Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a356530303a3a2f34302d3438203d3e20323131393035.roa
File: 326131343a3763303a356530303a3a2f34302d3438203d3e20323131393035.roa (raw, json)
Hash identifier: Sq9c7JMPITqNfliBSFIbADGXTirNFqHvvqR4KfZzcFQ=
Subject key identifier: 1E:49:E5:25:24:CC:A6:9A:A3:79:50:16:ED:21:B3:8C:B2:F7:F5:2E
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 0152F80E33D5579B5EB61900C7CF912B48E5530C
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a356530303a3a2f34302d3438203d3e20323131393035.roa
Signing time: Mon 25 Aug 2025 07:38:19 +0000
ROA not before: Mon 25 Aug 2025 07:33:19 +0000
ROA not after: Mon 24 Aug 2026 07:38:19 +0000
asID: 211905
IP address blocks: 2a14:7c0:5e00::/40 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 17:48:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:52:f8:0e:33:d5:57:9b:5e:b6:19:00:c7:cf:91:2b:48:e5:53:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Aug 25 07:33:19 2025 GMT
Not After : Aug 24 07:38:19 2026 GMT
Subject: CN=1E49E52524CCA69AA3795016ED21B38CB2F7F52E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9e:6c:58:42:c1:38:42:d9:1d:f5:d1:5f:55:
4d:65:c1:c0:14:5f:a0:84:43:2b:49:d8:6d:95:05:
a3:b2:b1:65:81:ba:d4:3a:7e:93:b1:03:51:1e:db:
fd:fb:16:8a:af:21:06:df:9e:53:35:47:52:a6:12:
0e:48:9e:d9:3a:7c:27:dd:9e:87:4b:f7:47:c6:dc:
0b:2a:af:be:6d:a1:7e:cb:af:2c:92:5d:a7:37:5d:
4a:a8:9a:cd:4e:16:59:fe:aa:a7:7f:c1:16:d1:04:
19:26:72:ff:43:ff:13:83:08:29:26:79:b8:4e:46:
9e:b7:91:81:69:ee:e1:3d:32:25:74:75:26:e2:22:
e5:0f:07:c8:c7:c1:2b:7a:99:65:f4:06:56:c2:6b:
d2:2f:f5:fd:92:32:aa:59:bc:fc:e0:12:8d:8c:dc:
1b:e6:d8:f3:ff:c0:e6:47:54:40:88:1e:cd:e5:63:
5f:16:2a:30:b4:ac:0f:75:3b:8b:22:17:1c:d0:d1:
34:22:1c:3d:66:9b:1a:7c:9b:f1:f2:e1:80:46:af:
ae:f0:a6:e3:8e:d0:b8:77:9b:10:7c:43:22:67:8f:
d9:ce:72:42:eb:4c:f1:2a:b8:41:63:3e:6b:76:e9:
11:5c:e6:c5:a6:8b:04:4c:2a:e4:99:68:ce:b8:7a:
0b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:49:E5:25:24:CC:A6:9A:A3:79:50:16:ED:21:B3:8C:B2:F7:F5:2E
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a356530303a3a2f34302d3438203d3e20323131393035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:5e00::/40
Signature Algorithm: sha256WithRSAEncryption
1a:8f:7d:f2:1e:e0:e3:96:00:5f:d6:86:40:b7:75:ad:b5:fb:
50:bb:91:ba:c9:f9:5e:1f:36:08:b3:bc:ed:cf:5c:a6:04:d6:
bf:9b:38:8b:e2:d4:93:fe:57:c1:dc:a8:d0:39:9d:a7:51:1e:
f0:64:3c:fb:3f:af:05:9a:5e:3f:fc:e5:c9:cd:58:bb:d4:3b:
8f:58:5f:3a:af:d7:aa:7d:4c:1c:82:5d:82:2a:d2:2f:4a:a7:
3b:77:b7:f0:a8:3a:f7:75:5a:1e:bb:f5:8e:f2:17:53:09:b0:
a5:db:02:a9:02:13:03:40:40:75:74:7a:dc:b7:4b:e8:8f:54:
85:b5:28:e0:4c:5b:c9:d2:24:15:c0:d6:f2:b8:d8:6a:f6:a8:
c2:f0:36:e8:85:63:a7:b8:ec:b7:26:48:54:94:d8:44:6e:a2:
d0:a9:35:ea:dd:d4:ad:dd:bd:72:67:0d:80:ab:06:d8:82:3d:
c9:f8:42:25:40:1d:72:48:04:87:29:8f:7b:f7:d5:c1:6e:17:
a9:85:d2:72:8f:43:22:67:a7:8e:fd:fd:00:8e:3a:4e:23:81:
97:46:e0:4a:7d:a1:58:39:f6:cc:ea:85:a7:7c:6b:36:54:7e:
75:a9:26:d7:11:b6:b4:42:6b:70:5c:1f:b4:af:96:1e:29:d1:
33:7c:47:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:33:03 2025 by rpki-client