Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a663130303a3a2f34302d3430203d3e203634343537.roa
File: 326131343a3763303a663130303a3a2f34302d3430203d3e203634343537.roa (raw, json)
Hash identifier: qsusIu1eh8C7OpCNw9R32/GiLSy2Y3LrF8odo2nU4Y8=
Subject key identifier: E1:7A:98:A2:0E:93:81:10:5E:32:6F:B7:0F:C9:96:C8:3D:63:F5:1B
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 17FE4A5B0FAC8D93E0E51F8715934ADDBD3E249A
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a663130303a3a2f34302d3430203d3e203634343537.roa
Signing time: Wed 20 Nov 2024 19:43:44 +0000
ROA not before: Wed 20 Nov 2024 19:38:44 +0000
ROA not after: Wed 19 Nov 2025 19:43:44 +0000
asID: 64457
IP address blocks: 2a14:7c0:f100::/40 maxlen: 40
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:fe:4a:5b:0f:ac:8d:93:e0:e5:1f:87:15:93:4a:dd:bd:3e:24:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Nov 20 19:38:44 2024 GMT
Not After : Nov 19 19:43:44 2025 GMT
Subject: CN=E17A98A20E9381105E326FB70FC996C83D63F51B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:14:a2:6a:3b:23:b1:d6:24:e5:d4:e1:5e:f4:
bf:db:3f:5a:8d:7b:6b:62:05:97:65:88:08:6d:0b:
69:af:20:3c:50:33:b9:38:85:bd:d5:be:a6:1d:d8:
15:fa:bc:a0:70:be:68:62:2e:3a:bc:b1:63:3f:ef:
1a:29:e6:3a:54:c9:13:c0:e0:ac:51:a1:92:f8:60:
f0:aa:48:1d:75:3a:14:15:fc:73:d3:8f:44:79:44:
9b:e5:34:68:8e:cc:ac:a2:29:f7:83:3d:4c:e6:c4:
65:3c:92:3f:3d:43:89:d1:49:c0:40:45:a0:94:e0:
a1:84:bb:3d:57:0a:80:10:e1:30:a7:a6:74:30:4f:
d8:6b:c4:60:e9:b0:5e:91:7a:70:08:88:c7:af:ff:
6d:1f:14:75:3c:ac:a4:df:ec:25:f0:38:ea:d4:da:
fc:03:ae:93:5e:6d:b8:9d:b9:1b:21:47:3c:88:ec:
3c:df:05:fa:97:01:1b:d2:e1:3f:a0:1c:19:43:9a:
b0:7f:f0:b7:fe:14:ad:a2:cd:91:df:3c:f5:28:64:
d1:10:27:0d:15:78:3a:e4:63:db:0f:63:cb:55:76:
3f:64:6c:cd:92:28:33:1b:28:7d:e9:ad:a1:c5:f3:
e8:2e:97:3a:fb:6b:ad:3b:58:df:2f:0c:33:b1:b4:
15:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:7A:98:A2:0E:93:81:10:5E:32:6F:B7:0F:C9:96:C8:3D:63:F5:1B
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a663130303a3a2f34302d3430203d3e203634343537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:f100::/40
Signature Algorithm: sha256WithRSAEncryption
3c:d1:73:35:6b:b2:37:e1:65:01:67:13:6c:69:c2:18:2f:2b:
c9:51:04:bf:9b:20:7e:d4:57:38:92:d9:e7:71:3d:fd:f5:9e:
4c:38:5d:b9:b1:6a:f2:7f:a7:02:dd:de:ba:14:29:44:a6:7b:
c6:78:f6:d1:f0:b9:09:37:99:e5:9f:9d:d6:71:65:66:17:7a:
48:e9:21:cd:50:40:7e:19:6c:7a:2d:25:95:df:18:45:f6:e8:
8b:43:8d:40:0f:62:36:4a:93:0e:57:2f:d4:4f:2a:16:87:6b:
72:f2:ad:b1:1a:23:58:5c:57:42:81:b7:43:b5:36:73:da:35:
67:ae:cc:75:1a:d7:12:4a:d1:40:0f:bc:d9:4e:21:22:37:7a:
47:10:06:c9:1e:73:1f:1b:66:d0:9b:49:06:22:36:b9:d5:62:
99:87:c5:d5:57:3c:20:a8:94:ce:7b:8b:08:d4:4b:79:b9:5e:
57:ec:63:e6:62:72:ea:46:0b:b2:80:32:64:33:03:a5:a3:ff:
f0:71:e4:b0:03:a8:00:72:f6:e4:e7:7f:f1:c4:cb:35:97:98:
1f:35:77:e9:a2:09:83:b3:f8:e6:96:fa:e5:c0:b3:a0:8c:d2:
5f:8b:cb:fc:6c:91:bb:8d:cf:05:55:ce:55:aa:54:36:22:59:
91:d4:47:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 15:45:25 2024 by rpki-client on console-ams.rpki-client.org