Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: 9r1ARRANYkRjr8s9l0W6eRBJTkAFhTiCwB76x/4tNpI=
Subject key identifier: CC:AD:C6:C6:55:F9:3D:12:2F:14:32:FA:83:EE:B1:CE:FF:12:F9:85
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 1A60D4259E1BA9E5CF36BFB521B89005219D2E31
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
Signing time: Thu 26 Mar 2026 09:14:14 +0000
ROA not before: Thu 26 Mar 2026 09:09:14 +0000
ROA not after: Thu 25 Mar 2027 09:14:14 +0000
asID: 14618
IP address blocks: 45.139.182.0/24 maxlen: 24
181.214.94.0/24 maxlen: 24
181.214.110.0/24 maxlen: 24
181.215.206.0/23 maxlen: 24
185.137.13.0/24 maxlen: 24
191.96.204.0/24 maxlen: 24
191.101.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:60:d4:25:9e:1b:a9:e5:cf:36:bf:b5:21:b8:90:05:21:9d:2e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 26 09:09:14 2026 GMT
Not After : Mar 25 09:14:14 2027 GMT
Subject: CN=CCADC6C655F93D122F1432FA83EEB1CEFF12F985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fb:9d:46:d4:8b:e2:74:1d:6e:4e:3a:45:94:
40:b7:a6:1b:0a:d3:0c:77:01:b2:ca:d3:3f:13:94:
2d:27:4e:9d:be:66:51:6e:13:b0:4a:7a:9a:b3:6e:
87:58:33:71:fc:aa:70:ad:b7:b6:4f:72:92:23:4f:
a5:13:dc:c4:44:a6:67:e6:c0:a9:cb:64:61:93:c9:
45:da:7f:60:ad:60:4a:6b:30:c6:f9:81:c1:76:c3:
f6:e5:b7:68:d1:e7:68:6c:32:2a:76:22:4d:96:d1:
c7:8e:4a:8b:a7:e2:05:7e:aa:49:27:dd:18:a0:f6:
ea:27:61:84:04:f8:cf:e6:6e:e9:a4:aa:ff:28:06:
2d:76:5f:a0:e6:ec:b2:bd:9b:a2:4d:97:31:b6:ee:
85:23:0b:96:a2:29:13:32:f2:72:2c:44:19:c6:cf:
85:57:c9:d2:db:f5:34:10:7b:3c:03:87:d6:d7:b1:
7f:2a:1a:7f:ba:29:31:64:31:74:4e:52:06:9c:8c:
6a:fd:65:4a:8e:f3:0a:e7:8c:46:b1:5b:51:64:9b:
3f:3d:5f:3f:89:52:68:0a:8e:1d:bf:e9:cc:b6:a0:
d4:30:6c:d2:4c:20:e3:68:c4:c9:49:80:7d:bd:ed:
4b:93:02:89:a3:7a:73:36:eb:92:a1:a6:2d:79:b3:
04:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AD:C6:C6:55:F9:3D:12:2F:14:32:FA:83:EE:B1:CE:FF:12:F9:85
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.182.0/24
181.214.94.0/24
181.214.110.0/24
181.215.206.0/23
185.137.13.0/24
191.96.204.0/24
191.101.111.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ca:32:f4:f0:7b:bc:24:03:39:04:ae:69:74:f8:ee:1f:9e:
7b:73:1e:0b:9f:1f:fc:f5:4f:82:75:ce:cd:e0:0d:b0:9d:42:
81:fb:c3:28:3c:c8:70:30:6a:35:a6:a6:81:07:6e:45:9b:bd:
26:79:bc:f8:a6:57:f0:45:dd:cb:04:98:2b:b4:c3:f0:8d:b7:
53:f6:78:d7:3c:f1:fa:f1:91:e6:db:ad:19:97:23:66:cc:3f:
71:12:65:c0:4a:cd:fd:2f:23:3b:e0:23:7e:ea:37:c2:1a:bc:
e2:ad:ac:b0:22:61:7d:da:e3:42:bd:5b:8d:65:bf:49:ca:f0:
0f:c1:1b:8c:00:99:b8:8c:d1:d0:e7:36:3e:60:b3:eb:9a:da:
44:73:43:04:f5:d3:e8:c1:66:e3:14:fa:75:a1:cd:4d:2e:15:
cf:94:ea:dd:68:ce:75:73:68:ca:65:b9:54:3d:d7:4c:90:23:
91:7e:05:79:02:22:24:24:2a:54:33:18:f6:fb:b1:1d:65:e1:
87:49:bf:4a:21:61:c7:7b:8d:90:41:2a:5e:c2:0b:6a:2d:f5:
66:24:39:67:72:3c:75:c3:4f:24:fd:4f:65:12:9d:50:cf:22:
66:12:f1:22:f0:1f:63:25:43:05:80:88:b7:59:19:ca:01:31:
64:4a:fc:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:49:47 2026 by rpki-client