Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: B0Sl8IbrbknPcSKx+8wCQvDdFG9LP7LzQTEG3kkbnRM=
Subject key identifier: 8A:F3:90:1B:03:74:FD:BF:86:93:A2:20:3C:5B:96:DA:8D:E4:E9:D4
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 726F0CF74EC1B5745F34426FBD9A2CEC47385611
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
Signing time: Thu 28 May 2026 08:01:34 +0000
ROA not before: Thu 28 May 2026 07:56:34 +0000
ROA not after: Thu 27 May 2027 08:01:34 +0000
asID: 14618
IP address blocks: 2.57.18.0/24 maxlen: 24
181.214.94.0/24 maxlen: 24
181.214.110.0/24 maxlen: 24
181.215.206.0/23 maxlen: 24
185.137.13.0/24 maxlen: 24
191.96.204.0/24 maxlen: 24
191.101.111.0/24 maxlen: 24
2a00:d1a0:10::/48 maxlen: 48
2a00:d1a0:11::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 14:59:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:6f:0c:f7:4e:c1:b5:74:5f:34:42:6f:bd:9a:2c:ec:47:38:56:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: May 28 07:56:34 2026 GMT
Not After : May 27 08:01:34 2027 GMT
Subject: CN=8AF3901B0374FDBF8693A2203C5B96DA8DE4E9D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ce:0b:fe:f4:c5:9a:8b:d2:9f:22:df:0f:7a:
bb:59:7e:34:7a:97:aa:09:c9:be:0c:bc:60:90:af:
bc:97:f7:74:9c:c0:de:0b:86:80:2f:3c:95:86:31:
c0:8f:cd:f6:cd:94:24:9d:c2:2f:d5:cf:34:eb:08:
8a:11:b8:d2:6a:fc:9e:ec:c2:98:40:6d:17:e4:50:
85:ce:8b:68:c9:cb:a9:ad:84:12:85:a8:38:28:86:
46:9c:07:42:c7:5d:6a:be:e1:01:0a:7f:62:65:e9:
a0:06:62:dc:67:df:d2:32:ba:7b:e0:9b:10:20:fd:
d5:56:41:3c:c6:0f:74:a7:c7:20:17:7b:ff:d3:d2:
39:de:7c:43:1a:b7:b3:34:2e:68:b0:29:a0:78:c1:
01:06:cc:b2:6d:38:25:18:2e:69:af:87:db:8a:e7:
23:6f:25:be:3a:dd:77:da:1d:77:63:3c:72:33:82:
89:a8:6c:89:46:a3:44:58:1d:91:55:85:82:da:b6:
40:80:01:21:c5:19:1a:d8:bf:3b:cc:ff:f9:a5:0c:
af:9e:e3:08:35:d2:87:6e:67:72:ac:07:4b:df:d7:
1e:af:08:85:78:b7:ea:fc:5c:0b:4c:89:82:4d:07:
e9:45:36:e5:9d:f9:4b:df:e2:69:49:66:60:63:d6:
52:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F3:90:1B:03:74:FD:BF:86:93:A2:20:3C:5B:96:DA:8D:E4:E9:D4
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.18.0/24
181.214.94.0/24
181.214.110.0/24
181.215.206.0/23
185.137.13.0/24
191.96.204.0/24
191.101.111.0/24
IPv6:
2a00:d1a0:10::/47
Signature Algorithm: sha256WithRSAEncryption
9a:db:d2:77:4d:0c:21:79:90:aa:78:c1:ee:72:d4:8f:f6:dd:
31:08:d1:50:d9:ab:38:31:8b:18:42:90:91:fb:3d:14:da:d0:
e5:db:ee:d8:4c:a9:c1:3d:6d:1d:a1:4b:93:b2:68:c9:d1:ba:
72:cb:6a:c1:38:d9:0e:b1:dd:a8:26:53:73:3a:4e:9e:d4:a0:
ae:96:57:15:d9:41:05:66:00:47:c3:cf:f6:3a:e3:6d:8e:d1:
0f:2a:8f:76:d2:e1:f5:cc:7b:10:0a:b8:78:99:e6:da:bf:13:
57:de:70:52:05:e4:96:d9:7d:23:64:c5:30:d6:95:31:40:43:
42:f1:b5:b5:91:b2:b1:75:e4:29:c5:8f:c9:8a:23:4b:96:8d:
3f:83:db:4d:55:c1:fa:76:1f:68:2c:6f:3c:15:37:f7:a6:9d:
71:91:fb:76:34:8d:45:3a:0a:72:31:5f:a5:87:56:46:ab:71:
09:93:08:9b:42:ef:74:82:df:31:74:6b:a8:59:9a:94:ce:40:
4f:2c:6d:c4:fd:c8:5b:aa:4c:c4:34:79:98:66:95:3a:e0:86:
c1:2d:61:40:2e:83:f1:cd:f7:a8:60:76:97:8b:ae:5c:0f:6d:
b5:a0:89:10:f9:d8:91:92:0c:0d:74:22:43:59:8e:b5:d0:b3:
1e:96:39:54
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUcm8M907BtXRfNEJvvZos7Ec4VhEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNjA1MjgwNzU2MzRaFw0yNzA1MjcwODAxMzRaMDMxMTAvBgNV
BAMTKDhBRjM5MDFCMDM3NEZEQkY4NjkzQTIyMDNDNUI5NkRBOERFNEU5RDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4zgv+9MWai9KfIt8PertZfjR6
l6oJyb4MvGCQr7yX93ScwN4LhoAvPJWGMcCPzfbNlCSdwi/VzzTrCIoRuNJq/J7s
wphAbRfkUIXOi2jJy6mthBKFqDgohkacB0LHXWq+4QEKf2Jl6aAGYtxn39Iyunvg
mxAg/dVWQTzGD3SnxyAXe//T0jnefEMat7M0LmiwKaB4wQEGzLJtOCUYLmmvh9uK
5yNvJb463XfaHXdjPHIzgomobIlGo0RYHZFVhYLatkCAASHFGRrYvzvM//mlDK+e
4wg10oduZ3KsB0vf1x6vCIV4t+r8XAtMiYJNB+lFNuWd+Uvf4mlJZmBj1lJ9AgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQUivOQGwN0/b+Gk6IgPFuW2o3k6dQwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwVAYIKwYBBQUHAQcBAf8ERTBDMDAEAgABMCoDBAACORID
BAC11l4DBAC11m4DBAG1184DBAC5iQ0DBAC/YMwDBAC/ZW8wDwQCAAIwCQMHASoA
0aAAEDANBgkqhkiG9w0BAQsFAAOCAQEAmtvSd00MIXmQqnjB7nLUj/bdMQjRUNmr
ODGLGEKQkfs9FNrQ5dvu2EypwT1tHaFLk7JoydG6cstqwTjZDrHdqCZTczpOntSg
rpZXFdlBBWYAR8PP9jrjbY7RDyqPdtLh9cx7EAq4eJnm2r8TV95wUgXkltl9I2TF
MNaVMUBDQvG1tZGysXXkKcWPyYojS5aNP4PbTVXB+nYfaCxvPBU396adcZH7djSN
RToKcjFfpYdWRqtxCZMIm0LvdILfMXRrqFmalM5ATyxtxP3IW6pMxDR5mGaVOuCG
wS1hQC6D8c33qGB2l4uuXA9ttaCJEPnYkZIMDXQiQ1mOtdCzHpY5VA==
-----END CERTIFICATE-----
Generated at Thu Jun 4 01:18:55 2026 by rpki-client