Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa
File: 326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa (raw, json)
Hash identifier: 28J36U3e49RJMF64e4Z+FA1Rg8BZkw4rHoniM0NoKAQ=
Subject key identifier: 27:C5:0B:29:55:F4:A1:CB:79:FD:23:49:F6:A1:1B:C8:DB:8A:24:5F
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 5BFC52190E8AEDAC7E25D43A2FACBFE1512B4990
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa
Signing time: Sat 15 Jun 2024 10:07:11 +0000
ROA not before: Sat 15 Jun 2024 10:02:11 +0000
ROA not after: Sat 14 Jun 2025 10:07:11 +0000
asID: 214731
IP address blocks: 2a14:7c0:5200::/40 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:fc:52:19:0e:8a:ed:ac:7e:25:d4:3a:2f:ac:bf:e1:51:2b:49:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Jun 15 10:02:11 2024 GMT
Not After : Jun 14 10:07:11 2025 GMT
Subject: CN=27C50B2955F4A1CB79FD2349F6A11BC8DB8A245F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:88:e0:98:08:b8:27:e9:97:ca:27:91:90:80:
ab:96:18:44:5b:68:66:3c:35:2b:c9:09:7f:04:91:
96:d8:2d:2e:ff:ec:b7:e2:9d:0b:7f:1a:e9:30:10:
a4:9f:72:8e:db:09:db:52:7a:71:f5:f9:03:54:9a:
3e:62:cc:72:1e:4c:63:25:54:a9:14:f8:ce:97:6d:
36:3f:aa:5e:5d:2a:e8:04:bd:3b:cd:3d:8b:c7:93:
ec:55:5c:71:cc:d8:27:53:b0:c1:5c:cd:af:16:cc:
87:42:e4:ee:7e:3c:e4:c7:e2:9c:c2:0b:92:e3:11:
e3:9b:71:aa:73:29:9b:36:c3:49:75:1f:a6:5b:72:
c1:a2:37:ae:79:69:bc:92:28:ea:d7:b5:31:69:bb:
9d:95:8d:e7:73:d7:09:82:c0:cc:27:69:73:3a:e9:
b0:d5:74:e5:8f:16:17:cd:ac:03:f5:17:05:e9:12:
c7:26:31:a2:11:bd:33:e1:a0:70:12:ed:b9:a9:5f:
95:8b:c6:b5:43:21:33:9f:5a:3f:1f:ec:94:da:72:
5d:b6:a3:5c:1b:dd:fd:52:f5:ca:c2:c6:95:d2:d0:
1e:2c:0f:b5:bf:5c:dc:30:68:98:93:cd:76:e1:d4:
28:d0:f7:c5:3c:f2:d4:a8:8b:07:25:92:6e:62:fb:
8f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C5:0B:29:55:F4:A1:CB:79:FD:23:49:F6:A1:1B:C8:DB:8A:24:5F
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:5200::/40
Signature Algorithm: sha256WithRSAEncryption
2c:48:c3:4e:e7:cd:52:45:71:d5:cb:5e:df:fa:df:38:41:8d:
ef:6a:5b:7f:cb:b5:3e:f4:4b:6d:ad:40:4d:04:87:18:f8:3d:
17:d1:47:24:cf:43:90:5d:96:7f:2d:8b:04:b5:e2:d6:2b:8c:
3b:bd:06:de:b4:9a:9c:01:9d:da:27:07:34:89:6a:6d:0b:e2:
19:47:d0:f0:c7:49:92:dc:b1:9e:ff:58:d9:5e:f4:45:0c:de:
26:48:85:c7:3b:fd:0b:b5:f0:94:73:35:f2:20:7a:05:ce:ed:
2e:0a:f2:bc:b5:88:ab:fb:e6:45:88:68:a8:ce:d1:f2:55:92:
4f:f9:73:9f:0a:2c:36:b4:bd:73:e6:ac:52:3e:9b:a4:88:2e:
97:81:d0:a3:f8:66:3d:8e:1a:bd:38:8f:6a:77:b9:46:f4:f7:
a6:86:75:b3:50:05:b3:0e:7c:bd:d1:d4:a5:76:cc:49:6d:03:
de:fc:0a:4a:ee:24:08:49:52:92:68:17:e9:98:b2:24:04:61:
24:25:5f:ee:39:f0:9d:1b:be:61:2f:35:7a:d3:c8:5f:6a:8d:
93:61:f0:e2:b0:cb:f3:27:24:d6:bc:dd:37:5a:75:46:48:48:
f3:f3:bc:8a:af:38:c3:2b:53:0e:a0:d7:9c:b0:5f:c6:59:f6:
4f:89:16:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org