Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: qLMszMGZf6okoGGgG+u3hyLiEQqMgDw/rt/7nT8jEJw=
Subject key identifier: 09:5F:E4:D3:B3:C8:5A:61:10:10:9E:BC:E1:77:A1:17:90:CD:DE:EA
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7156E83EC6290C9C68ABA2CAC0D62FB3B5579132
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
Signing time: Thu 09 Oct 2025 10:24:26 +0000
ROA not before: Thu 09 Oct 2025 10:19:26 +0000
ROA not after: Thu 08 Oct 2026 10:24:26 +0000
asID: 14618
IP address blocks: 179.61.253.0/24 maxlen: 24
181.214.94.0/24 maxlen: 24
181.214.110.0/24 maxlen: 24
181.215.206.0/23 maxlen: 24
185.135.159.0/24 maxlen: 24
185.137.12.0/24 maxlen: 24
185.137.13.0/24 maxlen: 24
185.141.166.0/24 maxlen: 24
191.96.204.0/24 maxlen: 24
191.101.111.0/24 maxlen: 24
191.101.223.0/24 maxlen: 24
213.109.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:56:e8:3e:c6:29:0c:9c:68:ab:a2:ca:c0:d6:2f:b3:b5:57:91:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Oct 9 10:19:26 2025 GMT
Not After : Oct 8 10:24:26 2026 GMT
Subject: CN=095FE4D3B3C85A6110109EBCE177A11790CDDEEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d5:24:b0:99:8e:82:a2:8e:33:98:8b:f2:8f:
8e:7c:92:8b:0b:0c:5e:9c:d2:af:90:b5:a1:db:4c:
8d:25:9f:08:ee:05:24:72:58:4f:b7:18:6e:d5:5a:
59:ee:a8:f1:75:af:62:90:25:da:4f:f5:00:84:cd:
40:a7:1f:28:31:b1:42:a0:82:93:ed:a9:d5:84:d2:
ae:4d:a7:ae:e0:2b:15:8c:6e:67:a2:4f:8f:3f:bf:
e9:c3:19:f8:a4:27:ad:b7:a3:e7:5b:c4:d4:7b:56:
64:90:93:62:26:6f:bd:97:c4:52:46:eb:6f:34:6e:
9d:d0:cb:6a:a6:da:ed:08:7a:64:e3:f3:98:9f:33:
81:ee:8a:c6:4f:67:96:a3:d1:6f:dd:0d:89:74:26:
3f:ac:3a:3c:70:63:8c:2a:7c:9e:56:41:3e:e5:63:
f3:34:70:98:12:e3:8e:e2:18:e0:46:a0:92:c0:60:
b9:9a:3b:b9:2c:6c:c4:e4:43:73:82:ca:68:c8:db:
cb:58:6c:b0:fe:45:49:9d:bc:f7:9c:bd:94:94:03:
ed:15:6a:60:4d:d8:01:a2:04:00:5c:04:e7:b8:dc:
d7:2f:4c:2a:f9:be:48:83:cd:94:a8:c9:8c:e9:f1:
16:00:33:7d:d3:3f:31:4d:82:2b:55:d3:77:f9:c6:
bd:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:5F:E4:D3:B3:C8:5A:61:10:10:9E:BC:E1:77:A1:17:90:CD:DE:EA
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.253.0/24
181.214.94.0/24
181.214.110.0/24
181.215.206.0/23
185.135.159.0/24
185.137.12.0/23
185.141.166.0/24
191.96.204.0/24
191.101.111.0/24
191.101.223.0/24
213.109.169.0/24
Signature Algorithm: sha256WithRSAEncryption
87:91:28:5e:53:7f:e0:43:ac:24:7d:16:08:8c:eb:67:69:5a:
75:3e:49:d4:cc:23:13:c9:ce:be:b2:df:fd:49:c7:53:94:16:
0f:79:64:8f:b1:1a:10:cf:93:6f:6b:7f:5c:ed:6f:58:a7:50:
dc:c8:e6:5f:25:65:22:66:55:68:a3:32:30:58:9b:8b:4f:cd:
8d:cb:e1:ec:9d:7f:52:e4:f1:5d:3f:18:1f:80:20:eb:00:89:
27:a4:a2:47:6b:e2:d1:6a:55:39:b7:00:11:39:75:f0:f6:6b:
f2:0c:75:da:c4:1a:43:53:8a:40:3b:da:f1:00:f4:6a:57:32:
d5:2d:1c:ba:48:5c:a5:7d:7e:1b:ec:36:ba:cd:fe:70:c3:98:
4b:92:48:10:51:cf:fb:84:6c:f7:c9:bd:d1:62:6f:3d:85:73:
ff:20:3a:c7:f2:da:05:d6:e6:3b:a7:89:6c:f2:14:bb:56:b6:
1b:c3:15:3d:0e:e1:5d:f4:50:e0:8b:dd:9d:57:2e:09:a6:82:
df:08:f0:1e:5d:2d:3f:0e:e3:8a:88:30:ef:ca:3b:94:e0:e4:
6a:33:d4:40:39:67:e5:7c:6e:78:88:45:b2:18:f6:e2:5d:d2:
da:c8:94:f6:af:01:97:9e:9a:aa:a6:b3:34:3b:2b:79:91:af:
ff:4b:c8:fa
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:28:30 2025 by rpki-client