$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS198679.roa File: AS198679.roa (raw, json) Hash identifier: TaH6bTdfLb4bY++kwF5++YbhEskdmio1BhOWOqWPfdc= Subject key identifier: C3:A4:D2:51:F3:7A:1E:14:64:7F:B8:FF:01:AF:1C:16:13:43:9D:84 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 6F0A2C1617A650010901EE6477E47AFBF33DD81B Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS198679.roa Signing time: Thu 28 May 2026 15:16:02 +0000 ROA not before: Thu 28 May 2026 15:11:02 +0000 ROA not after: Thu 27 May 2027 15:16:02 +0000 asID: 198679 IP address blocks: 2a0f:6284:70::/44 maxlen: 44 2a0f:6284:70::/44 maxlen: 48 2a0f:6284:71::/48 maxlen: 48 2a0f:6284:72::/48 maxlen: 48 2a0f:6284:73::/48 maxlen: 48 2a0f:6284:74::/48 maxlen: 48 2a0f:6284:75::/48 maxlen: 48 2a0f:6284:77::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Jun 2026 22:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:0a:2c:16:17:a6:50:01:09:01:ee:64:77:e4:7a:fb:f3:3d:d8:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: May 28 15:11:02 2026 GMT Not After : May 27 15:16:02 2027 GMT Subject: CN=C3A4D251F37A1E14647FB8FF01AF1C1613439D84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:79:1c:c2:b4:45:18:d5:04:d4:25:f1:b7:33: d4:85:e8:db:1e:dd:81:6e:fe:0d:cd:cf:a0:7a:70: ac:9b:35:71:00:c1:5e:46:56:58:4c:cb:d3:11:2f: 7a:37:86:f0:1d:cc:cd:2f:2a:91:db:f8:b2:b3:52: 8b:f2:25:71:d6:3e:ed:85:42:8b:ab:b9:af:71:8b: b9:d7:1d:e0:20:f2:ca:00:0e:cb:c3:8a:db:00:79: 70:18:67:95:8e:ec:df:1d:cb:cb:5f:98:07:89:fb: 72:d0:ba:ee:24:0b:4f:7d:9c:f6:c4:e7:fe:dc:8c: 9e:a0:d9:c8:83:70:73:08:12:08:b1:40:36:0f:e9: 1e:4a:5e:45:b0:86:3a:90:a7:a5:f8:a4:3b:e8:f2: 8f:0e:a4:26:1e:5e:ff:ec:07:c6:81:4a:f4:29:7a: ab:dc:af:9c:2d:bc:65:fc:48:16:f8:77:fe:bc:48: a0:77:39:26:d2:ea:22:a0:16:5a:81:62:c9:76:8c: ef:75:f6:d2:86:92:6a:51:bd:f1:eb:08:4d:c7:18: aa:4a:35:be:22:fd:e0:76:04:1b:52:56:ba:e3:e7: d1:e3:58:2b:cc:7a:fa:d6:f4:ab:00:d5:27:1b:45: d2:a5:73:1d:08:24:a4:70:d6:0e:03:60:6d:4f:20: 86:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A4:D2:51:F3:7A:1E:14:64:7F:B8:FF:01:AF:1C:16:13:43:9D:84 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS198679.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284:70::/44 Signature Algorithm: sha256WithRSAEncryption 2b:67:e4:95:fa:ad:c2:f1:a8:4d:a7:57:f8:e8:6a:91:30:a7: d3:c1:28:ce:f2:44:a5:85:7a:2a:73:98:12:68:57:aa:e4:b9: 9f:89:aa:aa:27:2f:88:3a:28:d8:83:ab:d8:5b:4a:b4:a4:81: 73:ef:56:27:24:59:1b:16:63:25:d8:9e:29:12:c2:36:f6:81: 90:b2:fa:58:78:ad:db:58:a9:1b:78:40:14:66:36:24:1e:40: 43:16:b4:b4:a8:8a:8c:2f:7c:46:0b:f7:d2:f1:57:80:87:b3: 5f:f8:2d:02:ea:f2:d3:71:11:c4:9f:46:02:da:49:0c:f4:1b: 60:fe:0e:6c:5c:4f:54:f8:99:75:fb:14:d3:64:b5:62:da:be: 8c:86:af:9d:85:70:ea:53:31:3b:70:5f:6e:61:ed:eb:c4:d3: d1:82:f7:85:63:e5:27:a3:94:7a:cd:f3:7c:6d:5b:4b:1a:bf: 76:35:a6:17:b3:63:e8:ab:a8:dd:8d:ac:d5:03:d6:92:74:f8: 45:ea:4e:8a:cd:b7:a1:3d:e7:7b:5b:d5:fd:40:c7:95:ae:2e: e3:63:49:b5:9b:1f:b2:bd:51:ae:de:e3:ce:5b:17:b3:ed:c8: e8:36:a3:20:27:94:f9:f7:1d:ca:12:99:4f:46:05:a2:61:21: e3:9b:7c:0e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUbwosFhemUAEJAe5kd+R6+/M92BswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA1MjgxNTExMDJaFw0yNzA1MjcxNTE2MDJaMDMxMTAvBgNV BAMTKEMzQTREMjUxRjM3QTFFMTQ2NDdGQjhGRjAxQUYxQzE2MTM0MzlEODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+eRzCtEUY1QTUJfG3M9SF6Nse 3YFu/g3Nz6B6cKybNXEAwV5GVlhMy9MRL3o3hvAdzM0vKpHb+LKzUovyJXHWPu2F Qourua9xi7nXHeAg8soADsvDitsAeXAYZ5WO7N8dy8tfmAeJ+3LQuu4kC099nPbE 5/7cjJ6g2ciDcHMIEgixQDYP6R5KXkWwhjqQp6X4pDvo8o8OpCYeXv/sB8aBSvQp eqvcr5wtvGX8SBb4d/68SKB3OSbS6iKgFlqBYsl2jO919tKGkmpRvfHrCE3HGKpK Nb4i/eB2BBtSVrrj59HjWCvMevrW9KsA1ScbRdKlcx0IJKRw1g4DYG1PIIbnAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUw6TSUfN6HhRkf7j/Aa8cFhNDnYQwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMxOTg2Nzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQq D2KEAHAwDQYJKoZIhvcNAQELBQADggEBACtn5JX6rcLxqE2nV/joapEwp9PBKM7y RKWFeipzmBJoV6rkuZ+JqqonL4g6KNiDq9hbSrSkgXPvVickWRsWYyXYnikSwjb2 gZCy+lh4rdtYqRt4QBRmNiQeQEMWtLSoiowvfEYL99LxV4CHs1/4LQLq8tNxEcSf RgLaSQz0G2D+DmxcT1T4mXX7FNNktWLavoyGr52FcOpTMTtwX25h7evE09GC94Vj 5SejlHrN83xtW0sav3Y1phezY+irqN2NrNUD1pJ0+EXqTorNt6E953tb1f1Ax5Wu LuNjSbWbH7K9Ua7e485bF7PtyOg2oyAnlPn3HcoSmU9GBaJhIeObfA4= -----END CERTIFICATE-----Generated at Wed Jun 17 10:05:03 2026 by rpki-client