Route Origin Authorization
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa
File: AS213864.roa (raw, json)
Hash identifier: 5VzyAwb3cXF6UEy1bQIJxhbegLZfX5iIppZEJRopfY4=
Subject key identifier: E4:42:8A:9B:82:06:9B:0F:70:2A:43:B6:F9:B5:A6:D4:76:45:DA:50
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 1D0D53D1457BCA8C4CAB73377DE845DA168E508A
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa
Signing time: Thu 04 Jun 2026 04:32:10 +0000
ROA not before: Thu 04 Jun 2026 04:27:10 +0000
ROA not after: Thu 03 Jun 2027 04:32:10 +0000
asID: 213864
IP address blocks: 2a05:dfc2::/32 maxlen: 32
2a09:54c4::/32 maxlen: 32
2a09:54c5::/36 maxlen: 36
2a0f:6282:9000::/36 maxlen: 36
2a0f:6283:9000::/36 maxlen: 36
2a0f:6283:a000::/36 maxlen: 36
2a0f:6284:5000::/36 maxlen: 36
2a0f:6285::/32 maxlen: 32
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 04:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:0d:53:d1:45:7b:ca:8c:4c:ab:73:37:7d:e8:45:da:16:8e:50:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Jun 4 04:27:10 2026 GMT
Not After : Jun 3 04:32:10 2027 GMT
Subject: CN=E4428A9B82069B0F702A43B6F9B5A6D47645DA50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ad:01:82:97:70:6a:9a:34:f8:cf:44:15:77:
ae:e3:de:65:79:0e:e0:1c:9e:a1:3e:d4:88:63:2f:
6c:b8:76:ae:9d:15:47:4b:dc:bf:54:31:39:66:57:
19:b4:39:98:2d:1e:d0:ed:48:2c:21:0a:48:6b:cc:
64:44:8d:88:3c:f1:3d:08:d2:3c:87:38:9e:48:c7:
df:a5:26:ad:f1:c0:36:56:d5:76:24:f6:09:35:c6:
a0:e3:6d:2d:6c:78:09:f6:c0:4b:10:22:92:e2:fd:
9d:a9:7d:b7:18:42:2a:27:b9:b5:3c:b0:37:b3:24:
05:93:8c:db:8f:0f:a7:aa:0d:20:86:1a:12:2d:19:
84:c0:53:3e:b0:1f:d7:fe:0f:14:4a:a3:d8:c4:7c:
cc:1d:f4:b2:35:fc:88:a5:93:da:5c:65:00:7e:9e:
82:1c:70:d9:1b:b5:73:e1:9d:e6:8e:82:01:7a:2c:
4c:c1:7c:a3:52:70:ce:fe:71:cb:19:ee:2e:59:49:
c7:1e:39:58:5c:7e:1b:2d:ef:11:07:35:f6:8f:e1:
56:16:71:d2:7b:5f:71:85:f9:11:3b:8c:25:f0:41:
1d:00:ad:66:b3:ac:8e:e3:0f:24:00:04:98:ef:ff:
5f:0b:a2:a1:8d:02:a5:f9:ad:d4:95:f4:db:9e:f7:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:42:8A:9B:82:06:9B:0F:70:2A:43:B6:F9:B5:A6:D4:76:45:DA:50
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc2::/32
2a09:54c4::-2a09:54c5:fff:ffff:ffff:ffff:ffff:ffff
2a0f:6282:9000::/36
2a0f:6283:9000::-2a0f:6283:afff:ffff:ffff:ffff:ffff:ffff
2a0f:6284:5000::/36
2a0f:6285::/32
Signature Algorithm: sha256WithRSAEncryption
67:95:41:a8:e4:d4:b2:1a:e2:b4:08:4c:23:88:41:11:ea:fa:
21:ef:6d:90:e5:4d:b9:62:72:1a:29:c8:65:44:5a:ac:ac:dc:
cf:4e:58:76:78:00:88:7a:d5:25:1f:18:58:fc:a3:75:43:91:
f3:6d:7c:88:a4:bf:55:59:20:1c:f3:28:b5:a5:f2:67:4b:12:
c0:7b:ac:06:a6:f1:67:a1:eb:c2:8d:22:e7:5e:bd:ee:ff:9c:
20:75:4b:09:f3:9f:dd:b9:f2:c9:36:92:ad:22:f6:98:7b:a0:
ea:5b:dd:a8:74:e5:f5:00:2b:e2:65:14:e6:54:ad:0c:83:2b:
7f:f5:6a:18:31:65:49:98:15:ac:b9:14:da:f8:d2:7f:f4:ab:
e3:bd:80:7c:22:c8:b0:7d:6e:c5:c4:92:cb:9b:86:ae:bd:70:
66:fc:99:78:e4:11:b9:92:bb:79:19:0f:47:9f:45:58:21:90:
9b:0c:94:27:71:84:b9:56:63:91:23:35:a1:34:3b:3f:a5:9b:
66:45:bd:03:4b:12:9d:ab:ee:60:2b:92:be:58:97:49:c5:60:
d4:2a:6f:61:09:80:68:55:e5:d4:66:70:9e:74:78:d7:29:8c:
96:e0:b3:f5:60:a3:89:ee:9a:ba:ae:a9:7e:fc:85:79:f7:28:
fe:31:b6:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 15:07:42 2026 by rpki-client