Route Origin Authorization
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS47272.roa
File: AS47272.roa (raw, json)
Hash identifier: YGzjNoWY74yXYZ1kijAt3qWT2gbf4jvWjAhjlPMucxA=
Subject key identifier: F9:95:F0:B1:0F:A7:89:A8:E2:A7:38:05:80:56:70:AB:7D:4F:45:03
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 3F7B61C05D754E8A849B0A973B328BDC9BD9160B
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS47272.roa
Signing time: Sat 09 May 2026 18:50:29 +0000
ROA not before: Sat 09 May 2026 18:45:29 +0000
ROA not after: Sat 08 May 2027 18:50:29 +0000
asID: 47272
IP address blocks: 199.47.240.0/24 maxlen: 32
2a06:1281:40::/44 maxlen: 44
2a06:1281:1000::/36 maxlen: 36
2a0f:6280:a::/48 maxlen: 128
2a0f:6280:10::/48 maxlen: 128
2a0f:6280:11::/48 maxlen: 128
2a0f:6280:12::/48 maxlen: 128
2a0f:6280:13::/48 maxlen: 128
2a0f:6280:14::/48 maxlen: 48
2a0f:6280:15::/48 maxlen: 128
2a0f:6280:16::/48 maxlen: 128
2a0f:6280:17::/48 maxlen: 128
2a0f:6280:18::/48 maxlen: 128
2a0f:6280:1a::/48 maxlen: 128
2a0f:6280:1b::/48 maxlen: 128
2a0f:6280:1c::/48 maxlen: 48
2a0f:6280:1d::/48 maxlen: 128
2a0f:6280:1f::/48 maxlen: 128
2a0f:6283:1130::/44 maxlen: 44
2a0f:6283:1140::/44 maxlen: 44
2a0f:6283:1150::/44 maxlen: 44
2a0f:6284:20::/44 maxlen: 44
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:7b:61:c0:5d:75:4e:8a:84:9b:0a:97:3b:32:8b:dc:9b:d9:16:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: May 9 18:45:29 2026 GMT
Not After : May 8 18:50:29 2027 GMT
Subject: CN=F995F0B10FA789A8E2A73805805670AB7D4F4503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:17:02:51:85:ff:1c:3c:3b:14:ed:80:e0:db:
d4:03:df:04:91:0f:02:66:91:f6:12:3d:da:5c:3b:
f0:ad:42:bd:f5:73:9e:72:17:f2:6b:1e:15:0c:17:
11:59:6a:36:c0:9b:f7:2d:6d:e0:81:3d:c0:c2:4e:
c0:a0:87:3a:43:4e:10:21:e3:6c:c2:63:bf:95:c2:
82:8e:3c:89:e1:22:39:82:08:b4:bd:1d:bd:a3:f5:
c9:eb:c0:b8:80:f0:2e:b0:8b:39:14:1f:f2:3f:1b:
7a:fc:38:6d:ea:28:07:48:21:03:a6:9b:a5:46:50:
cd:bb:ca:a8:b2:1a:d7:be:09:18:25:69:a9:1e:6a:
f7:45:f1:3d:f1:04:ee:80:69:fe:cd:ef:d8:dd:ca:
26:41:76:a5:9f:7f:cc:8e:ef:49:b9:32:5a:25:8c:
de:a7:11:86:99:5a:f1:12:10:f4:d8:df:f8:36:01:
aa:28:aa:45:b2:ca:81:33:03:6c:19:50:72:da:92:
b1:ca:e5:bd:e0:49:73:c8:c1:64:40:61:dd:6c:c7:
4a:9e:e1:39:d6:8e:87:d1:bb:86:95:c6:df:dd:8b:
f9:3a:61:da:b6:1b:71:0d:b8:49:f6:12:8a:47:01:
07:c8:d8:a6:35:e0:1d:d5:f9:02:47:1b:44:4a:12:
b0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:95:F0:B1:0F:A7:89:A8:E2:A7:38:05:80:56:70:AB:7D:4F:45:03
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS47272.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.47.240.0/24
IPv6:
2a06:1281:40::/44
2a06:1281:1000::/36
2a0f:6280:a::/48
2a0f:6280:10::-2a0f:6280:18:ffff:ffff:ffff:ffff:ffff
2a0f:6280:1a::-2a0f:6280:1d:ffff:ffff:ffff:ffff:ffff
2a0f:6280:1f::/48
2a0f:6283:1130::-2a0f:6283:115f:ffff:ffff:ffff:ffff:ffff
2a0f:6284:20::/44
Signature Algorithm: sha256WithRSAEncryption
4d:fa:b6:f7:32:7c:e1:b9:a6:51:16:0e:9c:d3:38:7c:43:2e:
9a:5c:18:dd:6d:08:0c:ea:f7:a1:24:4d:04:e9:53:15:86:38:
32:5c:e8:15:53:37:0e:70:89:ca:b2:2f:ed:fb:5a:c1:66:95:
87:09:21:58:77:e2:3f:97:35:8a:ee:1b:9b:2b:a9:a2:93:eb:
ec:a6:33:2d:90:7a:5c:a1:d9:7a:b6:35:66:89:1f:6c:7d:2a:
8b:55:a0:c5:35:4b:de:b6:5d:cc:ec:55:15:16:3c:0c:d5:5f:
fa:a9:9f:42:bf:ee:74:78:56:d0:41:99:d9:ae:62:20:44:43:
69:59:ef:52:75:88:87:ec:31:a4:26:33:99:b0:f0:b2:73:8c:
8e:1a:a8:e7:90:50:8e:1b:12:8a:ea:4e:06:0d:6a:bd:6b:b4:
37:67:aa:08:7a:e2:74:57:13:26:40:5d:c6:3b:b6:62:4e:2a:
10:ac:1a:43:d5:78:ba:a6:01:96:06:66:5a:02:c8:e1:17:5a:
43:41:1e:34:39:9e:9c:7e:eb:2a:b5:2f:db:28:88:f9:f5:31:
bf:3a:9b:21:64:de:8b:1b:0c:5b:36:62:58:3a:12:03:bb:a4:
d4:bd:92:d8:79:c6:03:06:29:4e:8e:08:db:b5:5c:65:4e:8d:
b7:0c:bd:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:22:01 2026 by rpki-client