Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a316330303a3a2f33392d3438203d3e20323135353633.roa
File: 326131343a3763303a316330303a3a2f33392d3438203d3e20323135353633.roa (raw, json)
Hash identifier: My6Ro+//62rvUGlKG9zl23gAZNXj1dBJGbe24qgJHuQ=
Subject key identifier: 30:4E:9E:60:93:B4:A6:EF:FB:A3:41:4C:63:1B:B9:02:7C:76:53:AE
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 2B900CC3B38407F7D3EAA52A551F58CAD64E0328
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a316330303a3a2f33392d3438203d3e20323135353633.roa
Signing time: Tue 31 Mar 2026 15:52:16 +0000
ROA not before: Tue 31 Mar 2026 15:47:16 +0000
ROA not after: Tue 30 Mar 2027 15:52:16 +0000
asID: 215563
IP address blocks: 2a14:7c0:1c00::/39 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:18:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:90:0c:c3:b3:84:07:f7:d3:ea:a5:2a:55:1f:58:ca:d6:4e:03:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Mar 31 15:47:16 2026 GMT
Not After : Mar 30 15:52:16 2027 GMT
Subject: CN=304E9E6093B4A6EFFBA3414C631BB9027C7653AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7d:79:b6:1c:56:74:64:05:f3:1b:d3:3d:d0:
c8:bf:4c:ed:61:1e:cf:a3:4b:7e:17:30:c7:48:14:
d3:6f:cb:e4:93:c2:e1:18:72:59:d1:a9:c4:ea:02:
77:3e:01:ea:18:43:19:97:bd:47:83:42:e3:5f:f3:
02:ac:13:71:a0:b0:b1:fb:91:fb:f5:cc:ad:0f:3a:
d6:36:58:e0:1d:ef:d9:4e:83:e4:4b:50:dc:3e:da:
d8:b8:19:1d:ab:1a:4c:b8:2b:22:85:0f:e6:31:2e:
c2:9b:b4:65:24:f7:ab:76:36:5d:b1:53:b9:e0:b0:
11:8d:f0:51:5b:82:2c:79:71:6b:a4:4a:98:75:37:
5e:f6:d8:6e:5c:cc:43:57:c7:b0:f6:a0:92:76:e1:
f2:19:bb:dc:8b:ee:c6:f4:5e:e2:b6:49:b0:1e:4c:
a1:e9:95:82:75:1e:0f:a3:c2:f5:ea:ac:44:2f:3f:
a0:70:b8:c0:2a:54:e5:c8:7b:de:b5:c7:75:bb:e2:
f3:2a:b2:21:b7:40:1c:71:94:23:28:22:ca:8c:1e:
9a:b0:af:e7:f3:d7:a4:f1:80:02:c0:03:98:d9:8c:
ae:3d:6d:76:05:f3:ac:7b:ff:dd:1f:23:2a:67:39:
53:74:ad:f8:94:5f:73:2d:51:f5:38:58:a0:b8:d1:
61:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:4E:9E:60:93:B4:A6:EF:FB:A3:41:4C:63:1B:B9:02:7C:76:53:AE
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a316330303a3a2f33392d3438203d3e20323135353633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:1c00::/39
Signature Algorithm: sha256WithRSAEncryption
6f:a9:a3:af:90:1c:47:f8:23:51:21:e4:23:2f:37:f4:f6:04:
f4:cf:45:ea:e1:93:94:e2:bc:22:dc:0c:92:b7:11:84:7c:57:
65:27:4a:ac:0e:7b:1d:fb:92:2e:2e:b4:9a:58:94:b8:c4:41:
ef:16:bc:aa:91:40:ae:38:5e:40:7c:63:0d:ac:b9:1f:5d:8c:
99:6e:d3:87:52:6d:56:43:8a:6a:bf:0d:c8:06:cf:82:a3:6f:
6d:f6:c7:38:e3:bd:87:ab:ab:4f:0a:f6:e5:3b:40:69:60:0d:
d0:6a:1f:d3:0c:4d:ff:a9:18:9a:9b:d7:b7:68:5c:33:55:b4:
ec:5d:16:03:e6:93:2d:ae:1f:f5:84:c6:78:3e:04:49:c9:10:
ca:6a:1d:4b:ec:97:99:bf:6c:c2:9e:ed:96:f0:5f:f4:9f:04:
26:e8:1e:7a:6d:6f:8a:aa:95:9d:0a:33:40:7a:0a:39:b8:bb:
d2:82:63:36:51:83:38:ab:36:63:0d:9d:d8:f3:15:6d:84:4a:
1c:2e:5c:61:28:ca:00:c3:c0:f8:34:5c:91:3b:df:ea:5f:d0:
a2:c7:36:83:82:b9:d1:28:73:4a:7c:b7:c6:5b:1c:7f:75:8e:
f2:9a:ef:38:60:be:a6:23:1c:77:ba:72:4a:87:48:3e:7a:94:
07:70:da:fb
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIUK5AMw7OEB/fT6qUqVR9YytZOAygwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWI4ZTIxYzY4OTBiZDc5YWI3NjRkOTFiNjBjMzljM2I3
ZTQ5ODVlMTAeFw0yNjAzMzExNTQ3MTZaFw0yNzAzMzAxNTUyMTZaMDMxMTAvBgNV
BAMTKDMwNEU5RTYwOTNCNEE2RUZGQkEzNDE0QzYzMUJCOTAyN0M3NjUzQUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/fXm2HFZ0ZAXzG9M90Mi/TO1h
Hs+jS34XMMdIFNNvy+STwuEYclnRqcTqAnc+AeoYQxmXvUeDQuNf8wKsE3GgsLH7
kfv1zK0POtY2WOAd79lOg+RLUNw+2ti4GR2rGky4KyKFD+YxLsKbtGUk96t2Nl2x
U7ngsBGN8FFbgix5cWukSph1N1722G5czENXx7D2oJJ24fIZu9yL7sb0XuK2SbAe
TKHplYJ1Hg+jwvXqrEQvP6BwuMAqVOXIe961x3W74vMqsiG3QBxxlCMoIsqMHpqw
r+fz16TxgALAA5jZjK49bXYF86x7/90fIypnOVN0rfiUX3MtUfU4WKC40WGnAgMB
AAGjggHtMIIB6TAdBgNVHQ4EFgQUME6eYJO0pu/7o0FMYxu5Anx2U64wHwYDVR0j
BBgwFoAUW44hxokL15q3ZNkbYMOcO35JheEwDgYDVR0PAQH/BAQDAgeAMGgGA1Ud
HwRhMF8wXaBboFmGV3JzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vSW5maW5p
cm91dGUvMS81QjhFMjFDNjg5MEJENzlBQjc2NEQ5MUI2MEMzOUMzQjdFNDk4NUUx
LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvVzQ0aHhva0wxNXEzWk5rYllNT2NP
MzVKaGVFLmNlcjCBiQYIKwYBBQUHAQsEfTB7MHkGCCsGAQUFBzALhm1yc3luYzov
L3JlcG8ucnBraS5zcGFjZS9yZXBvL0luZmluaXJvdXRlLzEvMzI2MTMxMzQzYTM3
NjMzMDNhMzE2MzMwMzAzYTNhMmYzMzM5MmQzNDM4MjAzZDNlMjAzMjMxMzUzNTM2
MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8E
EjAQMA4EAgACMAgDBgEqFAfAHDANBgkqhkiG9w0BAQsFAAOCAQEAb6mjr5AcR/gj
USHkIy839PYE9M9F6uGTlOK8ItwMkrcRhHxXZSdKrA57HfuSLi60mliUuMRB7xa8
qpFArjheQHxjDay5H12MmW7Th1JtVkOKar8NyAbPgqNvbfbHOOO9h6urTwr25TtA
aWAN0Gof0wxN/6kYmpvXt2hcM1W07F0WA+aTLa4f9YTGeD4ESckQymodS+yXmb9s
wp7tlvBf9J8EJugeem1viqqVnQozQHoKObi70oJjNlGDOKs2Yw2d2PMVbYRKHC5c
YSjKAMPA+DRckTvf6l/Qosc2g4K50ShzSny3xlscf3WO8prvOGC+piMcd7pySodI
PnqUB3Da+w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 22:02:44 2026 by rpki-client