$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207083.roa File: AS207083.roa (raw, json) Hash identifier: ozi4OIWAJ7FaSI4k4m671VoeTyiVYhQCmUH26hzoNYA= Subject key identifier: 85:04:67:96:B7:C9:4E:29:85:EC:58:46:6C:DE:29:B0:98:94:85:79 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1D4DB5DA1205ABB7D5ABA52C943F1BA488129E46 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa Signing time: Sun 22 Feb 2026 14:26:31 +0000 ROA not before: Sun 22 Feb 2026 14:21:31 +0000 ROA not after: Sun 21 Feb 2027 14:26:31 +0000 asID: 207083 IP address blocks: 2a09:54c6:a000::/48 maxlen: 48 2a09:54c6:a228::/48 maxlen: 48 2a09:54c6:a700::/48 maxlen: 48 2a0f:6284:1::/48 maxlen: 48 2a0f:6284:4213::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:4d:b5:da:12:05:ab:b7:d5:ab:a5:2c:94:3f:1b:a4:88:12:9e:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Feb 22 14:21:31 2026 GMT Not After : Feb 21 14:26:31 2027 GMT Subject: CN=85046796B7C94E2985EC58466CDE29B098948579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:80:fd:15:9b:46:f0:77:e0:36:ce:d4:e3: 1b:79:94:78:b6:27:32:ba:21:99:ed:28:b2:ec:d9: aa:cb:74:c8:a7:87:bc:9d:00:3d:d7:ea:e3:66:41: 8d:9f:cd:ec:32:58:79:53:b2:32:22:f4:8a:21:30: f0:60:b1:d1:d3:4e:44:9f:c2:8e:2e:42:b6:38:07: c9:4d:40:3d:05:e6:26:e7:8a:93:70:4d:4d:ef:d0: c9:35:95:7d:1c:6f:49:7d:39:aa:52:4c:b9:79:03: ab:46:c6:b6:44:ba:73:39:b6:1f:a9:79:27:a7:9b: 51:bf:07:72:6d:8b:36:68:31:9e:69:4b:cf:a6:93: 49:f7:bd:47:21:f9:59:74:16:2f:9a:f6:35:d3:b6: 8f:6e:92:e8:9c:9e:80:2e:3c:3a:d5:d0:0a:2c:64: e7:c0:87:7b:fe:71:c5:48:d1:ba:4b:18:ac:02:a0: 9b:b2:d6:fa:26:2e:06:82:00:43:41:a0:08:8d:cf: 09:08:42:29:2c:33:94:70:96:66:71:29:c3:df:3f: df:9f:0d:f8:98:c2:fd:ca:f5:49:f0:43:e2:06:77: 8b:35:61:df:ec:12:65:35:ce:df:fe:af:85:39:d7: 4b:0a:d6:71:dd:d4:7a:b8:26:b7:5d:6f:c8:67:be: 86:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:04:67:96:B7:C9:4E:29:85:EC:58:46:6C:DE:29:B0:98:94:85:79 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:a000::/48 2a09:54c6:a228::/48 2a09:54c6:a700::/48 2a0f:6284:1::/48 2a0f:6284:4213::/48 Signature Algorithm: sha256WithRSAEncryption 35:c3:ec:6c:4b:84:c8:d4:19:85:a8:e0:3c:9e:50:f2:13:3c: af:ea:c0:ec:63:57:7f:6b:55:0d:0b:c4:78:db:b0:f8:7b:94: db:d9:45:7b:85:0e:49:4a:17:5f:fd:21:a2:1f:27:49:be:d3: fe:97:c7:d1:ce:a7:68:f0:e6:45:00:75:f9:69:b6:dd:09:1d: d6:f5:d6:9e:ca:96:79:fc:e9:eb:a3:77:f4:e8:13:12:0d:76: 84:0d:f4:f2:2d:9b:f7:6a:e0:d5:22:33:2d:cd:2b:4b:4d:bb: b5:16:f2:04:8f:0d:6a:73:04:b9:9d:fb:b2:be:bf:ff:47:09: ce:92:fc:1f:d7:a2:8c:d4:22:8f:be:56:91:e5:dd:42:d0:5a: 22:f4:5f:41:5f:49:cd:02:67:ab:fc:3f:47:aa:bc:49:00:df: fe:6a:33:e0:d7:d2:4d:fc:fd:fe:a0:02:81:3a:cb:8f:15:4c: 51:4f:24:00:75:31:19:bc:0d:5b:37:60:63:36:f7:a9:3c:b5: f4:7e:15:a9:83:fa:e6:b1:dc:35:0a:ab:33:d7:1a:e4:5d:d3: db:4a:05:8e:db:f0:69:13:de:84:74:50:27:c8:cc:7d:53:ef: 4b:55:4f:6e:5c:a9:60:31:26:9c:fd:5e:a1:f0:eb:27:f8:00: c3:07:e3:de -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUHU212hIFq7fVq6UslD8bpIgSnkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAyMjIxNDIxMzFaFw0yNzAyMjExNDI2MzFaMDMxMTAvBgNV BAMTKDg1MDQ2Nzk2QjdDOTRFMjk4NUVDNTg0NjZDREUyOUIwOTg5NDg1NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01ID9FZtG8HfgNs7U4xt5lHi2 JzK6IZntKLLs2arLdMinh7ydAD3X6uNmQY2fzewyWHlTsjIi9IohMPBgsdHTTkSf wo4uQrY4B8lNQD0F5ibnipNwTU3v0Mk1lX0cb0l9OapSTLl5A6tGxrZEunM5th+p eSenm1G/B3JtizZoMZ5pS8+mk0n3vUch+Vl0Fi+a9jXTto9ukuicnoAuPDrV0Aos ZOfAh3v+ccVI0bpLGKwCoJuy1vomLgaCAENBoAiNzwkIQiksM5RwlmZxKcPfP9+f DfiYwv3K9UnwQ+IGd4s1Yd/sEmU1zt/+r4U510sK1nHd1Hq4Jrddb8hnvobDAgMB AAGjggIDMIIB/zAdBgNVHQ4EFgQUhQRnlrfJTimF7FhGbN4psJiUhXkwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDcwODMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MDMEAgACMC0DBwAq CVTGoAADBwAqCVTGoigDBwAqCVTGpwADBwAqD2KEAAEDBwAqD2KEQhMwDQYJKoZI hvcNAQELBQADggEBADXD7GxLhMjUGYWo4DyeUPITPK/qwOxjV39rVQ0LxHjbsPh7 lNvZRXuFDklKF1/9IaIfJ0m+0/6Xx9HOp2jw5kUAdflptt0JHdb11p7Klnn86euj d/ToExINdoQN9PItm/dq4NUiMy3NK0tNu7UW8gSPDWpzBLmd+7K+v/9HCc6S/B/X oozUIo++VpHl3ULQWiL0X0FfSc0CZ6v8P0eqvEkA3/5qM+DX0k38/f6gAoE6y48V TFFPJAB1MRm8DVs3YGM296k8tfR+FamD+uax3DUKqzPXGuRd09tKBY7b8GkT3oR0 UCfIzH1T70tVT25cqWAxJpz9XqHw6yf4AMMH494= -----END CERTIFICATE-----Generated at Sun Mar 1 21:41:27 2026 by rpki-client