Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS6517.roa
File: AS6517.roa (raw, json)
Hash identifier: xhKw4xML4nGjLpWPuL5O6I5bf2sCuNYx9MupM47NxBw=
Subject key identifier: 7E:D4:F3:B4:D1:C4:F2:A3:CB:D1:1A:4C:7D:CF:7D:31:8C:06:D8:6A
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 60E08958D73967F1F9204F638DEDA0C253FB0E04
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS6517.roa
Signing time: Tue 23 Sep 2025 01:38:26 +0000
ROA not before: Tue 23 Sep 2025 01:33:26 +0000
ROA not after: Tue 22 Sep 2026 01:38:26 +0000
asID: 6517
IP address blocks: 2a14:7585::/32 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:e0:89:58:d7:39:67:f1:f9:20:4f:63:8d:ed:a0:c2:53:fb:0e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 23 01:33:26 2025 GMT
Not After : Sep 22 01:38:26 2026 GMT
Subject: CN=7ED4F3B4D1C4F2A3CBD11A4C7DCF7D318C06D86A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:84:af:7d:e6:19:c9:29:30:ef:8e:37:25:4a:
07:24:68:47:68:26:a4:99:f3:1d:b0:d9:28:bd:9a:
c3:f2:bc:ac:6b:db:2d:57:36:ea:0b:db:60:0b:03:
41:eb:cb:64:ae:85:b6:c9:b7:db:11:8c:c4:f7:a6:
c1:6b:3b:48:f3:94:51:6b:fc:1f:78:92:4c:8a:6e:
50:e2:04:2a:6c:bb:37:42:5f:df:07:39:da:77:88:
ab:ba:35:c7:20:f9:fa:6e:10:e7:86:fd:e3:1f:54:
4a:6e:c5:8f:fd:ee:a4:3c:a6:78:68:78:0f:da:a6:
cf:72:cf:e2:41:fb:04:e5:94:25:8c:63:e7:81:87:
cd:a3:3f:75:df:2f:63:e1:0a:99:e3:60:c0:f6:86:
0a:ea:66:46:f8:f5:02:a4:03:d1:4b:bf:3c:06:21:
fd:a7:81:51:e6:5a:ec:b5:b8:e1:ad:78:ea:49:0c:
cf:2a:7c:12:66:be:c6:55:9a:1a:57:78:12:41:45:
7c:c5:53:ec:14:a9:9c:b1:e4:b8:39:64:b1:94:43:
d5:0f:b2:cb:0b:e6:a0:44:cb:93:33:ec:cb:c9:ac:
02:2f:bd:1e:52:0f:4d:e4:46:3e:50:a8:4d:f4:13:
ae:89:8d:50:76:91:49:f3:89:8e:a0:46:33:38:3d:
3d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D4:F3:B4:D1:C4:F2:A3:CB:D1:1A:4C:7D:CF:7D:31:8C:06:D8:6A
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS6517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7585::/32
Signature Algorithm: sha256WithRSAEncryption
11:63:7b:57:cf:f7:d5:cf:9d:b5:1f:46:4d:8d:05:b2:69:d3:
f4:56:11:ea:8e:df:11:1c:12:1f:33:6b:95:f8:80:57:cf:b0:
f8:9c:d8:20:64:11:2e:ed:47:4d:e6:6c:bf:7f:a5:83:57:07:
67:e1:8f:f0:4b:4b:a1:5f:37:4d:e7:8a:42:86:58:f3:24:6d:
b8:42:ff:77:eb:d1:c3:f6:4c:7e:12:1b:15:7a:bc:ff:df:d2:
b6:9b:59:be:69:b6:a1:55:ac:4c:7e:47:e9:09:da:00:4f:44:
80:aa:89:8e:1c:c9:99:e3:0c:54:97:a9:26:fd:69:cc:99:51:
37:de:57:b4:69:30:66:4b:16:4d:0c:29:26:61:8a:79:8d:ad:
f1:3f:56:91:02:a1:79:01:23:7f:16:49:79:1c:e8:9b:01:a6:
7d:61:da:b9:c7:28:28:cb:82:8f:05:20:5a:18:03:9e:6b:05:
5a:ed:56:1a:3c:79:16:31:a7:ea:13:e7:b7:f7:56:ca:ae:df:
c2:0c:5b:d3:43:ef:88:7d:38:65:d3:27:3f:03:a2:d1:74:69:
01:6c:3d:63:cd:2a:3f:50:aa:d5:68:82:01:a2:93:b2:f2:bb:
5e:17:8f:e1:4f:e5:e1:b7:1c:e0:ba:dc:4e:1c:82:53:be:df:
ca:99:32:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:43:21 2025 by rpki-client