
Route Origin Authorization
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS31898.roa
File: AS31898.roa (raw, json)
Hash identifier: G5p8V3PthjVQf+Ayce89pP3Gr3qElqz4/gom0lX+TiI=
Subject key identifier: 7D:E6:8A:49:9B:0B:B3:1E:D7:68:71:AD:7D:3D:B5:09:94:37:A8:A7
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 4E5A714CC9C0D574E15FB3FE358995A3A9D38610
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa
Signing time: Sun 28 Jun 2026 18:56:50 +0000
ROA not before: Sun 28 Jun 2026 18:51:50 +0000
ROA not after: Sun 27 Jun 2027 18:56:50 +0000
asID: 31898
IP address blocks: 2a05:dfc3:f6ce::/48 maxlen: 48
2a05:dfc3:f760::/44 maxlen: 48
2a0a:6044:6d00::/48 maxlen: 48
2a0f:6282:210a::/48 maxlen: 48
2a0f:6282:210b::/48 maxlen: 48
2a0f:6284:4c10::/44 maxlen: 48
2a0f:6284:4c20::/44 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:5a:71:4c:c9:c0:d5:74:e1:5f:b3:fe:35:89:95:a3:a9:d3:86:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Jun 28 18:51:50 2026 GMT
Not After : Jun 27 18:56:50 2027 GMT
Subject: CN=7DE68A499B0BB31ED76871AD7D3DB5099437A8A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7a:cb:08:b4:d0:ac:ca:1b:df:2e:ea:fe:51:
fa:23:45:6b:5c:76:12:6e:10:db:fa:02:5d:07:e1:
14:6e:3b:ad:e4:2f:98:d5:d8:6e:fd:42:b1:52:a2:
c2:8b:cc:86:3f:5f:27:12:19:2b:ac:6b:cc:fa:4c:
2b:2a:f7:86:ec:00:54:73:a4:56:55:5c:d2:99:9c:
49:b0:24:23:0e:58:fe:c3:5b:dd:13:2c:07:f1:7f:
01:c5:88:83:90:47:7d:bb:e5:bd:1a:15:5d:a5:26:
b8:7b:cf:29:06:3f:cc:65:15:5b:e0:d7:87:a1:6c:
8f:bf:24:1f:ad:db:38:d8:df:a8:49:e6:26:72:2a:
7b:a9:da:c4:e4:d2:6e:e6:0a:a9:6f:92:a0:81:25:
95:14:b1:04:af:66:79:7a:c0:7b:6d:f1:c1:4f:9a:
82:5a:20:bd:83:33:01:70:42:84:36:3f:72:6d:02:
b2:2b:8e:2d:97:d5:88:6b:b7:2f:6f:9c:95:db:3e:
1d:42:c9:40:78:e4:b1:3c:2e:7c:12:c6:02:2f:19:
57:00:17:a7:b1:d3:5c:bf:61:17:05:e1:43:d2:61:
88:ce:68:78:8d:47:c9:53:1d:58:dd:8d:e6:d9:09:
84:d6:24:42:a2:78:61:e5:f9:e0:fb:be:a6:f1:17:
8d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E6:8A:49:9B:0B:B3:1E:D7:68:71:AD:7D:3D:B5:09:94:37:A8:A7
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc3:f6ce::/48
2a05:dfc3:f760::/44
2a0a:6044:6d00::/48
2a0f:6282:210a::/47
2a0f:6284:4c10::-2a0f:6284:4c2f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2c:f1:5c:e1:16:f7:24:0b:5d:32:dd:d9:9d:64:64:cd:57:a1:
a5:df:0c:63:6d:62:56:a3:30:d9:8f:3c:cf:09:ce:1a:27:07:
0e:25:e5:bd:c0:a7:a9:9e:6e:ac:72:2f:bb:e8:ae:9c:b2:53:
70:ea:46:48:5c:51:9d:e1:0a:74:dd:1f:4f:7f:52:8b:4c:05:
f6:22:31:8a:bd:b3:9b:ed:25:1e:b6:2c:fa:96:a9:2f:23:6a:
32:fc:df:8c:1d:42:b9:1d:51:77:6d:b4:5b:7e:88:dc:5d:a1:
ae:7e:3b:11:be:e3:46:94:33:a0:9f:e1:ac:6d:2a:e9:94:c7:
3f:d8:8d:5e:74:77:6e:d7:02:84:31:46:c6:31:d2:f0:6a:df:
ae:49:dd:5e:bd:12:7c:27:48:9f:6e:f2:00:d4:29:86:49:9f:
f8:9a:ef:76:65:90:39:bb:9a:c1:b8:f9:dc:97:14:d4:42:c2:
3b:c2:2a:3f:7c:71:ef:5c:de:1e:9f:07:2a:6f:e1:61:73:47:
97:3b:1d:9b:99:f3:05:48:1f:fd:6c:f8:a3:6f:b9:fa:fc:14:
3c:f1:65:28:e1:dd:40:3e:fb:13:73:78:b5:6f:b9:2c:a2:6c:
e7:af:b3:47:34:fc:cc:2e:3d:b7:12:dd:b6:a1:5e:6a:5e:b3:
07:58:da:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:13:40 2026 by rpki-client