Route Origin Authorization
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207113.roa
File: AS207113.roa (raw, json)
Hash identifier: unFffVjDKMBQuXOdIDzg+Hy+R8XbAFUqZUL4g/dtgxU=
Subject key identifier: E9:30:04:9B:F7:87:5E:C6:E6:29:9D:78:35:9B:AE:81:D8:A0:13:F5
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 5AE3EFAADB5201B80FD650DB03F3E6B8094F47DA
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa
Signing time: Wed 18 Mar 2026 06:10:57 +0000
ROA not before: Wed 18 Mar 2026 06:05:57 +0000
ROA not after: Wed 17 Mar 2027 06:10:57 +0000
asID: 207113
IP address blocks: 2a06:1281::/44 maxlen: 48
2a06:1281::/48 maxlen: 48
2a06:1281:1::/48 maxlen: 48
2a0f:6284:100::/40 maxlen: 40
2a0f:6284:100::/44 maxlen: 44
2a0f:6284:100::/48 maxlen: 48
2a0f:6284:101::/48 maxlen: 48
2a0f:6284:102::/48 maxlen: 48
2a0f:6284:150::/44 maxlen: 44
2a0f:6284:150::/48 maxlen: 48
2a0f:6284:151::/48 maxlen: 48
2a0f:6284:152::/48 maxlen: 48
2a0f:6284:160::/44 maxlen: 44
2a0f:6284:160::/48 maxlen: 48
2a0f:6284:161::/48 maxlen: 48
2a0f:6284:162::/48 maxlen: 48
2a0f:6284:180::/44 maxlen: 44
2a0f:6284:180::/48 maxlen: 48
2a0f:6284:181::/48 maxlen: 48
2a0f:6284:182::/48 maxlen: 48
2a0f:6284:190::/44 maxlen: 44
2a0f:6284:190::/48 maxlen: 48
2a0f:6284:191::/48 maxlen: 48
2a0f:6284:192::/48 maxlen: 48
2a0f:6284:1a0::/44 maxlen: 44
2a0f:6284:1a0::/48 maxlen: 48
2a0f:6284:1a1::/48 maxlen: 48
2a0f:6284:1a2::/48 maxlen: 48
2a0f:6284:1c0::/48 maxlen: 48
2a0f:6284:4200::/44 maxlen: 48
2a0f:6284:420f::/48 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:11:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:e3:ef:aa:db:52:01:b8:0f:d6:50:db:03:f3:e6:b8:09:4f:47:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Mar 18 06:05:57 2026 GMT
Not After : Mar 17 06:10:57 2027 GMT
Subject: CN=E930049BF7875EC6E6299D78359BAE81D8A013F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:20:47:4c:eb:3a:7a:81:d8:37:81:16:39:41:
39:89:1b:b5:8e:3a:dd:f5:f9:d3:f2:95:28:69:67:
8e:d6:8e:32:ae:12:a8:a4:cd:e4:71:d4:6b:14:cb:
7a:c9:74:e0:7d:ed:31:c2:cf:dc:d3:dc:82:3a:2e:
9d:49:ec:1f:1d:4e:3d:19:a0:4f:09:cf:52:50:40:
f9:52:66:97:0e:b2:44:0a:43:04:8d:16:40:c7:77:
35:c4:e5:04:5c:dd:db:19:f6:c0:07:8f:cc:21:4f:
f2:2c:7e:c1:1b:ad:70:c4:52:71:b0:ae:75:ec:16:
38:56:23:df:47:42:5c:c5:65:69:0a:19:88:3d:7f:
df:0b:b9:d1:c8:02:9e:19:ea:7b:4b:6b:00:03:7f:
0f:b6:cb:09:6f:17:3c:fe:c7:a6:38:a9:a5:e4:6d:
21:c7:1f:04:55:37:b3:14:bc:d9:79:78:d9:bd:dd:
12:34:c8:ea:51:4b:db:9a:2e:df:d6:25:77:d9:30:
00:aa:c3:1d:01:0e:26:11:29:cc:86:fb:19:b5:4f:
59:17:77:ef:91:89:81:aa:0e:ca:e6:b1:ca:a9:5f:
cb:b5:b9:bc:92:4d:5a:43:2f:86:ad:4f:16:96:49:
be:40:63:90:6e:da:31:91:2e:6f:a2:10:6a:93:0a:
eb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:30:04:9B:F7:87:5E:C6:E6:29:9D:78:35:9B:AE:81:D8:A0:13:F5
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1281::/44
2a0f:6284:100::/40
2a0f:6284:4200::/44
Signature Algorithm: sha256WithRSAEncryption
28:fc:8a:04:1c:e8:51:16:f9:2b:3a:ba:5c:9e:ef:86:a1:37:
03:4b:b4:c8:bd:a9:61:09:be:1e:2c:33:fd:f3:d3:b0:10:a0:
c4:73:cd:33:bd:4c:43:83:4a:68:cb:cc:35:bd:7a:d8:9b:d1:
88:8b:5b:18:69:e9:2e:d6:88:68:fb:b2:00:43:cb:e0:b2:26:
16:23:8a:74:26:e8:7e:5a:ed:37:2a:23:d6:da:6e:42:83:1c:
3c:09:c9:1c:e8:bd:ab:f8:b5:20:e3:8c:b6:68:6e:8b:85:33:
0b:8b:a2:97:03:24:23:0e:46:c2:04:34:ba:2f:3b:8e:dc:97:
e5:ec:3a:1a:43:c0:bb:88:42:ce:80:a0:e7:fe:36:05:9b:80:
e1:df:61:c9:77:02:60:d2:ca:e0:79:4e:d7:5d:f8:40:17:13:
c6:89:80:62:f7:21:2e:89:f2:c3:2e:fb:49:3c:35:a5:c5:cd:
20:b2:8f:a5:82:e0:b4:ca:c6:05:04:fd:af:4d:52:6e:1e:67:
d5:e8:33:9e:cc:07:14:45:3a:b1:36:eb:66:13:50:4e:b9:6d:
cc:61:d3:8c:17:c4:ab:b4:ed:d0:43:ed:45:4e:e8:1c:9e:ea:
0f:8c:e4:68:62:9e:2d:f7:93:66:11:2c:2a:c0:67:54:fa:34:
10:2d:9b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:30:20 2026 by rpki-client