Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: 9d6rM1HGZkc1mdI7aBO8IGOLRDp2I7eFgvsBjpdbLZw=
Subject key identifier: 0F:01:24:72:DF:A4:7E:93:28:56:8F:F8:3C:1D:69:C4:2C:74:AB:E5
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1F8FB2ED2CB45D9F9B6237F50F812C35E061AC00
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
Signing time: Thu 05 Mar 2026 12:44:59 +0000
ROA not before: Thu 05 Mar 2026 12:39:59 +0000
ROA not after: Thu 04 Mar 2027 12:44:59 +0000
asID: 14618
IP address blocks: 45.139.182.0/24 maxlen: 24
181.214.94.0/24 maxlen: 24
181.214.110.0/24 maxlen: 24
181.215.206.0/23 maxlen: 24
185.137.13.0/24 maxlen: 24
191.96.204.0/24 maxlen: 24
191.101.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 13:35:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:8f:b2:ed:2c:b4:5d:9f:9b:62:37:f5:0f:81:2c:35:e0:61:ac:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 5 12:39:59 2026 GMT
Not After : Mar 4 12:44:59 2027 GMT
Subject: CN=0F012472DFA47E9328568FF83C1D69C42C74ABE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:56:a5:fd:11:6f:7e:b6:9e:c1:6a:67:1e:99:
65:70:66:02:6d:8e:20:92:47:01:5e:99:2c:66:10:
6b:5c:92:44:e8:24:70:b1:6a:5e:88:d2:86:6d:00:
e9:be:6a:b1:fa:3e:22:5b:d9:ff:cf:2a:ac:9d:06:
cf:50:7a:5f:6e:64:ba:84:01:f0:15:e9:d1:4e:dc:
96:bf:64:ae:f4:bc:a5:c4:da:ae:48:6f:d3:db:df:
1b:e8:36:ab:42:f9:e6:1a:db:9f:c5:ca:cd:8f:9d:
e7:33:b1:98:9a:40:7d:84:b3:db:cd:f2:5a:f4:6c:
66:0b:1c:85:4b:60:b3:90:50:cb:64:32:a2:5f:39:
03:03:d3:6a:88:6b:69:4c:02:4b:cc:9f:82:55:22:
a0:76:9c:e4:be:43:92:4a:71:96:3c:00:3f:69:e0:
3d:dc:c3:30:d8:0f:70:b2:63:b7:28:f7:06:94:40:
c7:c9:f9:6d:c3:89:f1:8d:9e:ac:77:b2:e7:d3:f8:
1e:bd:9f:53:03:d9:ee:d6:48:0c:80:59:d1:fd:3f:
a0:55:4e:7b:f6:8f:b0:77:b2:c8:09:e3:6f:21:84:
1c:74:36:f5:a2:27:0e:00:f7:a0:ab:ef:4c:85:6f:
79:61:94:27:10:0d:09:6e:d8:b2:47:27:d8:48:55:
67:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:01:24:72:DF:A4:7E:93:28:56:8F:F8:3C:1D:69:C4:2C:74:AB:E5
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.182.0/24
181.214.94.0/24
181.214.110.0/24
181.215.206.0/23
185.137.13.0/24
191.96.204.0/24
191.101.111.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f2:dd:e5:cc:79:33:cf:b4:fe:fd:6c:6a:fd:2a:37:55:ca:
77:a9:2e:1a:1c:e1:32:f3:73:20:19:e4:75:94:3f:1f:e7:ea:
a6:a9:90:d5:80:a1:03:a7:a4:d6:88:01:ed:50:74:88:16:db:
43:e9:6b:db:ff:57:31:fc:32:c4:7b:f7:4b:b3:b7:22:13:0e:
c9:62:9f:82:28:8a:14:4d:ed:bf:d9:cf:99:31:a7:34:48:de:
b8:2a:a4:1a:f3:9f:28:5f:a0:ff:93:ee:9b:39:06:1f:70:90:
57:a9:ee:5a:9f:b6:6e:bb:c6:51:43:fe:26:60:c5:3c:a5:d7:
c5:db:4c:46:e0:14:34:54:f5:c9:81:65:95:d3:56:c1:d7:4c:
c9:b5:9b:a3:ea:c8:74:5f:2c:13:61:63:c0:1c:bd:8f:bf:a2:
18:d4:66:2e:48:61:ea:d0:91:df:49:ea:a7:09:b8:50:87:43:
22:c2:7a:4e:8e:63:c1:fb:54:38:02:56:f1:25:57:79:28:d8:
32:c4:07:d7:aa:89:2a:9f:9c:a0:ae:34:a5:b9:32:c4:f3:b8:
8b:48:aa:d6:45:52:10:51:d1:4e:e7:79:9a:65:b6:3d:be:e2:
c5:77:88:83:65:1c:4c:f3:99:12:b5:f3:79:55:42:fb:c8:5b:
45:57:c1:16
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIUH4+y7Sy0XZ+bYjf1D4EsNeBhrAAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh
NDFiYmEwYTAeFw0yNjAzMDUxMjM5NTlaFw0yNzAzMDQxMjQ0NTlaMDMxMTAvBgNV
BAMTKDBGMDEyNDcyREZBNDdFOTMyODU2OEZGODNDMUQ2OUM0MkM3NEFCRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvVqX9EW9+tp7BamcemWVwZgJt
jiCSRwFemSxmEGtckkToJHCxal6I0oZtAOm+arH6PiJb2f/PKqydBs9Qel9uZLqE
AfAV6dFO3Ja/ZK70vKXE2q5Ib9Pb3xvoNqtC+eYa25/Fys2PneczsZiaQH2Es9vN
8lr0bGYLHIVLYLOQUMtkMqJfOQMD02qIa2lMAkvMn4JVIqB2nOS+Q5JKcZY8AD9p
4D3cwzDYD3CyY7co9waUQMfJ+W3DifGNnqx3sufT+B69n1MD2e7WSAyAWdH9P6BV
Tnv2j7B3ssgJ428hhBx0NvWiJw4A96Cr70yFb3lhlCcQDQlu2LJHJ9hIVWf3AgMB
AAGjggItMIICKTAdBgNVHQ4EFgQUDwEkct+kfpMoVo/4PB1pxCx0q+UwHwYDVR0j
BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj
NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR
YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt
NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwQwYIKwYBBQUHAQcBAf8ENDAyMDAEAgABMCoDBAAti7YD
BAC11l4DBAC11m4DBAG1184DBAC5iQ0DBAC/YMwDBAC/ZW8wDQYJKoZIhvcNAQEL
BQADggEBAGby3eXMeTPPtP79bGr9KjdVynepLhoc4TLzcyAZ5HWUPx/n6qapkNWA
oQOnpNaIAe1QdIgW20Ppa9v/VzH8MsR790uztyITDslin4IoihRN7b/Zz5kxpzRI
3rgqpBrznyhfoP+T7ps5Bh9wkFep7lqftm67xlFD/iZgxTyl18XbTEbgFDRU9cmB
ZZXTVsHXTMm1m6PqyHRfLBNhY8AcvY+/ohjUZi5IYerQkd9J6qcJuFCHQyLCek6O
Y8H7VDgCVvElV3ko2DLEB9eqiSqfnKCuNKW5MsTzuItIqtZFUhBR0U7neZpltj2+
4sV3iINlHEzzmRK183lVQvvIW0VXwRY=
-----END CERTIFICATE-----
Generated at Thu Mar 5 17:34:48 2026 by rpki-client