Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a313734333a3a2f34382d3438203d3e203630383431.roa
File: 326131343a3763303a313734333a3a2f34382d3438203d3e203630383431.roa (raw, json)
Hash identifier: igsYEZbXCE0N3ABlgAF2+/fxsQNUlG4lsgEBmDKqFzs=
Subject key identifier: F4:F4:63:29:AC:A2:96:F8:C3:43:A5:40:3D:21:33:DF:62:99:C7:44
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 6F430EB0D4AF14F50777CD2DB3BF88DDD52A02C8
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a313734333a3a2f34382d3438203d3e203630383431.roa
Signing time: Wed 20 Nov 2024 20:27:17 +0000
ROA not before: Wed 20 Nov 2024 20:22:17 +0000
ROA not after: Wed 19 Nov 2025 20:27:17 +0000
asID: 60841
IP address blocks: 2a14:7c0:1743::/48 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:43:0e:b0:d4:af:14:f5:07:77:cd:2d:b3:bf:88:dd:d5:2a:02:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Nov 20 20:22:17 2024 GMT
Not After : Nov 19 20:27:17 2025 GMT
Subject: CN=F4F46329ACA296F8C343A5403D2133DF6299C744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b4:fb:bb:da:e7:b5:56:a4:cd:1a:16:f1:59:
3f:62:76:32:d9:60:ec:c9:76:2a:53:39:3f:d6:34:
c9:e9:fb:c3:e5:16:f8:6d:c0:7e:f9:d5:fc:46:48:
4b:2f:07:78:9e:e0:fc:74:8f:a9:cd:9b:a5:55:7e:
b8:74:11:95:96:42:d5:e5:76:73:1c:f5:ae:65:55:
1d:68:95:28:e7:31:2e:c5:2f:31:f2:4b:97:06:7f:
0c:cf:ca:cd:75:17:49:10:ca:d2:ef:08:37:a2:b9:
87:90:3c:aa:d3:a9:e2:f9:d1:5c:6c:fa:32:65:81:
78:f6:78:8c:ec:20:ba:92:0c:f5:b4:24:4b:54:ef:
c1:11:11:21:e9:67:fe:b0:a7:bd:24:20:3c:d0:12:
3c:f9:f7:0c:51:a9:d5:d4:6f:dc:35:9c:98:12:59:
97:0a:19:7c:ea:80:53:54:b0:70:fc:4a:61:84:1a:
24:6a:3f:59:70:e2:01:6e:49:9a:22:39:2c:01:b3:
b4:1e:3a:52:43:85:bd:28:8c:5c:1f:09:92:3f:be:
93:37:67:ec:b0:4c:f7:c4:1f:8c:7a:8e:c9:b3:ed:
40:49:f5:5c:df:51:4a:67:bf:b8:55:9d:4e:e2:ca:
2e:0e:72:0e:ab:13:09:af:73:88:48:4d:65:98:bc:
f6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F4:63:29:AC:A2:96:F8:C3:43:A5:40:3D:21:33:DF:62:99:C7:44
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a313734333a3a2f34382d3438203d3e203630383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:1743::/48
Signature Algorithm: sha256WithRSAEncryption
7a:17:c0:7f:45:d8:2d:f7:09:94:1c:c3:93:99:82:b4:4c:60:
4a:3e:f3:54:0e:d2:7a:0e:15:fb:77:ff:65:80:40:dd:95:5a:
88:87:ad:69:ea:31:66:bd:8c:35:dc:16:84:07:fc:1b:80:b8:
cf:f5:74:6a:61:7b:80:06:96:be:5a:a5:ae:90:9b:7a:fb:92:
53:42:a1:d2:96:cc:c3:ba:95:95:f4:ca:01:43:6c:24:ea:d2:
41:13:ee:7f:a1:62:89:17:16:d4:99:8b:24:91:86:ad:dd:0b:
2c:3b:f5:a9:d4:00:39:19:5c:1c:5c:7e:41:58:f9:35:b0:2f:
a2:68:79:1a:db:6b:8e:77:f7:1a:1e:f0:2f:94:f5:2e:ba:10:
39:fc:e5:9b:00:68:39:91:00:21:1a:17:a6:b9:00:ae:d3:3b:
04:df:fb:48:92:5a:7e:76:66:8d:87:c3:4a:1b:99:58:f8:75:
89:2f:7d:36:ea:00:ae:99:96:07:d5:1c:eb:db:ee:08:53:a4:
dd:9e:32:5e:0f:aa:74:4f:ae:1f:4f:f4:91:bb:2b:d2:3f:a2:
00:a2:3d:4f:1e:db:c2:3b:4c:39:47:ab:fb:c8:16:14:79:fc:
2d:4a:3f:39:80:dd:f3:d8:2b:c1:ff:cc:42:89:e3:45:d6:ab:
c9:b0:42:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 23:37:27 2024 by rpki-client on console-fra.rpki-client.org