Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: wGrkMUeZhVmdmErugNg1CCA/s9Up8Hx/wlAuWSjNWgA=
Subject key identifier: 92:EE:05:9D:7D:88:D8:19:CB:9A:63:2F:B4:B5:64:37:9A:6B:28:42
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4D2FB771341E50ECA6B7D2B728D9057E992846C3
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa
Signing time: Wed 18 Feb 2026 19:34:26 +0000
ROA not before: Wed 18 Feb 2026 19:29:26 +0000
ROA not after: Wed 17 Feb 2027 19:34:26 +0000
asID: 14618
IP address blocks: 82.21.28.0/22 maxlen: 24
82.24.76.0/24 maxlen: 24
82.24.100.0/24 maxlen: 24
82.26.154.0/24 maxlen: 24
82.26.201.0/24 maxlen: 24
82.29.0.0/24 maxlen: 24
82.29.2.0/24 maxlen: 24
82.29.3.0/24 maxlen: 24
82.29.4.0/24 maxlen: 24
82.29.102.0/24 maxlen: 24
82.29.104.0/24 maxlen: 24
82.29.105.0/24 maxlen: 24
82.39.223.0/24 maxlen: 24
82.41.200.0/24 maxlen: 24
178.83.112.0/22 maxlen: 22
2a13:9500:13a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Feb 2026 19:42:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:2f:b7:71:34:1e:50:ec:a6:b7:d2:b7:28:d9:05:7e:99:28:46:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 18 19:29:26 2026 GMT
Not After : Feb 17 19:34:26 2027 GMT
Subject: CN=92EE059D7D88D819CB9A632FB4B564379A6B2842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3e:71:6e:90:a6:95:f7:90:7e:6b:f5:6b:fe:
35:fe:b1:16:e7:d8:84:ac:53:1d:de:1e:88:e1:1b:
fa:e0:dc:be:8c:2a:b4:5f:34:10:3f:45:e9:99:a4:
df:b6:b2:90:66:75:d2:22:55:26:fd:9c:9f:99:43:
3b:c5:bd:ae:9d:7c:ff:9c:9e:de:e5:ad:8d:57:e3:
2f:d6:d0:54:05:23:d2:ad:d1:dd:bd:7a:bf:0e:ac:
f4:29:eb:9e:33:e9:3e:00:2f:aa:c4:f1:1c:41:12:
a5:b1:bb:10:58:46:91:1a:ca:00:f3:0a:08:d2:8c:
37:1c:e0:4a:a5:7b:fa:1b:30:db:2b:5a:03:6d:68:
34:c9:fb:2f:9f:3a:c9:93:02:48:78:52:31:50:15:
e0:4d:fc:0e:db:8a:83:8c:32:ec:82:0d:d3:c4:cc:
3a:9b:33:11:0b:f1:f0:d1:6a:93:17:65:61:bb:87:
35:6e:4b:aa:07:36:5f:cb:c5:9a:c9:04:33:35:40:
a9:0a:01:93:f6:97:26:76:db:62:53:ca:52:d2:ee:
4c:c6:6d:0b:5b:5a:c0:f0:61:1e:35:d3:42:40:43:
51:7a:a3:5d:d2:e9:2c:8d:6d:4b:9a:10:42:db:a7:
59:50:af:5a:57:5e:3d:8b:b6:f6:b5:de:a2:69:92:
55:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:EE:05:9D:7D:88:D8:19:CB:9A:63:2F:B4:B5:64:37:9A:6B:28:42
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.28.0/22
82.24.76.0/24
82.24.100.0/24
82.26.154.0/24
82.26.201.0/24
82.29.0.0/24
82.29.2.0-82.29.4.255
82.29.102.0/24
82.29.104.0/23
82.39.223.0/24
82.41.200.0/24
178.83.112.0/22
IPv6:
2a13:9500:13a::/48
Signature Algorithm: sha256WithRSAEncryption
58:77:7f:78:fd:9b:78:c2:64:9a:21:e9:00:8c:56:8a:7f:d1:
00:4a:3b:1c:21:fb:96:10:f6:25:97:b3:0f:78:70:81:73:68:
dd:d2:21:83:75:77:fe:6d:fd:6c:1d:11:4f:5a:ef:21:02:f3:
b2:df:c4:08:e4:cb:c1:97:d2:31:96:c4:d9:aa:4d:01:cb:a2:
0a:22:c9:b2:57:64:f4:37:24:81:48:5e:67:43:9b:cd:55:32:
bf:66:cf:de:83:af:0d:e2:1d:6b:06:84:46:de:eb:eb:79:85:
0e:e7:20:fa:8c:f8:cb:bc:20:64:12:05:98:67:b7:1d:06:4f:
6d:e3:a1:8b:53:b9:40:93:50:9c:d6:46:ec:a4:e1:2d:48:89:
74:d1:aa:60:73:c6:be:3e:30:c7:fb:fb:48:47:12:a2:ed:07:
67:9e:7f:a7:d7:0f:b3:27:c8:83:a9:f2:9d:91:a1:40:6e:31:
ec:e6:0c:9c:31:a9:49:eb:b7:ef:10:fc:29:95:35:18:b9:80:
85:90:ce:60:bd:3e:4a:e3:58:57:5b:28:3c:09:39:6d:5f:65:
ab:fe:b8:29:99:45:59:e3:f0:f7:3d:7b:dc:65:bd:ba:d6:4a:
6d:40:3e:1a:1b:72:05:35:dd:9a:f2:de:b7:c1:ae:40:84:1a:
3b:cc:01:5a
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgIUTS+3cTQeUOymt9K3KNkFfpkoRsMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjAyMTgxOTI5MjZaFw0yNzAyMTcxOTM0MjZaMDMxMTAvBgNV
BAMTKDkyRUUwNTlEN0Q4OEQ4MTlDQjlBNjMyRkI0QjU2NDM3OUE2QjI4NDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSPnFukKaV95B+a/Vr/jX+sRbn
2ISsUx3eHojhG/rg3L6MKrRfNBA/RemZpN+2spBmddIiVSb9nJ+ZQzvFva6dfP+c
nt7lrY1X4y/W0FQFI9Kt0d29er8OrPQp654z6T4AL6rE8RxBEqWxuxBYRpEaygDz
CgjSjDcc4Eqle/obMNsrWgNtaDTJ+y+fOsmTAkh4UjFQFeBN/A7bioOMMuyCDdPE
zDqbMxEL8fDRapMXZWG7hzVuS6oHNl/LxZrJBDM1QKkKAZP2lyZ222JTylLS7kzG
bQtbWsDwYR4100JAQ1F6o13S6SyNbUuaEELbp1lQr1pXXj2Ltva13qJpklV1AgMB
AAGjggJkMIICYDAdBgNVHQ4EFgQUku4FnX2I2BnLmmMvtLVkN5prKEIwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwegYIKwYBBQUHAQcBAf8EazBpMFYEAgABMFADBAJSFRwD
BABSGEwDBABSGGQDBABSGpoDBABSGskDBABSHQAwDAMEAVIdAgMEAFIdBAMEAFId
ZgMEAVIdaAMEAFIn3wMEAFIpyAMEArJTcDAPBAIAAjAJAwcAKhOVAAE6MA0GCSqG
SIb3DQEBCwUAA4IBAQBYd394/Zt4wmSaIekAjFaKf9EASjscIfuWEPYll7MPeHCB
c2jd0iGDdXf+bf1sHRFPWu8hAvOy38QI5MvBl9IxlsTZqk0By6IKIsmyV2T0NySB
SF5nQ5vNVTK/Zs/eg68N4h1rBoRG3uvreYUO5yD6jPjLvCBkEgWYZ7cdBk9t46GL
U7lAk1Cc1kbspOEtSIl00apgc8a+PjDH+/tIRxKi7Qdnnn+n1w+zJ8iDqfKdkaFA
bjHs5gycMalJ67fvEPwplTUYuYCFkM5gvT5K41hXWyg8CTltX2Wr/rgpmUVZ4/D3
PXvcZb261kptQD4aG3IFNd2a8t63wa5AhBo7zAFa
-----END CERTIFICATE-----
Generated at Sat Feb 21 04:52:04 2026 by rpki-client