$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS205398.roa File: AS205398.roa (raw, json) Hash identifier: IEbGBUD9X8V3qI7lK4uddFBgWZf/kJ2C5ffEQUhFmo4= Subject key identifier: 22:3C:3E:51:EE:5A:E5:E7:40:A5:F5:8A:D2:4F:05:A7:76:6A:CE:A5 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 55812ECDD91FECD53EBC5AAEA813536C0CFA87D7 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS205398.roa Signing time: Thu 04 Jun 2026 16:51:47 +0000 ROA not before: Thu 04 Jun 2026 16:46:47 +0000 ROA not after: Thu 03 Jun 2027 16:51:47 +0000 asID: 205398 IP address blocks: 2a0a:6044:ad00::/40 maxlen: 48 2a0a:6044:ae00::/40 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 07:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:81:2e:cd:d9:1f:ec:d5:3e:bc:5a:ae:a8:13:53:6c:0c:fa:87:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jun 4 16:46:47 2026 GMT Not After : Jun 3 16:51:47 2027 GMT Subject: CN=223C3E51EE5AE5E740A5F58AD24F05A7766ACEA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:93:ab:12:3f:53:31:25:10:95:f2:a5:00:fc: ff:7e:a8:3a:9e:83:9b:2e:34:60:ee:eb:2c:fe:3b: 1a:69:e6:1a:c7:a6:9b:98:6d:1f:82:d8:38:d1:19: 6c:ba:65:65:41:ea:7a:14:1e:68:30:a0:f3:91:27: 65:83:c9:6a:44:b0:26:d0:7d:01:f7:54:0a:87:f4: f7:22:73:a4:3d:0e:27:63:a8:e1:ff:e1:c0:c8:e2: f8:ed:a3:7c:cc:f8:26:8c:1d:9c:d1:dc:83:da:ea: d4:80:e3:45:d7:88:e6:72:09:3d:9c:43:27:a5:b0: b4:76:ae:bb:0b:22:b1:b5:c5:20:7a:a9:8b:21:10: 79:4a:3e:15:c5:39:a4:16:ab:b2:f9:b6:cc:11:e6: 84:c6:c9:41:9b:d6:06:70:30:dc:96:cc:6d:ba:c5: ed:2b:45:b7:21:c7:15:5c:fa:57:03:00:03:05:de: eb:5e:07:5b:d8:40:87:1c:59:4e:9e:3e:38:fe:15: bd:94:58:e2:b8:81:87:40:5a:27:a3:ec:e1:ff:07: d0:cd:b0:9f:8c:b2:5e:57:52:71:60:56:35:e0:28: 6d:9a:ef:88:1c:40:88:09:17:df:a7:7e:cb:cd:ca: 41:45:35:11:c7:45:98:94:77:fc:bb:14:13:6a:61: 6f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3C:3E:51:EE:5A:E5:E7:40:A5:F5:8A:D2:4F:05:A7:76:6A:CE:A5 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS205398.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ad00::-2a0a:6044:aeff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3f:c9:c9:e1:b6:d5:33:15:e5:74:c6:93:d7:a9:9b:02:18:af: 96:9d:e3:4d:68:ca:2d:85:79:7a:98:b1:a0:72:49:b7:c2:77: 3e:7d:76:5b:76:21:a5:85:be:cf:28:5d:f6:f3:d0:63:48:ef: 5c:8d:28:1c:54:92:14:f8:46:9c:b3:d9:ed:e4:e8:93:ea:40: 93:d8:4b:f5:ab:52:92:0e:ff:78:2c:dc:8f:22:76:aa:96:35: 3c:94:e6:1d:6b:e2:97:7b:24:11:63:0b:b9:4d:af:4d:7f:08: 5a:78:d4:1f:60:ed:d6:48:7c:20:e9:d3:d4:e2:03:e4:aa:ce: 0c:09:5a:33:c6:99:2e:75:e1:4e:f4:c2:f9:d9:8d:23:b1:3b: be:f0:5f:6d:64:59:e7:e0:4f:24:55:a8:9a:6d:92:65:94:b7: 47:af:c3:4e:6e:83:e2:c5:f8:e9:94:d0:21:db:29:8d:36:19: ac:15:60:e7:6f:5f:95:4d:d3:03:04:6a:06:85:43:0e:9c:3c: 4a:99:1a:3d:a6:ed:fa:93:9c:51:21:40:64:0a:39:0d:c2:17: 1a:88:3a:94:3a:c2:e3:7b:d2:36:d2:68:17:30:92:d7:90:12: 2c:fc:44:08:68:23:b6:ba:dd:c4:ff:09:33:2c:46:35:7c:4f: 1c:bd:61:9f -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUVYEuzdkf7NU+vFquqBNTbAz6h9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA2MDQxNjQ2NDdaFw0yNzA2MDMxNjUxNDdaMDMxMTAvBgNV BAMTKDIyM0MzRTUxRUU1QUU1RTc0MEE1RjU4QUQyNEYwNUE3NzY2QUNFQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDak6sSP1MxJRCV8qUA/P9+qDqe g5suNGDu6yz+Oxpp5hrHppuYbR+C2DjRGWy6ZWVB6noUHmgwoPORJ2WDyWpEsCbQ fQH3VAqH9Pcic6Q9DidjqOH/4cDI4vjto3zM+CaMHZzR3IPa6tSA40XXiOZyCT2c QyelsLR2rrsLIrG1xSB6qYshEHlKPhXFOaQWq7L5tswR5oTGyUGb1gZwMNyWzG26 xe0rRbchxxVc+lcDAAMF3uteB1vYQIccWU6ePjj+Fb2UWOK4gYdAWiej7OH/B9DN sJ+Msl5XUnFgVjXgKG2a74gcQIgJF9+nfsvNykFFNRHHRZiUd/y7FBNqYW8dAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUIjw+Ue5a5edApfWK0k8Fp3ZqzqUwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDUzOTgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgACMBIwEAMG ACoKYEStAwYAKgpgRK4wDQYJKoZIhvcNAQELBQADggEBAD/JyeG21TMV5XTGk9ep mwIYr5ad401oyi2FeXqYsaBySbfCdz59dlt2IaWFvs8oXfbz0GNI71yNKBxUkhT4 Rpyz2e3k6JPqQJPYS/WrUpIO/3gs3I8idqqWNTyU5h1r4pd7JBFjC7lNr01/CFp4 1B9g7dZIfCDp09TiA+SqzgwJWjPGmS514U70wvnZjSOxO77wX21kWefgTyRVqJpt kmWUt0evw05ug+LF+OmU0CHbKY02GawVYOdvX5VN0wMEagaFQw6cPEqZGj2m7fqT nFEhQGQKOQ3CFxqIOpQ6wuN70jbSaBcwkteQEiz8RAhoI7a63cT/CTMsRjV8Txy9 YZ8= -----END CERTIFICATE-----Generated at Sat Jun 13 11:32:43 2026 by rpki-client