
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS206987.roa
File: AS206987.roa (raw, json)
Hash identifier: jy5Py6hmxg7gL/j8zve4KFkmgj63c+XqoND4mNRgB6c=
Subject key identifier: 3B:69:D4:B8:80:79:2A:22:00:93:FA:FF:7B:29:66:92:FA:1F:C5:83
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 4A53E02BD8EE342E567B290B71ACC1F811DB57B0
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS206987.roa
Signing time: Sun 28 Jun 2026 18:56:09 +0000
ROA not before: Sun 28 Jun 2026 18:51:09 +0000
ROA not after: Sun 27 Jun 2027 18:56:09 +0000
asID: 206987
IP address blocks: 2a0f:6283:1100::/48 maxlen: 48
2a0f:6284:4212::/48 maxlen: 48
2a0f:6284:4216::/48 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:53:e0:2b:d8:ee:34:2e:56:7b:29:0b:71:ac:c1:f8:11:db:57:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Jun 28 18:51:09 2026 GMT
Not After : Jun 27 18:56:09 2027 GMT
Subject: CN=3B69D4B880792A220093FAFF7B296692FA1FC583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5f:6c:42:a2:5f:57:07:5b:f8:1d:75:a4:66:
ae:b5:bc:f0:8e:7b:69:82:36:fd:25:99:47:ba:b2:
a7:1c:67:69:30:4d:e7:e6:2e:bb:ab:6e:20:01:0f:
92:c2:b2:3b:ac:f1:f2:f3:69:87:12:4e:62:7c:8b:
22:5b:af:2b:60:55:b3:07:96:1b:ba:c9:a0:d0:d0:
5c:17:04:49:62:e5:f5:e2:dd:8f:dd:b7:36:9d:68:
f9:0d:51:db:62:96:61:ba:aa:70:33:57:99:ba:d9:
6a:fb:6b:77:20:4a:fa:43:a7:c7:43:5a:4f:95:72:
bb:97:90:e4:87:21:8a:bd:b9:90:13:f7:2a:d5:bd:
23:21:03:14:3a:cb:88:5a:01:ad:66:1b:0e:01:96:
0f:de:f0:1c:b0:3a:89:83:f2:14:68:31:db:16:0c:
71:0b:f4:da:5f:a9:fe:01:f0:ed:f2:df:16:23:88:
3a:55:ec:57:0d:c8:ec:aa:fb:cd:ca:dd:25:da:95:
1e:98:c8:9e:31:15:00:d5:28:84:bc:94:31:4b:ea:
0c:f3:48:39:b8:3a:d4:c6:67:9c:dd:9b:34:0d:47:
7f:65:f5:4b:01:5a:fe:30:90:1e:d4:c7:60:05:6b:
e1:22:6f:9a:55:6a:32:aa:9d:e9:ce:7d:cf:9b:87:
e4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:69:D4:B8:80:79:2A:22:00:93:FA:FF:7B:29:66:92:FA:1F:C5:83
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS206987.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6283:1100::/48
2a0f:6284:4212::/48
2a0f:6284:4216::/48
Signature Algorithm: sha256WithRSAEncryption
3f:5d:96:d2:49:20:a9:f9:0c:2f:90:8c:4a:09:03:89:12:e8:
84:1e:22:f5:37:4e:92:1a:3a:ac:da:57:a3:96:35:ed:7c:6b:
4b:b9:86:d3:b0:d1:50:e5:dc:1e:55:db:78:8e:33:86:45:c5:
3e:16:fd:ea:c7:cc:b8:de:43:89:7a:ff:ea:94:80:06:1c:ef:
17:8c:bf:ed:ca:f3:70:c6:85:ef:3b:65:b1:27:7f:34:2e:a2:
2d:1d:ca:20:44:e5:c4:1b:26:c7:e3:4d:64:93:44:4b:76:f7:
67:8a:ff:29:46:74:e1:5c:aa:02:d0:6e:31:85:9e:b1:9d:45:
e9:5c:61:28:1e:13:2c:57:43:0c:73:6a:62:25:39:e5:a4:88:
1a:a1:9e:29:73:16:d3:be:b0:27:ba:a3:cf:d5:85:ed:32:c6:
b6:b1:ea:66:c4:cf:22:22:7e:c7:71:1b:97:3d:44:76:94:c4:
0a:5d:e5:17:e2:08:0f:e7:19:2a:36:b8:56:a0:21:7b:7d:8a:
35:67:8e:92:15:2b:ef:d7:a7:d0:2a:0f:85:b9:5a:56:c2:e1:
27:cd:b5:56:35:41:78:48:42:33:5e:2a:30:5f:6e:10:95:fa:
cb:59:aa:af:3d:a8:ee:c1:c1:f4:66:e3:73:92:4f:2d:db:b3:
02:45:83:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:12:46 2026 by rpki-client