Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346530303a3a2f34302d3438203d3e20323134373831.roa
File: 326131343a3763303a346530303a3a2f34302d3438203d3e20323134373831.roa (raw, json)
Hash identifier: 4DBmDuGM9Xf+JwF0hCH29K9973dF9fMDlUPYE1P4/9s=
Subject key identifier: 4E:F6:06:17:B5:9A:79:05:44:69:52:3B:65:D6:82:98:B5:D2:C9:AF
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 32974C7DF20B1536470E0A1B0507FF7729A6EADC
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346530303a3a2f34302d3438203d3e20323134373831.roa
Signing time: Wed 07 May 2025 23:19:22 +0000
ROA not before: Wed 07 May 2025 23:14:22 +0000
ROA not after: Wed 06 May 2026 23:19:22 +0000
asID: 214781
IP address blocks: 2a14:7c0:4e00::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:97:4c:7d:f2:0b:15:36:47:0e:0a:1b:05:07:ff:77:29:a6:ea:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: May 7 23:14:22 2025 GMT
Not After : May 6 23:19:22 2026 GMT
Subject: CN=4EF60617B59A79054469523B65D68298B5D2C9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3b:bc:88:55:2e:f7:b3:99:4a:07:a7:8a:92:
3c:85:12:98:c7:6f:dd:c9:aa:b5:84:93:1d:ca:71:
a2:6a:99:f7:48:e8:65:f7:bf:b8:41:f9:de:34:84:
f2:48:c4:45:2d:72:f4:53:81:6f:86:d7:99:92:77:
df:7c:ff:61:33:2c:6d:ce:a6:de:15:ec:55:f0:f4:
ab:fe:1c:2b:0d:37:dd:53:72:c9:4a:2e:26:7d:bc:
f0:68:7f:08:9e:3b:c7:81:8d:24:0e:11:37:ce:c6:
74:e5:4f:d7:73:09:71:c7:2b:d9:c5:cd:a7:fb:d1:
77:dc:7c:47:3d:0d:85:76:8f:ca:da:d5:63:8b:d6:
c0:3b:05:1b:9d:6c:57:36:00:16:6a:99:24:e6:08:
4f:68:56:71:40:d7:f6:b9:a5:94:ce:b6:1d:b9:1a:
69:92:c9:c7:0d:7b:94:f7:a0:b1:5e:7c:7b:74:53:
c0:ca:f5:4d:43:32:a5:e2:06:30:5c:cc:ae:08:a7:
9e:f2:7c:98:54:72:a2:d8:8e:bd:1a:cd:05:fe:28:
94:df:4f:3b:a6:d8:93:af:4b:0e:b7:d3:f3:bb:fb:
f3:9b:39:f1:a7:6f:e1:56:93:df:e2:74:46:cd:35:
cf:06:a4:e2:c6:89:45:d1:88:72:78:03:05:52:1c:
df:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F6:06:17:B5:9A:79:05:44:69:52:3B:65:D6:82:98:B5:D2:C9:AF
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a346530303a3a2f34302d3438203d3e20323134373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:4e00::/40
Signature Algorithm: sha256WithRSAEncryption
45:71:88:2a:ff:f6:cc:97:d9:39:5f:1d:f4:b3:4d:f5:45:be:
b6:57:37:ed:ea:f3:50:26:35:3c:04:64:03:c2:af:c8:43:08:
6e:2b:35:d2:50:5f:56:77:ed:90:6b:d9:62:8d:54:7b:84:20:
2e:c7:b3:24:87:22:89:02:f1:15:ec:11:41:63:11:26:26:48:
e3:12:7d:c5:99:66:b5:38:c2:dd:c1:73:9e:61:28:78:71:6b:
4a:92:a5:ee:02:17:c2:e7:27:22:bc:c9:f5:9c:28:67:6f:3c:
46:c3:91:3a:b2:2f:2c:44:55:17:d2:95:4c:ae:95:d4:97:ca:
11:3e:be:b6:df:3d:fd:8e:ca:02:e5:c3:4e:18:aa:52:77:0f:
3c:4e:2b:f3:69:0e:fe:98:a9:33:75:10:70:41:b6:bb:39:23:
f1:3a:ee:b7:e9:b9:36:93:a7:fa:9c:e1:0f:0b:7a:16:29:d8:
9c:59:6d:94:79:2d:0d:47:ac:29:ba:4b:42:11:4a:5d:ce:69:
c6:6a:1a:ac:70:82:12:c0:56:28:2a:4b:e2:d7:58:f7:fc:be:
ad:de:4d:f5:a9:3e:1d:60:97:bb:f8:e7:14:ed:ab:8f:6b:d5:
e5:28:be:e1:8a:c1:2e:69:c9:99:4c:43:29:98:32:12:2b:b0:
53:54:c6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:21:40 2025 by rpki-client