Route Origin Authorization
$ rpki-client -vvf repo.rpki.space/repo/Infiniroute/1/326131343a3763303a393130303a3a2f34342d3438203d3e20323135333137.roa
File: 326131343a3763303a393130303a3a2f34342d3438203d3e20323135333137.roa (raw, json)
Hash identifier: aMSxZXaPhDjGeNPBGJACp3f9cT4OtxkN8HyrAKbf8WE=
Subject key identifier: 32:00:46:72:EB:54:4B:CE:30:A6:E3:7B:BA:08:AC:2E:78:A8:C8:EF
Certificate issuer: /CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Certificate serial: 1F9BBE66A026E4CD9DBA025B6C082CC5B4104CF0
Authority key identifier: 5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject info access: rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a393130303a3a2f34342d3438203d3e20323135333137.roa
Signing time: Tue 31 Mar 2026 15:52:11 +0000
ROA not before: Tue 31 Mar 2026 15:47:11 +0000
ROA not after: Tue 30 Mar 2027 15:52:11 +0000
asID: 215317
IP address blocks: 2a14:7c0:9100::/44 maxlen: 48
Validation: OK
Signature path: rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft
rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:18:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:9b:be:66:a0:26:e4:cd:9d:ba:02:5b:6c:08:2c:c5:b4:10:4c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8e21c6890bd79ab764d91b60c39c3b7e4985e1
Validity
Not Before: Mar 31 15:47:11 2026 GMT
Not After : Mar 30 15:52:11 2027 GMT
Subject: CN=32004672EB544BCE30A6E37BBA08AC2E78A8C8EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ae:95:1a:63:97:c3:a1:e9:44:b1:01:bd:5e:
3c:f1:a7:1b:df:bd:3f:12:71:5a:a3:3c:84:7f:53:
08:eb:f5:9b:97:5d:bd:e8:1f:f1:63:dd:16:ad:63:
d0:8e:a2:3c:3f:03:e4:f9:3e:5e:79:cb:8f:05:c4:
eb:6f:fd:fc:03:f1:44:4d:bc:1d:b3:4a:fc:88:9d:
1b:9c:6f:f2:6e:3d:aa:76:db:1d:ad:e9:45:ff:66:
f4:a0:35:cd:2e:d2:0a:81:14:5a:a1:9a:3a:fa:a8:
c0:bb:79:b6:73:61:0e:b8:66:2b:a1:1a:df:a9:bb:
2a:53:71:fb:31:b4:89:5a:3d:c9:b1:fb:11:5e:00:
a2:e1:8b:e1:72:35:6e:77:4d:2a:6a:9d:ae:d1:af:
3d:7a:01:dd:10:69:76:f5:0f:68:c7:0c:71:d9:99:
a3:c5:5b:65:9c:1a:54:e9:65:50:f5:6a:52:4e:81:
bd:19:22:d3:13:22:10:42:7a:4b:f9:68:ca:91:14:
61:7f:de:68:1a:9b:9b:8e:06:58:08:bb:85:4d:fb:
13:56:0a:4d:1c:97:5f:2c:ce:7a:8d:e7:11:c5:93:
9d:dc:6a:0a:dd:06:f8:8e:cf:f5:3c:7c:05:6c:1d:
ef:64:31:b1:01:e2:f5:fb:8f:08:0c:fc:fc:23:e7:
ba:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:00:46:72:EB:54:4B:CE:30:A6:E3:7B:BA:08:AC:2E:78:A8:C8:EF
X509v3 Authority Key Identifier:
keyid:5B:8E:21:C6:89:0B:D7:9A:B7:64:D9:1B:60:C3:9C:3B:7E:49:85:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer
Subject Information Access:
Signed Object - URI:rsync://repo.rpki.space/repo/Infiniroute/1/326131343a3763303a393130303a3a2f34342d3438203d3e20323135333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0:9100::/44
Signature Algorithm: sha256WithRSAEncryption
a0:fe:a6:d7:ef:48:31:e4:5e:1c:ab:e2:d1:3a:80:dd:42:70:
80:f9:a3:a5:f6:0d:48:60:71:20:29:0c:cf:d3:f1:2d:13:f3:
96:9a:6b:43:ad:df:ba:7f:5a:c0:07:47:fc:0a:94:43:34:e5:
a1:bd:41:48:33:6e:43:9e:9a:e8:11:e3:b3:75:b6:9a:19:cb:
91:e5:2c:ab:94:a2:80:da:69:ae:a2:72:6b:02:b0:6f:b9:e3:
f6:6d:e4:5f:1f:a5:5b:75:6b:fb:f8:b2:96:4a:47:61:27:b5:
ad:fa:dc:b0:db:d6:84:5c:62:02:cc:e2:f3:ee:18:c4:85:88:
18:55:39:b3:a9:b5:56:c5:1c:95:56:80:a9:29:ff:6d:8a:be:
5c:c1:90:e8:79:68:2b:5f:4e:89:26:f8:26:35:dc:07:00:de:
c4:47:40:f2:06:ab:5a:df:49:5b:5a:6b:80:bb:e8:e7:83:d0:
c8:86:aa:c6:0e:9f:96:b7:ea:32:69:6e:4c:fa:e9:6d:04:8c:
a0:67:52:c7:61:d9:5b:c4:c0:cd:5a:89:7b:5f:0d:ce:66:dc:
f4:c1:6a:f3:f8:a3:11:77:05:5e:2c:62:67:1e:75:62:c8:77:
5e:6b:bc:da:5a:a4:69:e0:65:f5:59:c8:ee:74:d0:0e:57:14:
26:be:00:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:47:18 2026 by rpki-client