Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346130303a3a2f34302d3438203d3e20323134383433.roa
File: 326131343a3763303a346130303a3a2f34302d3438203d3e20323134383433.roa (raw, json)
Hash identifier: o1bNUiTwBqvDZeKRVPF4PAL+LczXk2ItT+I5Gf/MztU=
Subject key identifier: C4:30:07:A5:30:FB:BF:46:BF:68:AB:03:76:F9:66:37:8E:57:2B:FD
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 681896496C087F9E6FD8C6C6BB221C27C7A5F1A7
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346130303a3a2f34302d3438203d3e20323134383433.roa
Signing time: Tue 28 May 2024 15:00:30 +0000
ROA not before: Tue 28 May 2024 14:55:30 +0000
ROA not after: Tue 27 May 2025 15:00:30 +0000
asID: 214843
IP address blocks: 2a14:7c0:4a00::/40 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 21:43:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:18:96:49:6c:08:7f:9e:6f:d8:c6:c6:bb:22:1c:27:c7:a5:f1:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: May 28 14:55:30 2024 GMT
Not After : May 27 15:00:30 2025 GMT
Subject: CN=C43007A530FBBF46BF68AB0376F966378E572BFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2a:fe:af:33:61:a7:97:32:56:5d:bd:56:f5:
0f:59:87:c8:d2:57:6d:ed:96:58:9d:1e:23:23:a5:
a8:83:c0:39:69:51:7d:f8:10:8a:5e:53:b1:7b:37:
a6:53:4c:e1:58:75:fd:79:3a:c5:eb:d7:12:a9:ae:
6a:70:86:89:32:2d:63:cc:9c:48:16:4e:a0:fb:3e:
b7:01:76:3e:2c:75:f0:74:a1:9d:b2:67:0e:c7:a7:
ee:bc:01:fc:82:37:b8:df:39:e1:3a:83:9c:bd:11:
4b:45:24:de:ac:bf:15:97:0a:7c:3f:fb:92:98:57:
a0:91:b0:bc:81:cf:9b:f1:40:8b:36:01:f6:1b:60:
2f:e9:79:46:3a:c3:0a:9c:d1:43:ba:e8:37:bd:e1:
3a:f3:9a:00:92:a7:03:e9:3d:95:16:02:8d:37:37:
0c:7d:36:3c:41:c7:2d:81:aa:bc:c6:66:0c:80:69:
e7:1c:cf:74:81:ad:1c:1a:f1:12:20:86:32:dc:3c:
59:ba:99:29:ea:41:fd:61:9e:07:11:9f:f8:b6:c3:
f7:28:91:1d:03:5e:ad:c8:d4:51:f7:23:b1:f6:fd:
06:bd:ab:4d:d3:83:2d:df:03:10:62:c4:a1:8d:c5:
4c:10:d8:ff:05:d6:f5:83:0e:56:aa:5f:d1:79:e9:
51:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:30:07:A5:30:FB:BF:46:BF:68:AB:03:76:F9:66:37:8E:57:2B:FD
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346130303a3a2f34302d3438203d3e20323134383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:4a00::/40
Signature Algorithm: sha256WithRSAEncryption
1a:f9:35:5a:69:95:c0:bf:c6:52:33:62:60:78:5b:e9:0a:bf:
bb:22:a7:30:23:f6:5e:44:d6:a4:b8:58:ee:4e:d6:fa:0b:8a:
26:79:75:18:34:c3:93:82:0e:d2:ae:91:f6:26:b8:69:e1:ca:
72:71:94:1f:29:a3:75:cb:d8:36:03:19:54:de:76:d1:6d:a1:
cd:c3:11:8c:92:be:e2:1e:5d:9b:c0:07:86:af:82:93:9f:eb:
95:c9:c0:ab:15:9f:a2:94:b8:b0:1e:5a:2b:ca:bf:29:8b:4b:
0e:79:d8:6b:c8:78:76:68:a9:66:1e:01:b5:8c:c7:46:49:8b:
b8:ee:07:65:aa:93:a7:60:b7:8b:4e:72:30:4f:8c:54:58:d4:
b4:47:d2:1f:a1:3a:eb:c6:d6:53:89:d9:de:39:1f:8d:83:3f:
8b:d5:df:f5:6e:04:45:04:90:ef:f8:e9:fe:3d:f8:5e:f1:5d:
9b:f6:45:b9:4d:2d:a3:10:ba:e1:cf:78:6a:e8:6b:f3:d0:fd:
a6:43:c0:3c:8d:b8:a5:93:33:9d:04:c9:50:c8:1f:cc:bb:9a:
9f:18:4a:96:4f:06:53:8d:6c:1c:d2:62:38:4d:2d:51:c9:7e:
95:66:b5:ac:9c:a9:5d:bf:4c:98:68:a6:1b:93:f3:8e:5a:44:
46:94:51:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 23:08:22 2024 by rpki-client on console-ams.rpki-client.org