Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: uyji5y3g7Drs04VW8EsCL0cFX/wr86c2HRv52v/Uitc=
Subject key identifier: 00:6C:33:10:DF:BB:F9:6F:76:CB:F5:38:74:5C:26:81:77:1A:5A:33
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 5D5029F300CF4C4AA225022D1B3C7FDBBD5DCAC7
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa
Signing time: Fri 05 Jun 2026 07:04:08 +0000
ROA not before: Fri 05 Jun 2026 06:59:08 +0000
ROA not after: Fri 04 Jun 2027 07:04:08 +0000
asID: 14618
IP address blocks: 82.21.0.0/24 maxlen: 24
82.23.172.0/24 maxlen: 24
82.24.76.0/24 maxlen: 24
82.26.154.0/24 maxlen: 24
82.26.201.0/24 maxlen: 24
82.29.0.0/24 maxlen: 24
82.29.2.0/24 maxlen: 24
82.29.3.0/24 maxlen: 24
82.29.4.0/24 maxlen: 24
82.29.44.0/24 maxlen: 24
82.29.102.0/24 maxlen: 24
82.29.104.0/24 maxlen: 24
82.29.105.0/24 maxlen: 24
82.41.200.0/24 maxlen: 24
82.47.64.0/19 maxlen: 24
82.47.152.0/22 maxlen: 24
84.75.18.0/24 maxlen: 24
84.75.19.0/24 maxlen: 24
84.75.34.0/24 maxlen: 24
84.75.36.0/24 maxlen: 24
84.75.37.0/24 maxlen: 24
84.75.38.0/24 maxlen: 24
84.75.41.0/24 maxlen: 24
84.75.42.0/24 maxlen: 24
84.75.48.0/24 maxlen: 24
84.75.50.0/24 maxlen: 24
84.75.51.0/24 maxlen: 24
84.75.52.0/24 maxlen: 24
84.75.53.0/24 maxlen: 24
84.75.55.0/24 maxlen: 24
84.75.61.0/24 maxlen: 24
84.75.62.0/24 maxlen: 24
84.75.63.0/24 maxlen: 24
84.75.64.0/24 maxlen: 24
84.75.65.0/24 maxlen: 24
84.75.67.0/24 maxlen: 24
84.75.68.0/24 maxlen: 24
84.75.69.0/24 maxlen: 24
84.75.70.0/24 maxlen: 24
84.75.96.0/19 maxlen: 24
84.75.132.0/23 maxlen: 24
178.83.182.0/23 maxlen: 24
178.83.230.0/23 maxlen: 24
178.83.232.0/24 maxlen: 24
2a13:9500:126::/48 maxlen: 48
2a13:9500:127::/48 maxlen: 48
2a13:9500:13a::/48 maxlen: 48
2a13:9500:157::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:50:29:f3:00:cf:4c:4a:a2:25:02:2d:1b:3c:7f:db:bd:5d:ca:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 5 06:59:08 2026 GMT
Not After : Jun 4 07:04:08 2027 GMT
Subject: CN=006C3310DFBBF96F76CBF538745C2681771A5A33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:02:1e:43:46:79:d9:3b:e5:1b:2f:63:86:3e:
e9:c3:38:72:d4:e0:f1:dd:da:56:83:24:1b:7c:c1:
6f:82:70:bc:9b:fa:2c:4c:b0:f5:af:c3:c5:e2:f2:
41:aa:ee:7b:81:66:e2:2e:a7:2c:d9:f7:7a:1e:f8:
78:59:97:ab:80:b6:d7:04:a5:33:23:d6:25:f0:64:
3e:16:ca:46:35:b9:ca:c9:6a:e6:eb:c9:eb:e7:ed:
4e:64:d3:a8:d6:b9:47:e6:59:5c:4b:cc:6c:67:57:
68:51:81:67:6d:06:0d:33:eb:a2:a3:a5:6e:aa:85:
7d:8b:5b:74:fa:66:62:38:d1:56:47:7d:d1:de:08:
e7:6c:06:bc:da:c3:8a:f5:fa:c4:f3:85:33:f4:93:
1a:f5:79:0e:91:cc:f3:72:2a:06:69:ad:bc:4d:97:
49:99:d9:e2:80:d0:f2:0f:f9:70:b1:51:ae:61:19:
fb:ea:dd:8a:4d:f2:75:76:19:e9:fc:ed:30:1d:1b:
c6:f1:64:0f:2b:21:df:40:ac:75:d4:62:8c:11:6b:
65:a8:1e:19:78:e4:05:34:44:02:f1:90:51:df:59:
94:1f:6b:9d:d6:c3:57:c5:50:54:bc:58:20:1a:71:
e2:32:95:1d:50:59:48:9c:d1:dd:ae:78:09:77:de:
7e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6C:33:10:DF:BB:F9:6F:76:CB:F5:38:74:5C:26:81:77:1A:5A:33
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.0.0/24
82.23.172.0/24
82.24.76.0/24
82.26.154.0/24
82.26.201.0/24
82.29.0.0/24
82.29.2.0-82.29.4.255
82.29.44.0/24
82.29.102.0/24
82.29.104.0/23
82.41.200.0/24
82.47.64.0/19
82.47.152.0/22
84.75.18.0/23
84.75.34.0/24
84.75.36.0-84.75.38.255
84.75.41.0-84.75.42.255
84.75.48.0/24
84.75.50.0-84.75.53.255
84.75.55.0/24
84.75.61.0-84.75.65.255
84.75.67.0-84.75.70.255
84.75.96.0/19
84.75.132.0/23
178.83.182.0/23
178.83.230.0-178.83.232.255
IPv6:
2a13:9500:126::/47
2a13:9500:13a::/48
2a13:9500:157::/48
Signature Algorithm: sha256WithRSAEncryption
27:84:0e:41:4b:c2:91:52:f5:f6:d9:f7:aa:e2:d3:51:16:c8:
a6:ff:60:b5:06:b4:91:63:36:ba:74:9d:e5:2d:1d:34:d2:09:
bf:1e:70:90:c3:be:30:43:e5:b6:5a:be:ea:fc:4e:17:00:6c:
f4:d4:0d:45:51:d2:ba:c3:fd:54:50:5d:a0:a5:46:8c:10:d3:
7e:4c:52:c0:b2:de:a2:3d:0d:c6:a0:86:9f:1e:a7:0a:02:f1:
4a:da:ff:43:c7:35:42:76:16:d7:0e:e4:b3:fc:c5:9a:69:fc:
b5:98:f9:9d:58:95:c4:95:39:07:49:52:31:cb:8b:8c:70:43:
0d:fd:0d:cf:c7:c4:e2:92:40:fb:25:39:4d:84:e2:a6:ab:a4:
7b:e2:89:c2:f7:4a:8f:70:ee:54:6d:68:c8:34:dd:d3:2e:05:
a9:2c:69:4c:d0:f2:36:3b:c9:a0:cc:27:b2:e3:c3:9a:5b:fb:
57:cc:08:59:0d:be:4c:cc:fc:70:af:7f:76:4f:31:44:9e:83:
8d:1c:65:8c:63:4c:81:01:f6:b7:36:66:cc:11:2b:9e:40:92:
f4:b3:bf:41:58:2b:e5:41:07:92:30:c5:1d:ab:1f:e7:a3:74:
9a:55:76:9d:dd:6e:9a:59:ac:f4:bf:5c:a2:24:b7:59:8a:34:
64:b7:1b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:42:51 2026 by rpki-client