Route Origin Authorization
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: LFIHYHKjIJTrlqTQ0OTMY7DpwD54M0+lMjWfMXi9Lzw=
Subject key identifier: D0:98:B8:7D:FD:A9:AA:44:FD:0B:00:31:59:F0:15:2B:D8:9B:F2:BF
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 631F381D5853D2EF7019BEC0664609B48E3B1AD8
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS14618.roa
Signing time: Fri 13 Feb 2026 15:55:59 +0000
ROA not before: Fri 13 Feb 2026 15:50:59 +0000
ROA not after: Fri 12 Feb 2027 15:55:59 +0000
asID: 14618
IP address blocks: 2a05:dfc3:f740::/44 maxlen: 44
2a05:dfc3:f750::/44 maxlen: 48
2a0f:6284:4c00::/44 maxlen: 48
2a0f:6284:4c50::/44 maxlen: 48
2a0f:6284:4c60::/44 maxlen: 48
2a0f:6284:4c70::/44 maxlen: 48
2a0f:6284:4c80::/44 maxlen: 48
2a0f:6284:4c90::/44 maxlen: 48
2a0f:6284:4cd0::/44 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Feb 2026 19:39:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:1f:38:1d:58:53:d2:ef:70:19:be:c0:66:46:09:b4:8e:3b:1a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Feb 13 15:50:59 2026 GMT
Not After : Feb 12 15:55:59 2027 GMT
Subject: CN=D098B87DFDA9AA44FD0B003159F0152BD89BF2BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ff:57:9a:53:d2:96:64:3b:2b:26:06:ad:9d:
43:54:c2:7e:56:68:0b:9e:bc:fa:95:f5:65:0b:21:
35:4e:37:5e:9f:61:46:83:03:96:0a:7a:62:73:68:
10:59:62:fd:37:24:ed:cc:2c:fb:07:9e:1b:c0:fb:
4d:ab:ab:8e:da:12:fb:18:6f:21:12:3f:09:b3:25:
d7:b9:00:fb:be:b9:b0:fd:55:25:54:62:10:25:43:
51:39:87:c6:24:06:bc:a8:be:40:c5:42:f8:e6:eb:
f9:dd:4a:b4:62:68:bd:cb:da:5c:1a:34:a3:2c:d0:
9b:3a:04:50:6c:5d:65:af:25:28:78:e6:26:41:dd:
d9:f8:a5:10:93:8f:6e:72:20:a1:80:3d:dd:92:ba:
89:86:14:5d:54:5f:80:ce:38:06:03:7f:47:ac:68:
32:d2:df:ca:3e:19:89:55:68:b4:8a:1b:ba:66:24:
54:f7:b0:a7:d6:61:0c:f8:70:58:cc:ff:46:a7:f5:
c8:83:24:4b:b8:38:3f:ea:d4:08:f0:4a:ed:ff:7a:
a0:ac:19:b7:42:a0:f0:d7:39:2e:44:50:b3:06:b4:
13:b7:7d:7d:81:6a:5b:44:2f:df:97:6d:3b:f6:bc:
a8:f3:40:5e:e2:33:b3:6f:8c:81:b0:c4:af:b0:a1:
16:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:98:B8:7D:FD:A9:AA:44:FD:0B:00:31:59:F0:15:2B:D8:9B:F2:BF
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc3:f740::/43
2a0f:6284:4c00::/44
2a0f:6284:4c50::-2a0f:6284:4c9f:ffff:ffff:ffff:ffff:ffff
2a0f:6284:4cd0::/44
Signature Algorithm: sha256WithRSAEncryption
1d:72:21:bd:37:f4:f2:2a:75:8b:8c:25:ee:9e:a2:63:7f:af:
42:5a:78:62:a2:92:00:37:2f:b0:f4:d0:e3:8a:9d:84:36:7c:
11:2d:9b:e7:6c:f8:5f:ae:69:f2:98:06:e3:9a:54:6c:32:65:
17:23:cf:75:03:5f:c7:79:4c:4f:aa:9b:55:ce:81:43:83:55:
1a:b4:46:64:a1:67:6d:78:fa:0d:44:b2:e0:8e:02:67:2c:a7:
2e:7d:99:c6:28:d9:35:31:55:de:6e:20:6f:43:fb:96:b9:a7:
c8:8b:e0:c7:2f:8e:26:6c:7b:83:74:fa:0c:e9:2e:19:5a:e1:
53:72:e6:21:3b:de:34:f6:8f:37:e0:71:1c:6a:e8:c6:8b:51:
d0:23:7e:17:ec:91:f3:80:e5:70:7f:a3:3f:e9:69:be:c5:e8:
3b:44:69:f7:67:be:c1:8d:c7:77:d1:88:e3:48:ac:b7:8a:ed:
89:da:e1:33:79:cc:5d:c4:e5:a1:5b:24:35:8b:28:c4:c7:2e:
0b:35:a9:f8:30:ae:d2:69:75:84:4e:b2:30:3a:66:09:19:a9:
38:32:e1:bb:6f:ed:c1:a1:e3:a4:ab:16:28:77:26:fd:68:c1:
74:83:5c:10:38:af:cc:e4:a3:73:49:28:e2:3d:7c:39:63:0a:
dc:e2:81:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 23 06:26:59 2026 by rpki-client