Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3430303a3a2f33382d3438203d3e20323135353331.roa
File: 326131343a3763303a3430303a3a2f33382d3438203d3e20323135353331.roa (raw, json)
Hash identifier: Jb94aIs/Di58OqcGGa7Afrbm+H5iioonLByGSH1mM4w=
Subject key identifier: C2:55:98:0B:E8:96:AA:61:63:DE:1B:95:7C:2C:B6:47:61:E5:69:14
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 5B30A1B10C896A4BF75DED6EFCF4730E11A896AD
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3430303a3a2f33382d3438203d3e20323135353331.roa
Signing time: Tue 31 Mar 2026 15:52:10 +0000
ROA not before: Tue 31 Mar 2026 15:47:10 +0000
ROA not after: Tue 30 Mar 2027 15:52:10 +0000
asID: 215531
IP address blocks: 2a14:7c0:400::/38 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 Apr 2026 03:28:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:30:a1:b1:0c:89:6a:4b:f7:5d:ed:6e:fc:f4:73:0e:11:a8:96:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Mar 31 15:47:10 2026 GMT
Not After : Mar 30 15:52:10 2027 GMT
Subject: CN=C255980BE896AA6163DE1B957C2CB64761E56914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2b:a8:1c:4b:9b:61:a4:44:01:b6:1c:54:61:
fa:52:f3:82:27:7b:50:51:9b:8c:f9:2d:86:48:39:
8d:70:5a:f3:d7:bc:66:c6:61:df:e3:5b:1c:96:d0:
25:14:f5:df:d7:09:cd:2a:92:06:b2:41:18:82:cb:
5c:8c:ca:50:17:58:5d:00:c1:b6:d0:88:c6:33:0c:
13:ac:b1:63:c0:e2:6d:f3:d1:a1:97:e5:a4:06:fb:
ea:f4:5a:26:6c:3c:eb:c5:3b:cf:5f:aa:e3:0d:08:
5e:33:7d:ed:1a:c1:5f:b7:ff:b7:da:72:10:61:f8:
5a:89:86:71:52:d6:55:6f:87:9e:db:d8:86:29:b5:
0c:eb:ab:b6:44:98:a3:8c:17:84:18:67:a6:3c:ba:
a8:b0:a7:33:f1:85:5f:9d:1a:26:27:6a:fa:52:51:
5b:b9:11:a4:8e:ae:4c:cc:34:62:0d:05:94:b1:cf:
df:10:5e:ee:c4:3d:06:3f:97:b4:b7:61:c3:3a:b5:
23:4c:d1:59:7d:31:3f:b8:d9:74:36:61:b8:9e:05:
4e:c6:6c:d6:b4:d2:15:69:8a:12:46:5c:38:95:15:
93:cb:bb:71:45:63:bb:f4:65:63:2e:0f:1c:e8:83:
91:30:be:be:af:bd:1d:87:89:e5:3a:1a:71:f8:fe:
3a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:55:98:0B:E8:96:AA:61:63:DE:1B:95:7C:2C:B6:47:61:E5:69:14
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3430303a3a2f33382d3438203d3e20323135353331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:400::/38
Signature Algorithm: sha256WithRSAEncryption
34:4b:7a:4c:81:e4:bd:9d:19:77:ec:dd:6d:00:7b:a4:8e:b9:
95:e9:9b:28:e7:d4:d4:68:43:6e:a1:23:59:d7:98:9a:56:43:
fc:ea:83:99:6c:5f:73:bc:dd:29:fa:18:c9:bf:4a:c6:2a:c3:
49:e6:aa:72:9c:59:4d:87:4f:ae:10:f5:2c:26:d7:82:59:9b:
e7:6d:82:be:c9:3a:da:4b:a1:5c:16:15:80:5d:73:a3:f5:51:
dd:ff:38:40:bc:7e:21:27:db:ae:bf:12:c2:69:75:f1:68:a6:
6a:28:88:bb:49:44:11:4f:f5:1d:bd:78:0a:42:d1:3b:8c:18:
11:08:a1:03:28:b9:9d:3c:21:62:b6:24:07:f5:9e:65:2e:6c:
e6:9f:79:0a:b8:53:dc:e3:5a:6b:70:8d:eb:92:4b:ef:3f:ba:
32:52:ca:91:c1:18:b5:c6:3c:ff:90:37:e7:64:8b:39:c9:fd:
70:d9:7c:cd:2c:f6:a7:6c:7b:ad:af:db:98:29:07:09:62:41:
68:7a:9f:7a:f4:a5:ad:4f:02:a0:ad:1b:ab:a9:e0:70:fc:9b:
67:1b:28:a7:1e:05:07:a4:68:71:60:dd:c8:78:48:84:e7:1e:
9b:06:fb:78:1e:81:02:9c:06:96:ed:7e:d2:69:b3:86:36:0a:
2a:1e:a8:5d
-----BEGIN CERTIFICATE-----
MIIE4TCCA8mgAwIBAgIUWzChsQyJakv3Xe1u/PRzDhGolq0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWI4ZTIxYzY4OTBiZDc5YWI3NjRkOTFiNjBjMzljM2I3
ZTQ5ODVlMTAeFw0yNjAzMzExNTQ3MTBaFw0yNzAzMzAxNTUyMTBaMDMxMTAvBgNV
BAMTKEMyNTU5ODBCRTg5NkFBNjE2M0RFMUI5NTdDMkNCNjQ3NjFFNTY5MTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7K6gcS5thpEQBthxUYfpS84In
e1BRm4z5LYZIOY1wWvPXvGbGYd/jWxyW0CUU9d/XCc0qkgayQRiCy1yMylAXWF0A
wbbQiMYzDBOssWPA4m3z0aGX5aQG++r0WiZsPOvFO89fquMNCF4zfe0awV+3/7fa
chBh+FqJhnFS1lVvh57b2IYptQzrq7ZEmKOMF4QYZ6Y8uqiwpzPxhV+dGiYnavpS
UVu5EaSOrkzMNGINBZSxz98QXu7EPQY/l7S3YcM6tSNM0Vl9MT+42XQ2YbieBU7G
bNa00hVpihJGXDiVFZPLu3FFY7v0ZWMuDxzog5Ewvr6vvR2HieU6GnH4/joLAgMB
AAGjggHrMIIB5zAdBgNVHQ4EFgQUwlWYC+iWqmFj3huVfCy2R2HlaRQwHwYDVR0j
BBgwFoAUW44hxokL15q3ZNkbYMOcO35JheEwDgYDVR0PAQH/BAQDAgeAMGgGA1Ud
HwRhMF8wXaBboFmGV3JzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vSW5maW5p
cm91dGUvMS81QjhFMjFDNjg5MEJENzlBQjc2NEQ5MUI2MEMzOUMzQjdFNDk4NUUx
LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvVzQ0aHhva0wxNXEzWk5rYllNT2NP
MzVKaGVFLmNlcjCBhwYIKwYBBQUHAQsEezB5MHcGCCsGAQUFBzALhmtyc3luYzov
L3JlcG8ucnBraS5zcGFjZS9yZXBvL0luZmluaXJvdXRlLzEvMzI2MTMxMzQzYTM3
NjMzMDNhMzQzMDMwM2EzYTJmMzMzODJkMzQzODIwM2QzZTIwMzIzMTM1MzUzMzMx
LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw
EDAOBAIAAjAIAwYCKhQHwAQwDQYJKoZIhvcNAQELBQADggEBADRLekyB5L2dGXfs
3W0Ae6SOuZXpmyjn1NRoQ26hI1nXmJpWQ/zqg5lsX3O83Sn6GMm/SsYqw0nmqnKc
WU2HT64Q9Swm14JZm+dtgr7JOtpLoVwWFYBdc6P1Ud3/OEC8fiEn266/EsJpdfFo
pmooiLtJRBFP9R29eApC0TuMGBEIoQMouZ08IWK2JAf1nmUubOafeQq4U9zjWmtw
jeuSS+8/ujJSypHBGLXGPP+QN+dkiznJ/XDZfM0s9qdse62v25gpBwliQWh6n3r0
pa1PAqCtG6up4HD8m2cbKKceBQekaHFg3ch4SITnHpsG+3gegQKcBpbtftJps4Y2
CioeqF0=
-----END CERTIFICATE-----
Generated at Thu Apr 9 17:59:21 2026 by rpki-client