Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa
File: 326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa (raw, json)
Hash identifier: 9ritS9A5irBin9+JjqUxfGqSlRBcjNX9189YNa9jjG4=
Subject key identifier: 9F:1A:47:D9:2B:46:DF:97:90:9E:D3:7C:50:5D:F0:AD:9C:CA:45:72
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 1D2BA809F9184AC0942390AB67EB2EFE3C0754FA
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa
Signing time: Sat 17 May 2025 10:19:26 +0000
ROA not before: Sat 17 May 2025 10:14:26 +0000
ROA not after: Sat 16 May 2026 10:19:26 +0000
asID: 214731
IP address blocks: 2a14:7c0:5200::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:2b:a8:09:f9:18:4a:c0:94:23:90:ab:67:eb:2e:fe:3c:07:54:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: May 17 10:14:26 2025 GMT
Not After : May 16 10:19:26 2026 GMT
Subject: CN=9F1A47D92B46DF97909ED37C505DF0AD9CCA4572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c2:df:e2:07:e4:8b:a2:61:ef:b4:bd:81:b3:
24:1b:e4:89:c1:49:18:a0:cc:db:9b:3b:5d:66:fe:
c2:33:0a:e0:c5:07:1b:0d:11:c1:50:65:66:23:7a:
e5:f5:0c:82:d0:65:db:f8:39:df:60:29:c0:6c:b3:
0b:cb:93:a5:05:11:4f:75:a5:81:e4:ac:22:53:93:
6e:e0:33:fc:9f:19:28:e7:04:cb:41:22:9d:ab:00:
e4:27:a9:28:53:38:5c:0d:f3:b7:7a:ea:b4:49:78:
87:cb:21:2b:e7:96:c1:2d:86:4a:a8:10:c6:2b:8d:
ef:df:d6:c6:57:7b:d6:65:4a:0a:a5:2b:dc:b3:67:
46:bf:d8:9c:0c:84:e9:9f:57:53:b3:e4:9e:21:11:
80:aa:88:48:55:16:6d:df:77:3d:69:88:67:86:c0:
e6:61:3f:67:9a:be:f7:d4:81:57:2f:27:37:7a:19:
61:7a:f8:63:51:74:b2:bb:35:81:99:26:f5:5c:d9:
05:b7:55:eb:48:77:ba:2c:1e:25:16:47:d0:11:be:
0d:50:69:c8:67:3c:46:61:d8:22:75:c8:d3:8b:40:
74:fb:aa:ff:40:f3:b6:ff:af:c1:03:dd:f6:d5:33:
40:53:77:c7:6f:0c:b7:8a:ea:ca:7d:f6:e2:a2:05:
d7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:1A:47:D9:2B:46:DF:97:90:9E:D3:7C:50:5D:F0:AD:9C:CA:45:72
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a353230303a3a2f34302d3438203d3e20323134373331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:5200::/40
Signature Algorithm: sha256WithRSAEncryption
7d:a3:dd:5e:8c:28:94:42:eb:9c:da:05:b0:24:e8:22:89:d4:
34:36:00:ac:7f:b5:85:c0:d0:89:f8:c4:e9:3e:54:36:63:c6:
09:73:13:81:fb:87:92:91:16:d0:59:7a:ff:b9:90:95:63:36:
30:38:32:ff:cd:cc:f0:f1:dd:96:39:92:24:30:eb:57:7a:67:
50:22:e2:66:19:5b:56:1c:89:f2:22:fa:70:dc:85:0d:08:26:
bc:78:65:e4:b9:dc:0e:c0:ca:3d:82:52:c6:84:ab:7f:33:41:
2e:fa:97:00:59:5c:c5:e1:72:ff:14:49:1c:6b:17:b2:2b:4f:
49:1d:2d:e9:6e:bb:d7:dc:a5:da:3e:e5:39:cb:08:70:ee:de:
40:da:e6:ac:94:a8:39:e3:17:28:8f:59:ac:43:8a:ea:2c:43:
7d:e7:4f:85:be:91:71:52:2d:12:81:66:ab:97:1c:5a:f0:b4:
24:1e:74:cc:43:bd:cb:ad:1c:08:0b:0d:61:2f:3b:65:7d:27:
68:fd:8d:4c:e5:14:7c:e8:82:65:40:18:07:00:a1:e0:08:91:
4c:66:92:6d:f9:4b:36:d2:55:ec:a6:3f:3f:a4:a0:f2:15:2e:
a7:63:11:69:34:b9:26:a8:a4:ca:51:19:7e:9f:a3:69:53:36:
e2:62:6a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:37:42 2025 by rpki-client