Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa
File: 326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa (raw, json)
Hash identifier: 7wrP/qF80xeJDA4yH41j8XFqDq3s1kRjCms7dxEXw9Y=
Subject key identifier: 3C:75:ED:90:44:24:67:07:B3:B9:90:CD:85:2D:14:68:73:F6:FC:34
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 41F48BB3DA1313C2351D17783BDF337F87614987
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa
Signing time: Wed 04 Mar 2026 16:52:08 +0000
ROA not before: Wed 04 Mar 2026 16:47:08 +0000
ROA not after: Wed 03 Mar 2027 16:52:08 +0000
asID: 212746
IP address blocks: 2a14:7c0:b100::/44 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:f4:8b:b3:da:13:13:c2:35:1d:17:78:3b:df:33:7f:87:61:49:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Mar 4 16:47:08 2026 GMT
Not After : Mar 3 16:52:08 2027 GMT
Subject: CN=3C75ED9044246707B3B990CD852D146873F6FC34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8c:6c:40:13:ee:c5:e5:d1:cf:21:dc:06:25:
53:de:41:8e:1b:2b:72:9e:13:d3:8a:90:3d:af:07:
f4:5d:bd:14:57:25:c9:bf:88:f2:d2:0a:6f:e4:09:
43:92:70:fe:4b:17:0c:32:8f:cd:f0:bc:90:90:e6:
c1:79:7b:9e:0b:6a:8b:d9:cd:48:5a:d6:97:d5:ad:
04:e1:f5:4b:4e:2d:1c:24:23:62:a1:3e:c9:89:56:
7c:fd:80:7f:a0:23:32:3d:aa:48:ce:ff:ef:82:2c:
4b:77:94:67:d2:7e:91:33:98:4f:9a:0b:84:49:39:
00:1b:28:75:07:58:83:cf:df:31:ac:96:ba:39:3d:
ca:b2:c6:58:96:62:16:cc:26:e3:55:ad:c8:a1:52:
48:4b:30:26:9f:36:39:c6:8d:11:b5:72:ed:b1:be:
b8:d6:bd:cc:23:19:46:4d:be:0c:b9:da:3a:01:e7:
fa:da:69:8d:09:30:24:87:1c:07:dc:9c:9d:d0:10:
60:f5:cb:1f:e5:9b:d7:3c:23:cf:50:b4:b3:88:f1:
18:74:1c:2b:1b:32:56:eb:77:3b:14:ff:c4:d1:40:
a2:89:c3:e2:a9:5f:c3:dd:24:50:86:98:a9:78:37:
27:cb:f5:2b:bf:d8:67:79:ba:02:00:29:72:1b:ad:
ee:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:75:ED:90:44:24:67:07:B3:B9:90:CD:85:2D:14:68:73:F6:FC:34
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:b100::/44
Signature Algorithm: sha256WithRSAEncryption
3c:5d:22:55:a3:d3:06:a2:f6:bc:9e:40:84:50:cf:fc:89:7c:
86:ef:e2:0b:7d:1e:36:b2:1b:ff:06:3e:10:b6:49:8c:7f:10:
d5:b0:1f:16:4f:38:1b:4e:9a:f2:b9:a3:dd:16:0e:60:14:43:
51:87:44:3e:3d:63:2f:d9:80:5c:f7:3f:d7:03:c0:d0:42:08:
af:60:7e:6a:27:2b:70:a8:74:82:47:56:b0:aa:61:df:8d:10:
ba:df:ec:17:d0:aa:84:7b:c2:1a:c7:16:30:02:68:5c:9b:ef:
8d:50:80:a3:81:b6:46:8e:88:3e:26:18:66:f7:da:62:bd:ac:
46:af:28:e7:ec:a8:95:48:75:64:09:0b:f7:5a:99:17:38:4c:
c0:16:68:30:be:13:87:a4:f9:66:65:28:89:ef:14:48:1b:a7:
c6:e0:c2:10:7f:ea:f3:b3:0f:bc:70:ca:52:8d:3b:dc:f6:3d:
eb:63:65:aa:a1:65:71:af:ac:88:e6:c8:98:92:2f:33:db:55:
64:a5:72:58:00:a0:e0:1b:5a:a5:93:9c:af:90:75:8a:0e:6c:
50:96:74:48:80:e6:47:62:30:95:b3:04:48:d6:f3:d8:c7:78:
1a:aa:12:a5:69:2e:d3:49:75:01:d8:db:29:c7:e9:43:ec:bd:
eb:02:f0:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 05:51:50 2026 by rpki-client