Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346265303a3a2f34332d3438203d3e20323038363934.roa
File: 326131343a3763303a346265303a3a2f34332d3438203d3e20323038363934.roa (raw, json)
Hash identifier: 9EOmrjDCCoe6MJlV/kL4dT0vCGGuVeoFndbgid2O4is=
Subject key identifier: CA:00:AD:4D:18:E4:1F:90:78:2E:61:6A:B8:76:C1:A5:5C:DD:90:72
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 62E2574B71D5828F0AD3F62F3A72F50F7F569BCD
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346265303a3a2f34332d3438203d3e20323038363934.roa
Signing time: Sun 05 Apr 2026 19:52:00 +0000
ROA not before: Sun 05 Apr 2026 19:47:00 +0000
ROA not after: Sun 04 Apr 2027 19:52:00 +0000
asID: 208694
IP address blocks: 2a14:7c0:4be0::/43 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:18:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:e2:57:4b:71:d5:82:8f:0a:d3:f6:2f:3a:72:f5:0f:7f:56:9b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Apr 5 19:47:00 2026 GMT
Not After : Apr 4 19:52:00 2027 GMT
Subject: CN=CA00AD4D18E41F90782E616AB876C1A55CDD9072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:18:95:89:16:e3:85:80:03:ae:e6:9b:ec:d0:
ac:63:cf:da:16:43:83:c8:44:72:ec:76:a3:45:bb:
36:ad:9b:e4:5a:b6:81:9f:09:54:ce:9b:8f:12:fc:
3c:b6:15:61:96:6d:56:22:ea:88:bc:3f:bb:26:6d:
18:31:94:5a:a4:ff:06:d4:1f:8a:53:0c:df:8d:1f:
0a:40:82:fb:a7:37:cb:62:c8:f4:0a:d7:2e:51:7b:
66:ec:e6:4d:31:e6:02:ce:50:3f:ea:19:52:d7:7f:
61:14:f6:53:d8:41:e2:1d:e6:c8:79:81:7f:ab:b8:
2d:89:bf:da:7b:3c:74:a8:28:8d:4b:82:07:00:a1:
df:06:f4:72:4e:40:8d:2a:30:66:a9:db:33:e1:15:
93:53:0e:8b:ac:32:b0:22:18:fc:90:65:29:53:a5:
16:e5:5f:d4:8b:8d:01:6d:52:e5:2a:0d:72:e4:28:
3d:fe:73:2b:1c:f5:5d:93:28:fe:95:9f:4b:18:fd:
bf:de:e5:a4:a1:56:08:5d:c0:b0:ce:ca:00:78:06:
49:5a:d8:a8:b7:f8:70:c7:b0:df:08:ce:dc:b3:63:
4b:1d:15:ee:83:36:04:06:95:49:4b:d6:ed:7a:a8:
34:57:27:47:bf:be:3f:c3:e9:d0:ee:59:c5:88:26:
64:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:00:AD:4D:18:E4:1F:90:78:2E:61:6A:B8:76:C1:A5:5C:DD:90:72
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346265303a3a2f34332d3438203d3e20323038363934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:4be0::/43
Signature Algorithm: sha256WithRSAEncryption
90:27:35:d4:97:ae:ed:fb:82:d1:33:fd:64:b2:4f:27:aa:d8:
30:43:d5:56:90:c9:97:0f:96:9a:50:e3:28:20:c8:a8:ca:e1:
ea:c4:67:45:6a:3f:fe:3b:e1:fd:47:46:9e:e1:4f:81:00:08:
c6:2c:a6:f2:4d:44:c4:c7:fe:45:5b:b7:77:3f:64:87:74:dc:
65:19:8a:99:0a:92:5e:3f:af:45:61:84:52:df:61:93:97:80:
20:5d:39:b8:47:91:10:46:3d:61:f0:8e:b5:32:15:2d:3a:87:
65:37:a1:02:c1:19:56:c5:24:3d:e8:7f:df:9f:eb:89:32:30:
43:bf:b7:f2:d5:8f:4b:0c:cc:a0:30:d2:6c:aa:c5:09:57:e1:
ba:5a:12:1f:38:7d:35:80:66:59:b3:69:44:d4:f8:40:eb:0d:
5c:1d:61:6a:f2:71:00:7b:33:08:80:d0:49:28:dd:b1:ab:2b:
bb:45:8e:82:22:36:a9:6c:e9:fd:7e:6d:c0:82:2c:27:cd:88:
51:f5:a8:69:40:b6:80:33:14:91:87:d0:2b:86:cc:ff:8d:c1:
a9:db:b9:bc:e0:92:52:d5:2c:5b:17:8c:bd:9d:13:a0:0c:5f:
3b:db:e9:df:3e:3f:49:ba:64:9f:9a:40:a8:9b:31:fd:bb:56:
f6:d1:63:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:08:44 2026 by rpki-client