Route Origin Authorization
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207113.roa
File: AS207113.roa (raw, json)
Hash identifier: 9xfI0Ip5rzdIFxijPph184k969jCt+q9IPqmYiSHM6c=
Subject key identifier: CB:C6:37:F9:34:DB:F5:8F:2A:A6:27:F0:DA:94:B4:0A:C7:E9:03:FC
Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Certificate serial: 4753EEFDBE47A942F1F7C945FBE1C8097A2F0F03
Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa
Signing time: Sun 22 Feb 2026 10:12:20 +0000
ROA not before: Sun 22 Feb 2026 10:07:20 +0000
ROA not after: Sun 21 Feb 2027 10:12:20 +0000
asID: 207113
IP address blocks: 2a06:1281::/44 maxlen: 48
2a06:1281::/48 maxlen: 48
2a06:1281:1::/48 maxlen: 48
2a0f:6284:100::/40 maxlen: 40
2a0f:6284:100::/44 maxlen: 44
2a0f:6284:100::/48 maxlen: 48
2a0f:6284:101::/48 maxlen: 48
2a0f:6284:102::/48 maxlen: 48
2a0f:6284:150::/44 maxlen: 44
2a0f:6284:150::/48 maxlen: 48
2a0f:6284:151::/48 maxlen: 48
2a0f:6284:152::/48 maxlen: 48
2a0f:6284:160::/44 maxlen: 44
2a0f:6284:160::/48 maxlen: 48
2a0f:6284:161::/48 maxlen: 48
2a0f:6284:162::/48 maxlen: 48
2a0f:6284:180::/44 maxlen: 44
2a0f:6284:180::/48 maxlen: 48
2a0f:6284:181::/48 maxlen: 48
2a0f:6284:182::/48 maxlen: 48
2a0f:6284:190::/44 maxlen: 44
2a0f:6284:190::/48 maxlen: 48
2a0f:6284:191::/48 maxlen: 48
2a0f:6284:192::/48 maxlen: 48
2a0f:6284:1a0::/44 maxlen: 44
2a0f:6284:1a0::/48 maxlen: 48
2a0f:6284:1a1::/48 maxlen: 48
2a0f:6284:1a2::/48 maxlen: 48
2a0f:6284:4200::/44 maxlen: 48
2a0f:6284:420f::/48 maxlen: 48
Validation: OK
Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:53:ee:fd:be:47:a9:42:f1:f7:c9:45:fb:e1:c8:09:7a:2f:0f:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7
Validity
Not Before: Feb 22 10:07:20 2026 GMT
Not After : Feb 21 10:12:20 2027 GMT
Subject: CN=CBC637F934DBF58F2AA627F0DA94B40AC7E903FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:11:0e:f7:43:f4:98:bc:1c:d9:fc:fd:58:80:
37:43:e5:b6:11:be:41:23:e3:2f:dc:9b:7e:ed:ad:
5b:9e:c2:52:2c:9f:1b:23:23:a5:fc:90:fe:d5:aa:
d7:f0:a8:30:85:a1:aa:65:c9:a1:cc:09:46:2d:af:
86:fa:4f:71:91:21:d1:17:b8:d5:46:2a:e9:d6:aa:
22:15:7b:32:e2:c0:46:d6:d7:36:70:91:cf:59:0b:
9d:7a:71:88:2d:e2:27:c3:3a:dc:82:d2:87:af:fc:
15:52:8d:28:14:c1:08:0a:13:3b:0a:e4:4a:1d:02:
ef:ee:9c:aa:36:38:27:6e:f8:16:f0:db:ef:f8:69:
12:d4:6a:45:1c:7e:26:3a:12:66:26:a8:ca:ee:54:
7b:bf:b0:39:e0:5f:d5:1e:2e:d9:01:03:c0:31:4c:
9b:17:63:46:ae:4b:98:72:24:67:8a:39:25:0d:5b:
13:e5:7f:66:82:49:e0:14:59:b7:5c:09:98:b1:78:
75:22:c8:59:b6:a5:50:a1:3d:13:ec:25:46:ee:ff:
47:87:e8:58:7e:d1:50:f2:02:ea:01:3b:70:97:96:
ee:54:7a:97:b3:6a:de:96:2b:8b:45:f9:6f:79:5d:
6c:3d:96:cc:18:ec:15:0d:dd:90:bd:b3:19:82:b9:
74:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C6:37:F9:34:DB:F5:8F:2A:A6:27:F0:DA:94:B4:0A:C7:E9:03:FC
X509v3 Authority Key Identifier:
keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer
Subject Information Access:
Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1281::/44
2a0f:6284:100::/40
2a0f:6284:4200::/44
Signature Algorithm: sha256WithRSAEncryption
51:2f:70:61:d9:5c:ab:33:d9:d1:7f:49:ff:4f:9c:08:9d:06:
b3:e7:dc:8b:e2:ba:05:15:fa:a9:c9:83:e7:ea:b4:14:c5:7f:
50:7d:60:4b:97:ef:33:a3:82:57:10:be:22:49:9d:e0:67:18:
3a:66:12:18:85:a3:e6:02:6b:81:18:e5:43:61:aa:2f:4d:03:
6f:29:85:6d:8f:6f:9f:45:b4:34:52:8d:54:71:21:2e:97:3f:
48:cc:70:c6:66:d1:90:40:a0:89:1c:9c:a9:5b:62:f1:5b:6d:
66:86:53:c1:9f:a5:36:97:55:cc:1d:d2:74:05:e2:87:8e:b4:
2a:9f:64:57:cf:59:7c:c2:44:7a:97:f0:83:86:e3:e6:59:ea:
36:5d:60:5e:96:f1:6d:a7:a3:36:02:30:aa:b3:5d:b7:ef:a4:
2b:f7:14:17:49:c1:ae:d1:2f:b8:71:f8:08:14:a5:5f:9e:e3:
fa:a7:01:4d:58:29:d9:31:cb:96:26:f3:1f:8b:31:60:cb:b4:
82:1a:c4:ef:79:7c:5e:45:ac:17:01:2a:08:00:4d:96:02:e4:
6d:4f:65:ea:a7:67:52:af:68:b8:e8:cf:df:10:ce:d8:1d:f1:
50:b4:92:da:4b:11:20:7d:20:70:7e:5e:f1:c8:ff:41:d2:78:
1b:68:bc:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:12:44 2026 by rpki-client