Route Origin Authorization
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS205378.roa
File: AS205378.roa (raw, json)
Hash identifier: 9X3zq8aEgyyCqBAr4jsLduNVSxi6bPsZAuxI+Ek9TA0=
Subject key identifier: DA:64:67:06:E6:48:02:D1:EF:2E:1E:3C:6D:86:F5:A3:B8:B9:71:B6
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 75341A69F83742E6CA1464F762D11B82187EE4F8
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS205378.roa
Signing time: Sat 20 Sep 2025 17:08:28 +0000
ROA not before: Sat 20 Sep 2025 17:03:28 +0000
ROA not after: Sat 19 Sep 2026 17:08:28 +0000
asID: 205378
IP address blocks: 2a0f:6284:46a0::/48 maxlen: 48
2a0f:6284:46a1::/48 maxlen: 48
2a0f:6284:46b0::/48 maxlen: 48
2a0f:6284:46b1::/48 maxlen: 48
2a0f:6284:46ba::/48 maxlen: 48
2a0f:6284:46e0::/48 maxlen: 48
2a0f:6284:46ea::/48 maxlen: 48
2a0f:6284:46f0::/48 maxlen: 48
2a0f:6284:46ff::/48 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 13:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:34:1a:69:f8:37:42:e6:ca:14:64:f7:62:d1:1b:82:18:7e:e4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Sep 20 17:03:28 2025 GMT
Not After : Sep 19 17:08:28 2026 GMT
Subject: CN=DA646706E64802D1EF2E1E3C6D86F5A3B8B971B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e9:a3:5d:4a:24:a2:24:e8:8e:b8:0a:0f:c4:
f2:8c:9f:e3:96:ff:ea:e5:7c:16:37:92:17:cf:5a:
4b:9c:0f:67:71:b0:68:ee:71:57:2f:a3:a2:07:73:
0c:93:5e:bc:92:b5:22:97:fd:e9:af:98:05:47:d1:
00:1b:4a:04:4e:89:f8:06:78:7f:15:90:d0:82:53:
41:7e:cc:92:11:88:1e:e9:d5:4c:fe:fd:a2:dd:b1:
0b:1c:a7:60:4c:f7:6e:a1:f4:bc:b1:6d:65:60:90:
ec:13:c7:e4:68:37:4a:4b:ff:ea:3f:fa:b9:ae:4d:
56:db:5e:42:19:b0:7a:2e:cf:00:db:32:54:c9:0b:
43:d6:a6:ab:65:34:b3:d6:ca:80:55:39:30:b9:57:
2f:8f:9f:11:34:3b:a1:7a:52:cd:2b:33:49:59:a1:
7a:3e:51:e3:d5:3f:ed:fc:d4:1d:58:12:5e:38:6f:
1c:ee:0a:59:5c:97:84:b3:2a:bc:64:7e:7b:f3:d5:
e4:8d:cd:ce:18:72:71:75:d2:3d:3c:3c:ac:08:b7:
98:63:29:c7:2a:e0:80:e9:2b:9a:12:12:81:34:97:
07:98:29:f1:39:ca:60:1d:b0:61:d5:5f:4a:69:a6:
78:b3:1c:14:06:9f:38:4c:60:e9:f6:af:14:da:09:
34:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:64:67:06:E6:48:02:D1:EF:2E:1E:3C:6D:86:F5:A3:B8:B9:71:B6
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS205378.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6284:46a0::/47
2a0f:6284:46b0::/47
2a0f:6284:46ba::/48
2a0f:6284:46e0::/48
2a0f:6284:46ea::/48
2a0f:6284:46f0::/48
2a0f:6284:46ff::/48
Signature Algorithm: sha256WithRSAEncryption
62:28:6a:91:29:52:f8:69:17:1d:27:9d:64:12:34:32:4e:0c:
0f:d2:57:32:2c:76:6c:43:d2:cf:9a:61:dd:9b:0f:22:58:3b:
f9:54:4c:03:84:66:99:1d:e0:e4:66:4c:fd:81:94:49:21:7b:
1f:a5:8f:16:2b:8f:0a:35:3e:fd:76:15:78:50:e0:b3:94:74:
ed:6b:22:1d:0e:16:77:9c:92:3a:0d:fe:27:d7:06:a0:bb:bb:
f6:8e:20:7d:8a:9d:34:15:96:23:39:e8:af:8e:0d:ba:1c:1f:
b3:04:ca:09:04:be:0d:bf:84:6d:38:d3:75:9d:9d:89:82:29:
d6:2d:99:e6:bc:c2:5f:e9:da:2d:62:b2:c3:01:85:00:74:13:
67:f5:39:21:32:5a:e1:20:32:4d:d2:8a:68:9d:05:9b:1a:4f:
28:3a:c7:3f:68:50:f0:7d:40:25:8c:0e:f9:c6:77:a6:80:11:
aa:f0:55:f9:51:45:14:0f:2e:68:f7:4f:12:cc:c8:ac:df:17:
96:76:ae:e9:6f:4b:6e:54:9c:1d:aa:e2:85:f4:3c:ce:78:1d:
e9:db:ad:62:31:5c:a7:0e:df:4f:cf:38:e2:72:4f:2b:21:e1:
71:fa:c0:36:52:ca:cf:35:ce:65:03:9f:49:d9:c3:f0:d1:83:
21:08:f9:da
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIUdTQaafg3QubKFGT3YtEbghh+5PgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2
OTk1MUZENzAeFw0yNTA5MjAxNzAzMjhaFw0yNjA5MTkxNzA4MjhaMDMxMTAvBgNV
BAMTKERBNjQ2NzA2RTY0ODAyRDFFRjJFMUUzQzZEODZGNUEzQjhCOTcxQjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq6aNdSiSiJOiOuAoPxPKMn+OW
/+rlfBY3khfPWkucD2dxsGjucVcvo6IHcwyTXryStSKX/emvmAVH0QAbSgROifgG
eH8VkNCCU0F+zJIRiB7p1Uz+/aLdsQscp2BM926h9LyxbWVgkOwTx+RoN0pL/+o/
+rmuTVbbXkIZsHouzwDbMlTJC0PWpqtlNLPWyoBVOTC5Vy+PnxE0O6F6Us0rM0lZ
oXo+UePVP+381B1YEl44bxzuCllcl4SzKrxkfnvz1eSNzc4YcnF10j08PKwIt5hj
Kccq4IDpK5oSEoE0lweYKfE5ymAdsGHVX0pppnizHBQGnzhMYOn2rxTaCTRfAgMB
AAGjggIVMIICETAdBgNVHQ4EFgQU2mRnBuZIAtHvLh48bYb1o7i5cbYwHwYDVR0j
BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud
HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T
VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js
MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y
cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5
MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG
RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls
bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDUzNzgucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwWAYIKwYBBQUHAQcBAf8ESTBHMEUEAgACMD8DBwEq
D2KERqADBwEqD2KERrADBwAqD2KERroDBwAqD2KERuADBwAqD2KERuoDBwAqD2KE
RvADBwAqD2KERv8wDQYJKoZIhvcNAQELBQADggEBAGIoapEpUvhpFx0nnWQSNDJO
DA/SVzIsdmxD0s+aYd2bDyJYO/lUTAOEZpkd4ORmTP2BlEkhex+ljxYrjwo1Pv12
FXhQ4LOUdO1rIh0OFneckjoN/ifXBqC7u/aOIH2KnTQVliM56K+ODbocH7MEygkE
vg2/hG0403WdnYmCKdYtmea8wl/p2i1issMBhQB0E2f1OSEyWuEgMk3SimidBZsa
Tyg6xz9oUPB9QCWMDvnGd6aAEarwVflRRRQPLmj3TxLMyKzfF5Z2rulvS25UnB2q
4oX0PM54HenbrWIxXKcO30/POOJyTysh4XH6wDZSys81zmUDn0nZw/DRgyEI+do=
-----END CERTIFICATE-----
Generated at Wed Oct 8 17:36:23 2025 by rpki-client