Signature Algorithm: sha256WithRSAEncryption
6f:76:6d:71:24:3f:ee:68:7f:34:0d:23:7b:59:c7:61:0b:5c:
a5:37:99:cc:67:82:bc:32:b4:10:d4:de:d3:9d:04:6e:ea:cd:
ae:1a:63:a5:c1:36:87:3b:b0:8d:37:3c:c3:53:4f:9f:85:33:
5b:b3:4f:76:da:6c:2c:41:20:60:39:6e:a5:a5:2c:65:ff:d1:
0d:8a:a0:05:84:ee:af:2d:89:18:4b:a4:ed:8e:ac:52:54:e3:
9d:ba:7e:fb:9e:7a:e2:55:33:be:f7:f6:02:ab:49:e9:de:8f:
ba:b7:1e:36:6a:ce:e6:c6:6c:83:76:b1:b7:24:22:39:ac:f7:
6d:71:54:b7:4c:fa:00:f7:1d:70:d7:6e:97:b2:fe:e9:a6:bf:
13:68:37:63:03:71:a9:00:c9:7f:31:8f:c4:9b:82:28:71:47:
86:0c:92:48:1a:f0:26:cf:d9:cc:73:8a:53:c7:08:33:a3:ea:
4b:eb:cd:65:2c:4b:e5:06:03:b0:88:c6:36:ef:37:7f:1c:b6:
42:a1:6f:b8:0e:4c:1d:c9:3b:ff:7e:62:18:2c:06:fd:27:9c:
e7:8e:e2:ad:78:d0:95:ce:f4:20:29:df:da:2c:1c:0f:2b:10:
0c:e5:57:81:2b:7a:d1:ee:1a:ab:10:d4:f2:2b:d2:fc:66:e8:
b6:af:2e:f4
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgIUAVRmnCcBrn1nksc3X7TZkzHnqPkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWI4ZTIxYzY4OTBiZDc5YWI3NjRkOTFiNjBjMzljM2I3
ZTQ5ODVlMTAeFw0yNTA0MjkxNTE0MTRaFw0yNjA0MjgxNTE5MTRaMDMxMTAvBgNV
BAMTKDkxNzNFMUZGNzNBQzAxMDE3QzM1M0JGOUMwOTBCNzkzNEEzODYyNzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAGGYCTP0AnlC3qjxyLNTHZF30
FT2+uox80tjlLhtPbG5LNRHelRRok1BCTtszpgAC2guQCZcDMewY6e5Q2S1r5joF
g6WZzUrTtbTtzf+1+99EUVWnKoVcKDfSA0+4QgRpngcw2OSUC7RBsDlsfHOeDEuJ
B8vABxKrTBciyJ0T7q3qvAYswwSG8fiJYL0T7+GB8+7cChBs3ZLOzKXYxCvXLBhi
jbp/DFrdsLslcRsLsXUGeOYhGQILMUaeEbhlXbG1Vn0BGHL1ACLsUynnJ1jaQiCH
1KrBERgDFFiK/f8/EvbxE3dnGP/aW6AZhCFiWpUAUy5FhbYEcebMNhMZXPufAgMB
AAGjggHrMIIB5zAdBgNVHQ4EFgQUkXPh/3OsAQF8NTv5wJC3k0o4YnAwHwYDVR0j
BBgwFoAUW44hxokL15q3ZNkbYMOcO35JheEwDgYDVR0PAQH/BAQDAgeAMGgGA1Ud
HwRhMF8wXaBboFmGV3JzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vSW5maW5p
cm91dGUvMS81QjhFMjFDNjg5MEJENzlBQjc2NEQ5MUI2MEMzOUMzQjdFNDk4NUUx
LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvVzQ0aHhva0wxNXEzWk5rYllNT2NP
MzVKaGVFLmNlcjCBhwYIKwYBBQUHAQsEezB5MHcGCCsGAQUFBzALhmtyc3luYzov
L3JlcG8ucnBraS5zcGFjZS9yZXBvL0luZmluaXJvdXRlLzEvMzI2MTMxMzQzYTM3
NjMzMDNhMzMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIzMTM2MzAzNjMx
LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw
EDAOBAIAAjAIAwYAKhQHwAMwDQYJKoZIhvcNAQELBQADggEBAG92bXEkP+5ofzQN
I3tZx2ELXKU3mcxngrwytBDU3tOdBG7qza4aY6XBNoc7sI03PMNTT5+FM1uzT3ba
bCxBIGA5bqWlLGX/0Q2KoAWE7q8tiRhLpO2OrFJU4526fvueeuJVM7739gKrSene
j7q3HjZqzubGbIN2sbckIjms921xVLdM+gD3HXDXbpey/ummvxNoN2MDcakAyX8x
j8SbgihxR4YMkkga8CbP2cxzilPHCDOj6kvrzWUsS+UGA7CIxjbvN38ctkKhb7gO
TB3JO/9+YhgsBv0nnOeO4q140JXO9CAp39osHA8rEAzlV4EretHuGqsQ1PIr0vxm
6LavLvQ=
-----END CERTIFICATE-----
Generated at Wed May 7 09:34:53 2025 by rpki-client