
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213535.roa
File: AS213535.roa (raw, json)
Hash identifier: wkKgLuV6dMvj5Dgdxz2OKt9KxKhVae8roATONb6rKFM=
Subject key identifier: 42:D1:FC:7E:46:77:76:E9:2B:7E:AB:EF:F7:31:53:87:EF:20:33:AE
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 578005163504E02CAD87B1D2E43A7452A9DA47C5
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213535.roa
Signing time: Sun 28 Jun 2026 18:58:17 +0000
ROA not before: Sun 28 Jun 2026 18:53:17 +0000
ROA not after: Sun 27 Jun 2027 18:58:17 +0000
asID: 213535
IP address blocks: 2a0f:6284:50::/48 maxlen: 48
2a0f:6284:60::/44 maxlen: 44
2a0f:6284:60::/48 maxlen: 48
2a0f:6284:61::/48 maxlen: 48
2a0f:6284:62::/48 maxlen: 48
2a0f:6284:63::/48 maxlen: 48
2a0f:6284:64::/48 maxlen: 48
2a0f:6284:67::/48 maxlen: 48
2a0f:6284:68::/48 maxlen: 48
2a0f:6284:69::/48 maxlen: 48
2a0f:6284:6a::/48 maxlen: 48
2a0f:6284:6b::/48 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:80:05:16:35:04:e0:2c:ad:87:b1:d2:e4:3a:74:52:a9:da:47:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Jun 28 18:53:17 2026 GMT
Not After : Jun 27 18:58:17 2027 GMT
Subject: CN=42D1FC7E467776E92B7EABEFF7315387EF2033AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:16:ae:ec:85:dc:2d:f7:a3:f4:73:71:88:9d:
c6:0e:d7:6f:0c:21:a5:ea:40:97:56:df:b2:23:15:
f0:61:29:86:e8:a7:ba:e5:ea:a7:80:64:54:6b:33:
46:f5:31:af:02:9e:3a:4a:fa:f6:47:6e:49:a3:b2:
11:a4:07:f2:02:14:01:ba:c8:aa:25:b9:8b:81:3a:
b0:3d:87:f2:ae:70:64:e9:af:ad:fc:a5:64:bc:7c:
b7:ea:f6:97:c6:38:c0:4e:c7:3a:a1:e1:0e:fd:74:
cc:bd:2c:97:d4:f9:10:76:23:26:3f:de:34:43:59:
15:e9:3a:40:53:4a:6a:27:ef:1d:e5:8b:a9:8e:32:
87:3d:f2:3e:42:6e:7c:39:f2:a3:82:64:16:4a:b2:
2b:c5:d6:81:d2:01:0a:9f:52:da:25:7f:36:79:2d:
14:f6:26:42:95:dc:a7:43:96:d0:5c:8b:e8:f4:4c:
47:0a:b0:7b:72:7f:d8:eb:dc:07:3b:36:42:27:97:
90:8a:88:a8:26:0f:68:e8:12:7b:3f:7f:ec:e3:b4:
61:8d:ff:1b:7b:93:3f:14:22:7b:54:08:d7:c8:d5:
dd:f7:77:55:0b:af:22:c8:60:25:64:9b:23:78:e5:
40:52:00:b6:35:04:81:b2:1d:0b:17:87:3a:14:87:
d3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D1:FC:7E:46:77:76:E9:2B:7E:AB:EF:F7:31:53:87:EF:20:33:AE
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6284:50::/48
2a0f:6284:60::/44
Signature Algorithm: sha256WithRSAEncryption
7d:17:43:85:5b:e1:4d:34:a9:1c:06:57:58:85:3e:c5:00:1c:
49:8c:c4:e1:ab:d0:6f:95:75:e2:e6:61:36:07:00:fd:9a:38:
ea:d0:7b:34:6a:d7:06:f2:a7:2b:01:ad:5c:22:fb:57:45:bc:
ac:a1:af:36:80:21:58:9c:f1:ba:5e:e2:f5:64:64:e6:d7:ff:
dc:52:60:5a:f0:a6:b0:77:5b:ec:73:b0:cf:b7:1a:fb:28:6c:
20:30:aa:09:7f:f4:d6:bd:c6:ae:b9:23:82:f3:b5:7e:7c:94:
95:b0:66:3c:1f:13:21:92:4e:39:19:52:21:ae:ed:d8:ef:81:
6a:f8:99:41:e4:7c:a8:62:51:59:d4:91:bd:1b:9f:90:90:ff:
e1:4c:e7:b7:55:68:30:f8:c5:23:e3:60:dd:bd:e6:65:8e:fc:
c7:ab:bf:3b:f0:7c:45:4e:40:87:29:25:30:fa:fc:f3:d1:89:
c6:4b:85:b2:ed:15:4b:cc:ef:b2:e0:81:bb:56:3d:5c:41:25:
24:c9:7c:e5:e6:fb:bc:13:15:3c:ba:da:fc:24:63:a7:7f:72:
49:55:e4:f8:a5:41:41:ce:5c:b4:7a:f1:a9:19:a8:e7:81:79:
81:1c:2d:76:ef:9f:ef:a6:8d:ed:65:26:b2:2c:eb:0f:f7:94:
89:41:fc:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:11:33 2026 by rpki-client