Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a313430303a3a2f34302d3438203d3e20323136333639.roa
File: 326131343a3763303a313430303a3a2f34302d3438203d3e20323136333639.roa (raw, json)
Hash identifier: kf/oydVxy2g+i6x+LlL4sAU4kE6hHA+lV93byBTu3KE=
Subject key identifier: 42:89:78:94:55:6F:17:99:7D:50:21:8B:43:DA:FC:39:1D:ED:F4:9B
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 11D458D3FAE3BF26D442210E8ADD94B8B1FBD633
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a313430303a3a2f34302d3438203d3e20323136333639.roa
Signing time: Tue 28 May 2024 15:09:38 +0000
ROA not before: Tue 28 May 2024 15:04:38 +0000
ROA not after: Tue 27 May 2025 15:09:38 +0000
asID: 216369
IP address blocks: 2a14:7c0:1400::/40 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 21:43:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:d4:58:d3:fa:e3:bf:26:d4:42:21:0e:8a:dd:94:b8:b1:fb:d6:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: May 28 15:04:38 2024 GMT
Not After : May 27 15:09:38 2025 GMT
Subject: CN=42897894556F17997D50218B43DAFC391DEDF49B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:68:df:93:5e:92:9b:b8:06:2d:3c:46:b6:
18:f5:b6:f7:fb:e6:e5:52:ee:65:64:72:5b:22:85:
cd:c4:47:02:d7:7b:3a:83:a4:44:91:11:65:45:e0:
10:92:a4:9b:81:e1:3a:77:7b:2a:d4:22:79:af:48:
f3:69:44:dc:19:eb:3b:ad:93:b9:29:88:13:10:08:
b7:09:00:ae:16:b4:0d:e3:fb:02:d5:57:ac:25:9d:
a7:94:8e:56:c0:4d:45:37:bf:c4:76:6d:47:2f:57:
14:a9:a0:8f:df:c2:64:43:f4:2a:b2:39:9c:a8:b4:
cc:80:b4:55:11:92:b8:2e:cd:29:f8:cf:9a:d2:25:
71:69:e8:f7:1f:59:01:24:c6:53:96:70:65:87:72:
f9:f9:0f:bc:6f:e2:fb:bb:c4:5f:bd:de:4e:c9:0a:
8a:6c:41:6c:69:32:bd:4b:86:25:40:1d:48:4a:e1:
b6:1a:de:d2:2b:c9:73:2a:d3:16:59:b4:db:28:c3:
14:af:bd:c5:d9:23:72:2e:ec:71:2f:c8:c6:52:b0:
f5:aa:23:b5:a7:61:5f:34:f6:12:1b:13:31:b5:53:
52:f5:f4:24:90:f0:d4:75:03:41:9a:ef:55:c6:27:
12:b6:40:cb:f4:8d:c5:6a:73:e7:47:61:d7:80:fe:
f4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:89:78:94:55:6F:17:99:7D:50:21:8B:43:DA:FC:39:1D:ED:F4:9B
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a313430303a3a2f34302d3438203d3e20323136333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:1400::/40
Signature Algorithm: sha256WithRSAEncryption
94:fc:72:f8:0c:d4:28:06:42:a9:d3:fb:ec:8f:64:26:15:c5:
4e:b3:93:aa:c7:6a:b5:26:fd:cc:f7:e2:b4:dd:d8:e0:1b:7c:
b2:eb:c1:13:bb:4a:5f:72:53:d5:13:da:b6:83:c6:b3:02:db:
aa:92:7a:af:c8:0f:6a:45:60:2b:66:78:4c:6b:35:1a:90:cd:
4b:1f:0d:ab:f9:af:6b:87:c1:d0:94:f6:25:40:02:74:1c:62:
d1:8b:68:78:61:20:ee:b3:c4:d9:22:2c:11:4a:3b:76:5d:d9:
b7:d6:89:8a:eb:07:b4:5e:7a:48:cb:32:84:d7:fb:81:2c:71:
0b:14:f4:2b:f8:42:f0:7f:77:e1:6d:63:86:97:88:71:fa:b3:
49:92:d5:47:24:29:3f:e1:af:9b:bb:a1:19:4d:6c:c0:df:71:
cb:cc:c4:0b:f6:92:eb:a2:f0:95:9c:b9:61:0e:d6:0b:bf:67:
0c:6d:ee:55:fd:1a:7f:fa:3b:86:ac:65:62:7b:a1:c8:d7:cb:
72:f8:e5:d7:55:61:57:0a:a9:3c:19:21:fe:ce:68:30:15:03:
97:81:af:26:f1:c2:c8:e1:cc:62:b8:50:9a:eb:af:6b:ce:2a:
50:19:0c:97:25:5e:10:5a:64:87:05:5a:57:a1:13:7b:5a:2e:
78:54:4b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 00:07:29 2024 by rpki-client on console-fra.rpki-client.org