$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS200950.roa File: AS200950.roa (raw, json) Hash identifier: JZKgl4yiUkfRlchgGCf+E1nUyVN5CSHTSmGiuNysbAE= Subject key identifier: C3:DB:91:AE:50:13:74:41:7D:CF:2C:72:48:34:24:55:4A:D8:B0:C5 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 4E24ECA48D8B997C2E317F67A995FE2E5B865038 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS200950.roa Signing time: Fri 10 Apr 2026 05:03:59 +0000 ROA not before: Fri 10 Apr 2026 04:58:59 +0000 ROA not after: Fri 09 Apr 2027 05:03:59 +0000 asID: 200950 IP address blocks: 2a06:1281:70::/44 maxlen: 44 2a06:1281:70::/44 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:24:ec:a4:8d:8b:99:7c:2e:31:7f:67:a9:95:fe:2e:5b:86:50:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Apr 10 04:58:59 2026 GMT Not After : Apr 9 05:03:59 2027 GMT Subject: CN=C3DB91AE501374417DCF2C72483424554AD8B0C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:e1:ab:d1:32:64:ea:d2:af:ce:3c:16:ca: 08:00:63:8d:b4:55:66:1e:13:23:6a:a1:bd:cc:a9: 7a:d1:66:d1:4f:47:69:59:eb:2d:15:46:4b:db:44: 2d:3c:a8:ee:1f:2d:42:a9:4b:58:10:83:f1:8a:ab: 71:2b:b5:14:7e:4b:99:88:76:de:56:e4:99:66:33: 84:b0:26:82:ca:92:6a:8e:9e:7d:03:b2:20:3c:00: 75:3f:3f:79:35:29:8f:c2:6f:14:12:b9:95:0d:a2: 2c:b2:3e:e1:38:b1:14:e5:18:8d:d7:a2:d1:41:4c: bb:b5:c1:77:ca:42:cf:e3:0f:44:a0:e2:91:41:cd: 75:f1:9a:dc:ec:18:91:ec:44:2b:e0:69:ed:fb:dd: 20:f8:7e:65:df:31:f6:a9:36:c7:76:94:cb:23:a9: 39:e1:54:f6:73:cd:b1:ed:72:99:97:1b:7f:b0:75: 6d:5c:16:a0:49:c4:79:9b:b3:da:37:0f:51:30:f8: 67:02:d0:c0:e4:44:ee:81:c2:b2:af:57:fe:27:fa: 72:7e:26:4a:99:b6:a9:78:61:a5:9b:f9:06:fa:d4: 9e:ce:c1:0d:eb:fc:05:6f:14:b2:05:d9:1b:a6:b1: 70:dd:bd:11:01:53:63:28:b4:dd:20:c0:8f:eb:c9: 02:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:DB:91:AE:50:13:74:41:7D:CF:2C:72:48:34:24:55:4A:D8:B0:C5 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS200950.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:70::/44 Signature Algorithm: sha256WithRSAEncryption 14:59:0f:29:f4:e1:ef:10:ec:b8:1e:4b:71:82:e5:5b:13:7d: bc:90:e7:92:56:0f:0c:11:30:69:9d:0c:aa:94:88:de:81:83: 9f:5f:01:53:82:a9:4e:23:fa:cc:7c:72:c7:b0:0c:79:5f:07: 13:58:14:c1:11:0f:39:c9:17:98:d3:53:3c:46:00:28:e5:f3: 2f:96:21:bd:2f:5c:b7:cd:95:7c:8d:49:38:32:ad:27:69:d4: 64:88:8f:62:45:9a:6b:67:9f:a8:cc:30:16:ad:b8:21:de:46: 53:22:34:eb:87:8a:23:15:6e:52:02:d0:ff:cc:09:77:a7:42: 85:78:f9:21:08:87:f7:7b:06:d0:c2:32:5e:71:55:df:68:05: e0:c3:8b:04:55:98:45:e7:ce:ee:94:ad:26:5f:10:58:4f:9e: 06:0e:8d:1e:1d:6d:43:63:61:21:6c:9e:10:e0:5b:80:df:c8: c1:12:18:fe:6d:93:93:1b:c6:13:65:fe:58:33:bb:36:a2:6b: 61:06:6b:53:75:51:41:c1:7b:86:d2:32:9f:4c:bc:0e:60:8c: ce:56:48:a3:95:90:5b:ff:ba:4e:85:bb:16:41:a3:f2:a1:e9: d2:8a:2f:cb:a6:b1:aa:03:52:24:f6:dd:2d:c2:be:1d:02:00: da:3e:44:2f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUTiTspI2LmXwuMX9nqZX+LluGUDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA0MTAwNDU4NTlaFw0yNzA0MDkwNTAzNTlaMDMxMTAvBgNV BAMTKEMzREI5MUFFNTAxMzc0NDE3RENGMkM3MjQ4MzQyNDU1NEFEOEIwQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01OGr0TJk6tKvzjwWyggAY420 VWYeEyNqob3MqXrRZtFPR2lZ6y0VRkvbRC08qO4fLUKpS1gQg/GKq3ErtRR+S5mI dt5W5JlmM4SwJoLKkmqOnn0DsiA8AHU/P3k1KY/CbxQSuZUNoiyyPuE4sRTlGI3X otFBTLu1wXfKQs/jD0Sg4pFBzXXxmtzsGJHsRCvgae373SD4fmXfMfapNsd2lMsj qTnhVPZzzbHtcpmXG3+wdW1cFqBJxHmbs9o3D1Ew+GcC0MDkRO6BwrKvV/4n+nJ+ JkqZtql4YaWb+Qb61J7OwQ3r/AVvFLIF2RumsXDdvREBU2MotN0gwI/ryQIJAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUw9uRrlATdEF9zyxySDQkVUrYsMUwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDA5NTAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQq BhKBAHAwDQYJKoZIhvcNAQELBQADggEBABRZDyn04e8Q7LgeS3GC5VsTfbyQ55JW DwwRMGmdDKqUiN6Bg59fAVOCqU4j+sx8csewDHlfBxNYFMERDznJF5jTUzxGACjl 8y+WIb0vXLfNlXyNSTgyrSdp1GSIj2JFmmtnn6jMMBatuCHeRlMiNOuHiiMVblIC 0P/MCXenQoV4+SEIh/d7BtDCMl5xVd9oBeDDiwRVmEXnzu6UrSZfEFhPngYOjR4d bUNjYSFsnhDgW4DfyMESGP5tk5MbxhNl/lgzuzaia2EGa1N1UUHBe4bSMp9MvA5g jM5WSKOVkFv/uk6FuxZBo/Kh6dKKL8umsaoDUiT23S3Cvh0CANo+RC8= -----END CERTIFICATE-----Generated at Fri Apr 17 07:13:01 2026 by rpki-client