Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa
File: 326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa (raw, json)
Hash identifier: AN0t8sgVzd6p1/XZgZyl0o08nuwxpEcLAC4VvSZZ6xg=
Subject key identifier: 39:7F:20:6A:BA:DC:8B:9E:D6:CF:08:00:85:9E:EE:F9:AC:2E:4F:9F
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 0E415D12D8E49A08EFA9C0D50A20D02E655958E3
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa
Signing time: Wed 02 Apr 2025 16:13:12 +0000
ROA not before: Wed 02 Apr 2025 16:08:12 +0000
ROA not after: Wed 01 Apr 2026 16:13:12 +0000
asID: 212746
IP address blocks: 2a14:7c0:b100::/44 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 23:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:41:5d:12:d8:e4:9a:08:ef:a9:c0:d5:0a:20:d0:2e:65:59:58:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Apr 2 16:08:12 2025 GMT
Not After : Apr 1 16:13:12 2026 GMT
Subject: CN=397F206ABADC8B9ED6CF0800859EEEF9AC2E4F9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:14:45:d9:a0:af:03:4f:21:a5:34:75:47:40:
5e:ae:3e:8a:a9:fe:10:65:da:11:59:c9:67:9a:7f:
9c:7e:e5:d9:51:fa:cb:e9:8b:18:01:fc:ee:9a:1b:
3d:9e:f4:03:5c:49:02:bd:ba:7a:a8:85:f6:1d:ab:
60:4f:ee:01:5c:70:7d:8e:08:f8:7b:25:29:f2:76:
e6:ad:a5:1d:8e:6f:85:4f:13:e4:52:f7:f2:34:03:
41:ce:ee:2c:e4:40:c2:a9:bd:4b:9b:95:bf:31:7e:
f4:f6:3e:f9:d1:2e:8b:44:39:b4:22:64:06:9e:44:
db:9c:e1:9f:5e:64:98:9e:38:7a:77:e8:a5:e3:6b:
4e:3e:f8:1d:09:c5:a4:41:d0:12:8e:e8:be:89:e4:
54:94:c4:44:1f:2b:19:2f:00:c7:8d:a0:02:e7:b0:
44:79:12:bd:8a:1b:fc:17:58:6c:13:f9:50:6d:33:
3c:3b:a5:d2:62:a4:d6:2c:5c:08:e6:a3:49:38:53:
f1:5a:9f:15:c2:be:fc:e2:fa:7a:7a:04:82:0c:e0:
16:fe:8f:23:88:f7:9f:ec:c8:b4:99:2d:aa:96:d6:
22:61:bf:15:0c:8d:c4:b8:56:8a:ef:9a:30:04:9f:
c3:d7:2e:ed:09:c1:2e:a4:4b:a0:aa:8a:d4:4f:33:
69:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:7F:20:6A:BA:DC:8B:9E:D6:CF:08:00:85:9E:EE:F9:AC:2E:4F:9F
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a623130303a3a2f34342d3438203d3e20323132373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:b100::/44
Signature Algorithm: sha256WithRSAEncryption
19:ec:61:e9:0a:a2:14:27:e1:cf:32:6c:1a:da:ca:d0:27:30:
06:a1:02:c4:60:4d:c1:83:92:ef:79:f5:af:45:dd:cf:0b:bc:
ad:72:f7:55:5d:09:24:4e:0f:e6:f2:26:1b:9d:90:fc:37:a1:
79:b2:fa:3b:fd:60:6a:e1:d9:f8:3a:f5:93:1d:ac:1e:80:58:
7e:fc:0c:bd:fa:61:c8:06:69:d3:45:d4:60:b7:3e:81:b8:75:
f2:a4:f1:96:ff:19:d2:bd:b0:83:f6:1e:5f:29:38:8c:9d:9f:
98:c3:9a:7d:b3:68:d5:ec:ee:69:c7:8d:3f:c1:0f:0d:2c:91:
fa:10:81:0f:37:ee:16:27:9f:27:2a:3d:87:b9:16:91:ca:b6:
5b:e1:5f:2c:17:40:88:dc:33:66:c3:80:e3:55:ba:77:65:af:
35:6d:5c:d5:d2:f2:2c:a0:6b:42:67:f9:73:6a:0c:d6:09:ca:
27:37:52:96:8f:37:04:70:f0:d3:f9:ab:87:9a:76:ba:e6:e7:
49:91:7d:5a:71:8a:b9:5f:9d:53:45:be:40:47:fb:66:2c:38:
51:ca:f1:ad:a2:f2:9e:08:46:73:0d:26:0b:30:c3:83:9d:ee:
98:a0:ee:3e:f7:bf:3d:aa:f4:b5:f2:20:84:c2:2e:b7:b7:ea:
65:14:1a:c0
-----BEGIN CERTIFICATE-----
MIIE5DCCA8ygAwIBAgIUDkFdEtjkmgjvqcDVCiDQLmVZWOMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWI4ZTIxYzY4OTBiZDc5YWI3NjRkOTFiNjBjMzljM2I3
ZTQ5ODVlMTAeFw0yNTA0MDIxNjA4MTJaFw0yNjA0MDExNjEzMTJaMDMxMTAvBgNV
BAMTKDM5N0YyMDZBQkFEQzhCOUVENkNGMDgwMDg1OUVFRUY5QUMyRTRGOUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClFEXZoK8DTyGlNHVHQF6uPoqp
/hBl2hFZyWeaf5x+5dlR+svpixgB/O6aGz2e9ANcSQK9unqohfYdq2BP7gFccH2O
CPh7JSnyduatpR2Ob4VPE+RS9/I0A0HO7izkQMKpvUublb8xfvT2PvnRLotEObQi
ZAaeRNuc4Z9eZJieOHp36KXja04++B0JxaRB0BKO6L6J5FSUxEQfKxkvAMeNoALn
sER5Er2KG/wXWGwT+VBtMzw7pdJipNYsXAjmo0k4U/FanxXCvvzi+np6BIIM4Bb+
jyOI95/syLSZLaqW1iJhvxUMjcS4VorvmjAEn8PXLu0JwS6kS6CqitRPM2lVAgMB
AAGjggHuMIIB6jAdBgNVHQ4EFgQUOX8garrci57WzwgAhZ7u+awuT58wHwYDVR0j
BBgwFoAUW44hxokL15q3ZNkbYMOcO35JheEwDgYDVR0PAQH/BAQDAgeAMGgGA1Ud
HwRhMF8wXaBboFmGV3JzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vSW5maW5p
cm91dGUvMS81QjhFMjFDNjg5MEJENzlBQjc2NEQ5MUI2MEMzOUMzQjdFNDk4NUUx
LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvVzQ0aHhva0wxNXEzWk5rYllNT2NP
MzVKaGVFLmNlcjCBiQYIKwYBBQUHAQsEfTB7MHkGCCsGAQUFBzALhm1yc3luYzov
L3JlcG8ucnBraS5zcGFjZS9yZXBvL0luZmluaXJvdXRlLzEvMzI2MTMxMzQzYTM3
NjMzMDNhNjIzMTMwMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMxMzIzNzM0
MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwQqFAfAsQAwDQYJKoZIhvcNAQELBQADggEBABnsYekKohQn
4c8ybBraytAnMAahAsRgTcGDku959a9F3c8LvK1y91VdCSROD+byJhudkPw3oXmy
+jv9YGrh2fg69ZMdrB6AWH78DL36YcgGadNF1GC3PoG4dfKk8Zb/GdK9sIP2Hl8p
OIydn5jDmn2zaNXs7mnHjT/BDw0skfoQgQ837hYnnycqPYe5FpHKtlvhXywXQIjc
M2bDgONVundlrzVtXNXS8iyga0Jn+XNqDNYJyic3UpaPNwRw8NP5q4eadrrm50mR
fVpxirlfnVNFvkBH+2YsOFHK8a2i8p4IRnMNJgsww4Od7pig7j73vz2q9LXyIITC
Lre36mUUGsA=
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:32:47 2025 by rpki-client