$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207083.roa File: AS207083.roa (raw, json) Hash identifier: angUtf4NNGuyW2HbSScVXUUR+W+y+IlZxH2ZLzqHr/k= Subject key identifier: 17:E4:41:1F:0C:E8:83:87:C9:9B:2F:0F:41:76:7C:5D:8D:1B:A9:B9 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 64C814ADE04842CC1D94EBDED7050E9B26020C4C Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa Signing time: Sun 26 Oct 2025 15:28:49 +0000 ROA not before: Sun 26 Oct 2025 15:23:49 +0000 ROA not after: Sun 25 Oct 2026 15:28:49 +0000 asID: 207083 IP address blocks: 2a09:54c6:a000::/48 maxlen: 48 2a09:54c6:a700::/48 maxlen: 48 2a0f:6283:1102::/48 maxlen: 48 2a0f:6284:1::/48 maxlen: 48 2a0f:6284:4213::/48 maxlen: 48 2a0f:6284:4219::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 16:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c8:14:ad:e0:48:42:cc:1d:94:eb:de:d7:05:0e:9b:26:02:0c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 26 15:23:49 2025 GMT Not After : Oct 25 15:28:49 2026 GMT Subject: CN=17E4411F0CE88387C99B2F0F41767C5D8D1BA9B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:b9:db:fe:e3:7e:26:6d:ea:84:0e:8c:89:25: 56:76:0b:51:b0:a9:1b:d7:da:a0:7c:f0:d8:f6:2f: 0f:15:0d:a2:81:05:97:77:1e:65:e1:56:ef:d4:20: a3:01:dd:68:38:d7:15:60:d7:63:4e:84:6c:af:80: b2:d9:76:2c:27:bf:f7:33:4b:ad:f1:98:8f:18:1c: cc:36:5d:d7:e2:8c:7f:26:74:47:a6:a9:4e:56:76: b7:21:94:b9:ef:78:25:cc:0c:c0:35:45:3d:27:17: fa:5c:36:dd:0d:6a:65:ff:ef:a8:c9:85:ba:0e:7b: 5a:a7:24:a4:85:9e:24:76:57:70:07:b5:ab:fc:32: 9a:cb:e4:85:03:04:b2:1c:af:9b:45:60:17:68:f7: 9d:f7:65:fe:4d:94:3b:8b:03:cc:14:ee:f4:8a:77: 14:fa:ef:e0:58:4c:88:dd:af:e1:94:53:12:f2:d2: 0b:cb:97:63:ba:94:7a:bf:2b:e8:40:8d:f4:6a:0d: 61:0e:bb:b8:0e:a2:d7:69:f4:d7:77:87:3e:68:7c: e6:d7:da:b8:1e:a1:2e:ec:90:c1:b4:f1:c6:31:14: 8f:a0:3c:13:eb:32:98:20:42:c1:76:9a:2c:e5:67: 77:6c:77:8a:f4:bc:19:24:0f:2d:9c:71:17:88:6e: 62:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E4:41:1F:0C:E8:83:87:C9:9B:2F:0F:41:76:7C:5D:8D:1B:A9:B9 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:a000::/48 2a09:54c6:a700::/48 2a0f:6283:1102::/48 2a0f:6284:1::/48 2a0f:6284:4213::/48 2a0f:6284:4219::/48 Signature Algorithm: sha256WithRSAEncryption 3b:5e:c2:59:c4:ef:11:57:d8:b7:06:10:f1:9d:82:80:e9:00: 25:d9:b0:eb:e3:08:e8:3e:dd:5f:c9:28:03:0b:02:dd:aa:d9: c4:5f:ba:a7:8a:34:c1:57:a7:93:2b:f9:ac:24:13:5a:14:36: 6e:d4:75:ab:46:6b:eb:52:ad:e2:77:ba:ab:7e:49:9b:6e:ab: ca:3b:f5:0e:ea:19:ff:d2:5b:af:8c:11:37:11:09:5c:cb:e2: 90:97:51:f2:65:e5:ce:e5:9b:2e:ea:29:fe:b3:91:30:1a:36: 19:99:af:4d:a9:bb:cc:b6:e7:fa:b2:90:a4:3b:31:4a:c6:fa: 88:94:04:cc:81:26:ba:f6:b2:1c:36:b9:73:c8:ba:04:39:72: 2f:e5:43:c6:86:93:85:a0:b5:cd:bd:21:95:c4:17:18:54:ed: 1b:9f:06:ef:42:1e:d2:fc:c0:14:73:bb:f8:5e:20:b1:4a:a9: c8:54:39:1d:75:1c:00:4d:94:c0:96:b7:d7:c7:54:1b:5c:48: a0:92:36:62:45:5d:50:34:3a:ba:7b:35:dd:7c:2e:1a:0b:41: be:a1:76:27:1f:0b:54:59:5b:30:79:7e:1c:b5:d7:4b:10:c1: a7:f2:3f:da:1e:eb:d9:ab:13:d3:25:36:76:52:c5:04:10:b4: 7c:1d:76:1e -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUZMgUreBIQswdlOve1wUOmyYCDEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMjYxNTIzNDlaFw0yNjEwMjUxNTI4NDlaMDMxMTAvBgNV BAMTKDE3RTQ0MTFGMENFODgzODdDOTlCMkYwRjQxNzY3QzVEOEQxQkE5QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5udv+434mbeqEDoyJJVZ2C1Gw qRvX2qB88Nj2Lw8VDaKBBZd3HmXhVu/UIKMB3Wg41xVg12NOhGyvgLLZdiwnv/cz S63xmI8YHMw2XdfijH8mdEemqU5WdrchlLnveCXMDMA1RT0nF/pcNt0NamX/76jJ hboOe1qnJKSFniR2V3AHtav8MprL5IUDBLIcr5tFYBdo9533Zf5NlDuLA8wU7vSK dxT67+BYTIjdr+GUUxLy0gvLl2O6lHq/K+hAjfRqDWEOu7gOotdp9Nd3hz5ofObX 2rgeoS7skMG08cYxFI+gPBPrMpggQsF2mizlZ3dsd4r0vBkkDy2ccReIbmJpAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUF+RBHwzog4fJmy8PQXZ8XY0bqbkwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDcwODMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwTwYIKwYBBQUHAQcBAf8EQDA+MDwEAgACMDYDBwAq CVTGoAADBwAqCVTGpwADBwAqD2KDEQIDBwAqD2KEAAEDBwAqD2KEQhMDBwAqD2KE QhkwDQYJKoZIhvcNAQELBQADggEBADtewlnE7xFX2LcGEPGdgoDpACXZsOvjCOg+ 3V/JKAMLAt2q2cRfuqeKNMFXp5Mr+awkE1oUNm7UdatGa+tSreJ3uqt+SZtuq8o7 9Q7qGf/SW6+METcRCVzL4pCXUfJl5c7lmy7qKf6zkTAaNhmZr02pu8y25/qykKQ7 MUrG+oiUBMyBJrr2shw2uXPIugQ5ci/lQ8aGk4Wgtc29IZXEFxhU7RufBu9CHtL8 wBRzu/heILFKqchUOR11HABNlMCWt9fHVBtcSKCSNmJFXVA0Orp7Nd18LhoLQb6h dicfC1RZWzB5fhy110sQwafyP9oe69mrE9MlNnZSxQQQtHwddh4= -----END CERTIFICATE-----Generated at Wed Nov 5 08:30:33 2025 by rpki-client