
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS201423.roa
File: AS201423.roa (raw, json)
Hash identifier: lMxPtCJsFyqlxpZCWX9hzK2DeurCmuwDV8fCVJK6G+8=
Subject key identifier: 1C:30:2E:10:B1:CB:6D:A0:B1:73:BF:CD:A4:99:18:56:53:F2:03:2E
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 5ACBDF3EA36DB2C65405871F78FBC41FC0C65D43
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS201423.roa
Signing time: Sun 28 Jun 2026 18:56:09 +0000
ROA not before: Sun 28 Jun 2026 18:51:09 +0000
ROA not after: Sun 27 Jun 2027 18:56:09 +0000
asID: 201423
IP address blocks: 2a0f:6284:b::/48 maxlen: 48
2a0f:6284:c::/48 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:cb:df:3e:a3:6d:b2:c6:54:05:87:1f:78:fb:c4:1f:c0:c6:5d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Jun 28 18:51:09 2026 GMT
Not After : Jun 27 18:56:09 2027 GMT
Subject: CN=1C302E10B1CB6DA0B173BFCDA499185653F2032E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4a:0f:90:dd:aa:43:45:57:c9:bb:2a:3b:3b:
bc:42:90:e2:29:07:e9:92:0c:c5:ec:de:4d:d9:31:
45:46:d5:5c:80:8c:3a:c0:1a:2c:0c:76:05:b3:cd:
43:22:84:49:a4:2d:9a:a4:53:41:73:cb:89:2d:00:
da:71:76:01:c8:af:a8:1a:4c:70:ba:bb:24:a9:aa:
64:1f:33:9c:ba:3d:4e:a9:be:da:69:e8:b6:eb:b1:
40:67:fa:76:ef:65:20:74:a8:49:0c:23:92:1a:e5:
75:1f:7d:06:b2:bb:15:c5:c6:72:84:b1:dd:ed:58:
8f:bc:c6:ba:c9:3c:7c:dc:f6:d8:85:c1:c9:17:b9:
2d:5f:1a:e2:79:7f:4f:0e:69:ce:35:60:4a:07:37:
62:6b:e7:f4:04:6b:85:d0:d5:d0:ef:c4:7d:4a:e1:
eb:0d:5c:6d:08:25:af:52:88:72:42:e7:c7:ba:af:
7e:78:5d:9d:b2:9f:c5:90:e4:f4:a8:37:32:95:21:
21:8c:7d:97:9b:23:38:1c:44:9a:4b:17:97:e4:45:
18:34:3a:64:24:56:8a:97:d8:3a:d7:ed:30:71:83:
bb:ea:c7:5c:e9:0f:d5:51:d4:32:07:ae:71:bf:7f:
56:a3:07:d1:e5:01:e7:94:82:94:6a:55:8e:4f:fc:
49:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:30:2E:10:B1:CB:6D:A0:B1:73:BF:CD:A4:99:18:56:53:F2:03:2E
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS201423.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6284:b::-2a0f:6284:c:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8a:61:c4:33:97:a9:d6:e5:b9:34:62:3a:9b:0e:71:01:87:d7:
44:13:4c:ee:0c:ad:3f:e9:02:40:7f:75:46:23:c6:05:b0:03:
20:0c:6e:f3:65:77:08:b9:28:36:4a:36:e1:4f:49:0d:2a:db:
2a:5a:89:b1:e5:f3:ae:59:e7:8f:68:87:e6:7c:17:16:9d:0f:
0e:d5:84:61:97:44:41:1a:1d:ab:f3:e7:5b:39:05:77:66:31:
b9:7d:35:98:8a:ca:34:6d:f2:a3:d2:90:00:11:c3:d3:26:89:
a0:08:be:66:b1:75:93:f3:67:33:28:0e:76:13:20:4d:23:fc:
65:58:b1:aa:32:28:7c:b2:4c:23:78:cc:79:11:0f:74:00:9b:
f6:10:d0:4e:b6:95:c2:a6:ce:a4:b3:fb:8c:a9:b3:70:65:93:
ba:f3:43:ed:f3:d9:71:92:af:5d:39:9d:2e:ea:9c:30:93:09:
8e:64:58:a3:29:65:b2:b3:1c:28:cc:be:01:1c:f1:89:87:85:
98:75:eb:f6:61:13:3d:d6:a7:13:23:2b:9b:a3:c0:c0:57:f7:
cd:17:c7:bd:fc:fe:58:e9:7d:0a:0f:16:11:41:ad:dc:a0:12:
07:ba:5d:69:0d:88:fb:4d:2e:b0:89:ed:90:4d:93:ed:36:5c:
e9:31:6f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:11:32 2026 by rpki-client