Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3130303a3a2f34302d3430203d3e203531333936.roa
File: 326131343a3763303a3130303a3a2f34302d3430203d3e203531333936.roa (raw, json)
Hash identifier: +kYU7Ll87btT9q83ugU6i28biO4WOgD6+2JBKhLW8zU=
Subject key identifier: 77:19:AB:96:F1:A5:AD:66:C1:80:25:E3:31:E9:96:6D:10:AE:64:BA
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 4F15564ADED32E84B98CB59DDAC6166E61EEE8A0
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3130303a3a2f34302d3430203d3e203531333936.roa
Signing time: Fri 27 Mar 2026 16:30:51 +0000
ROA not before: Fri 27 Mar 2026 16:25:51 +0000
ROA not after: Fri 26 Mar 2027 16:30:51 +0000
asID: 51396
IP address blocks: 2a14:7c0:100::/40 maxlen: 40
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:18:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:15:56:4a:de:d3:2e:84:b9:8c:b5:9d:da:c6:16:6e:61:ee:e8:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Mar 27 16:25:51 2026 GMT
Not After : Mar 26 16:30:51 2027 GMT
Subject: CN=7719AB96F1A5AD66C18025E331E9966D10AE64BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4a:08:90:cc:81:59:82:c0:42:44:18:45:06:
d0:1c:b1:4a:02:92:de:b0:e5:16:c7:c6:4a:8a:c8:
60:11:0f:a4:92:9a:ea:f9:20:20:a7:e8:ee:8b:96:
8b:19:86:dd:58:49:37:1d:f1:06:29:ca:c5:ab:d8:
21:7a:e8:e6:b8:f1:3a:80:f8:de:0f:02:84:d4:ca:
80:9d:1f:fd:06:f9:33:44:aa:29:f2:7a:2a:0f:c0:
1e:de:04:ef:22:1c:3d:f2:05:71:6f:7f:4a:93:8a:
e0:42:c8:c7:d8:b0:fe:58:c0:9f:5e:27:87:91:a7:
b1:e6:6b:e7:e5:51:a0:d1:16:2a:aa:75:a9:f0:6e:
82:02:97:47:80:e4:22:da:2b:21:b1:9d:6d:71:c1:
49:db:7a:e7:f6:4f:0a:c1:68:9a:60:df:e0:70:54:
d9:7b:52:d1:3a:a3:cc:63:13:8a:4d:9f:ab:16:ee:
f9:6f:df:60:8e:4c:86:95:4f:87:ad:e5:44:5a:d1:
58:36:03:7a:62:7e:fa:e5:ef:2b:84:b7:7f:bb:2a:
02:da:45:d7:d3:77:5f:a3:b0:c7:58:84:2d:52:45:
e7:dd:47:89:f4:66:63:6f:a2:e8:7d:26:92:fe:06:
ad:6c:c3:3d:01:b1:b8:b6:d4:7a:a0:63:d1:f1:87:
a3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:19:AB:96:F1:A5:AD:66:C1:80:25:E3:31:E9:96:6D:10:AE:64:BA
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a3130303a3a2f34302d3430203d3e203531333936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:100::/40
Signature Algorithm: sha256WithRSAEncryption
9c:3e:8e:ea:96:7c:f1:43:3d:4f:6f:e1:4a:30:8b:69:9b:51:
8b:31:b6:85:f1:96:ea:9d:fb:3c:a1:96:69:0e:cd:5c:b2:25:
8c:7b:77:a3:e7:d8:65:f9:6b:53:94:d3:78:24:6e:cb:5f:cb:
e7:1f:8b:be:76:76:ae:28:f9:7b:30:fa:24:d1:03:23:ef:4c:
f7:1b:e8:e0:b8:d5:f2:14:d7:21:1e:51:af:66:96:1c:9d:d4:
60:85:de:db:66:85:4a:a9:7d:f5:2c:3a:2c:aa:db:11:8f:2a:
f2:d0:ad:5b:42:76:ce:a6:ee:62:5f:2a:fa:dd:2d:47:7c:ca:
89:e4:23:96:c8:46:e5:0f:08:4d:2e:02:d8:45:5c:73:ec:06:
1a:c8:38:96:7d:da:5b:01:b5:b7:11:ce:f4:fb:4e:8f:79:67:
ee:68:41:d7:18:86:9f:d6:8e:9d:69:95:0f:3c:cc:8e:07:94:
30:14:57:a7:f2:d9:48:f8:cb:54:ee:76:ed:ef:d2:40:71:5e:
90:cf:dd:16:97:7b:cc:b9:d1:c1:b4:a9:2e:fc:49:cc:a3:b1:
ff:3a:27:cf:6e:7e:b8:cf:cd:a5:50:bb:09:2b:d4:41:f0:72:
7b:f3:ad:1b:97:93:d4:48:44:9f:ff:81:44:8a:84:34:ca:9f:
f5:ed:85:de
-----BEGIN CERTIFICATE-----
MIIE3zCCA8egAwIBAgIUTxVWSt7TLoS5jLWd2sYWbmHu6KAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWI4ZTIxYzY4OTBiZDc5YWI3NjRkOTFiNjBjMzljM2I3
ZTQ5ODVlMTAeFw0yNjAzMjcxNjI1NTFaFw0yNzAzMjYxNjMwNTFaMDMxMTAvBgNV
BAMTKDc3MTlBQjk2RjFBNUFENjZDMTgwMjVFMzMxRTk5NjZEMTBBRTY0QkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdSgiQzIFZgsBCRBhFBtAcsUoC
kt6w5RbHxkqKyGARD6SSmur5ICCn6O6LlosZht1YSTcd8QYpysWr2CF66Oa48TqA
+N4PAoTUyoCdH/0G+TNEqinyeioPwB7eBO8iHD3yBXFvf0qTiuBCyMfYsP5YwJ9e
J4eRp7Hma+flUaDRFiqqdanwboICl0eA5CLaKyGxnW1xwUnbeuf2TwrBaJpg3+Bw
VNl7UtE6o8xjE4pNn6sW7vlv32COTIaVT4et5URa0Vg2A3pifvrl7yuEt3+7KgLa
RdfTd1+jsMdYhC1SRefdR4n0ZmNvouh9JpL+Bq1swz0Bsbi21HqgY9Hxh6NDAgMB
AAGjggHpMIIB5TAdBgNVHQ4EFgQUdxmrlvGlrWbBgCXjMemWbRCuZLowHwYDVR0j
BBgwFoAUW44hxokL15q3ZNkbYMOcO35JheEwDgYDVR0PAQH/BAQDAgeAMGgGA1Ud
HwRhMF8wXaBboFmGV3JzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vSW5maW5p
cm91dGUvMS81QjhFMjFDNjg5MEJENzlBQjc2NEQ5MUI2MEMzOUMzQjdFNDk4NUUx
LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvVzQ0aHhva0wxNXEzWk5rYllNT2NP
MzVKaGVFLmNlcjCBhQYIKwYBBQUHAQsEeTB3MHUGCCsGAQUFBzALhmlyc3luYzov
L3JlcG8ucnBraS5zcGFjZS9yZXBvL0luZmluaXJvdXRlLzEvMzI2MTMxMzQzYTM3
NjMzMDNhMzEzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzUzMTMzMzkzNi5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGACoUB8ABMA0GCSqGSIb3DQEBCwUAA4IBAQCcPo7qlnzxQz1Pb+FK
MItpm1GLMbaF8Zbqnfs8oZZpDs1csiWMe3ej59hl+WtTlNN4JG7LX8vnH4u+dnau
KPl7MPok0QMj70z3G+jguNXyFNchHlGvZpYcndRghd7bZoVKqX31LDosqtsRjyry
0K1bQnbOpu5iXyr63S1HfMqJ5COWyEblDwhNLgLYRVxz7AYayDiWfdpbAbW3Ec70
+06PeWfuaEHXGIaf1o6daZUPPMyOB5QwFFen8tlI+MtU7nbt79JAcV6Qz90Wl3vM
udHBtKku/EnMo7H/OifPbn64z82lULsJK9RB8HJ7860bl5PUSESf/4FEioQ0yp/1
7YXe
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:18:50 2026 by rpki-client