$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207083.roa File: AS207083.roa (raw, json) Hash identifier: 5BNdyHIuSZxFzirF9HaKPz/ba4nipDAfnu+h+fd00YE= Subject key identifier: 2D:5F:FF:0C:F2:E0:89:2E:67:1A:F9:73:A6:FD:74:12:08:82:21:09 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 7FB47C76F621003108DB2C38E6537DAF2D2589AF Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa Signing time: Tue 05 Aug 2025 14:11:37 +0000 ROA not before: Tue 05 Aug 2025 14:06:37 +0000 ROA not after: Tue 04 Aug 2026 14:11:37 +0000 asID: 207083 IP address blocks: 2a09:54c6:a000::/48 maxlen: 48 2a0f:6283:1102::/48 maxlen: 48 2a0f:6284:4213::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 09 Aug 2025 16:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b4:7c:76:f6:21:00:31:08:db:2c:38:e6:53:7d:af:2d:25:89:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 5 14:06:37 2025 GMT Not After : Aug 4 14:11:37 2026 GMT Subject: CN=2D5FFF0CF2E0892E671AF973A6FD741208822109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c7:65:26:74:9e:12:ff:8a:39:4d:d9:9d:a8: 70:a9:5b:f6:71:99:60:fd:ac:c5:60:f2:ad:66:85: be:06:72:a4:fe:48:d2:67:15:11:e8:8a:4d:fb:6f: 23:7b:4e:95:8f:b1:47:0e:04:b0:7b:8f:a4:b3:05: cb:49:10:8a:6b:f4:50:87:81:d3:fe:34:cf:42:fb: de:e3:cf:8f:1b:8f:4a:11:47:4e:e6:e9:d5:b9:fc: 2b:f2:73:3c:39:49:46:14:75:e5:5b:2d:e1:3b:0d: f0:af:34:5b:b2:bc:73:c9:17:42:8f:7e:ba:c0:6c: e8:de:dc:f2:21:01:1a:1a:cb:38:44:eb:a6:fa:8d: 0b:6b:10:eb:f4:6f:dd:de:a5:e0:63:c1:a1:8c:e5: 85:ac:60:e8:09:3d:45:d9:9b:ac:42:cb:9a:a7:84: 59:0a:fc:02:35:5c:3a:ae:b5:be:f2:87:9c:2e:fa: 8c:ac:d2:25:53:d9:86:46:18:a7:e8:b9:e3:52:a5: 39:f9:a5:4d:f6:c9:91:35:2f:f6:05:16:4a:a5:88: 28:10:d4:9c:80:0c:75:e0:3c:de:f5:74:c3:48:1e: 91:a7:fd:75:41:ed:dc:fa:ec:ce:dc:44:01:9e:e9: 13:a2:e6:92:c0:43:e2:de:1f:20:dd:8e:60:1a:11: 53:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5F:FF:0C:F2:E0:89:2E:67:1A:F9:73:A6:FD:74:12:08:82:21:09 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:a000::/48 2a0f:6283:1102::/48 2a0f:6284:4213::/48 Signature Algorithm: sha256WithRSAEncryption 45:57:7f:c3:06:4d:83:89:b6:c6:2e:d3:06:b4:16:2d:7f:8a: 52:b4:2d:b0:cf:d6:d5:11:61:c8:2c:a4:b1:67:c8:2c:e3:0d: ae:e2:54:75:19:b2:30:fd:e1:96:cd:60:04:68:aa:5e:76:55: ce:3b:02:ba:90:34:5d:4e:eb:32:6e:a7:07:8d:88:75:16:af: 84:5a:f4:33:58:a2:be:d4:ec:92:02:bc:b3:3b:4c:3b:1f:4c: 49:fe:2f:c3:c8:59:1c:85:5e:23:fc:20:5f:32:ac:f9:d2:a1: 6f:a5:58:a3:ee:1e:aa:2d:2e:4a:b4:67:0c:be:4d:88:25:56: eb:fa:98:cd:b7:6d:5d:fd:e5:81:30:ba:d8:a3:15:65:fb:c5: 29:ff:18:62:ba:df:f4:c5:d3:7f:29:c1:a0:ac:28:65:9b:06: 51:50:be:ff:60:31:c5:e9:41:bf:4f:80:8b:98:9f:cd:12:c6: 1f:3c:a9:44:4f:20:db:01:70:a7:b6:6c:d8:36:e7:7e:a5:16: 03:99:09:89:77:47:12:c9:d3:a0:f2:60:e5:63:70:f9:1c:f2: 34:b1:52:fe:ea:6a:46:b1:b4:16:2f:93:c6:e8:67:ee:df:b3: 22:64:6e:f9:4d:5d:de:1e:b5:02:87:71:91:15:15:8c:1b:ac: 68:dc:75:ae -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgIUf7R8dvYhADEI2yw45lN9ry0lia8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MDUxNDA2MzdaFw0yNjA4MDQxNDExMzdaMDMxMTAvBgNV BAMTKDJENUZGRjBDRjJFMDg5MkU2NzFBRjk3M0E2RkQ3NDEyMDg4MjIxMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOx2UmdJ4S/4o5TdmdqHCpW/Zx mWD9rMVg8q1mhb4GcqT+SNJnFRHoik37byN7TpWPsUcOBLB7j6SzBctJEIpr9FCH gdP+NM9C+97jz48bj0oRR07m6dW5/Cvyczw5SUYUdeVbLeE7DfCvNFuyvHPJF0KP frrAbOje3PIhARoayzhE66b6jQtrEOv0b93epeBjwaGM5YWsYOgJPUXZm6xCy5qn hFkK/AI1XDqutb7yh5wu+oys0iVT2YZGGKfoueNSpTn5pU32yZE1L/YFFkqliCgQ 1JyADHXgPN71dMNIHpGn/XVB7dz67M7cRAGe6ROi5pLAQ+LeHyDdjmAaEVPXAgMB AAGjggHxMIIB7TAdBgNVHQ4EFgQULV//DPLgiS5nGvlzpv10EgiCIQkwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDcwODMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMCEEAgACMBsDBwAq CVTGoAADBwAqD2KDEQIDBwAqD2KEQhMwDQYJKoZIhvcNAQELBQADggEBAEVXf8MG TYOJtsYu0wa0Fi1/ilK0LbDP1tURYcgspLFnyCzjDa7iVHUZsjD94ZbNYARoql52 Vc47ArqQNF1O6zJupweNiHUWr4Ra9DNYor7U7JICvLM7TDsfTEn+L8PIWRyFXiP8 IF8yrPnSoW+lWKPuHqotLkq0Zwy+TYglVuv6mM23bV395YEwutijFWX7xSn/GGK6 3/TF038pwaCsKGWbBlFQvv9gMcXpQb9PgIuYn80Sxh88qURPINsBcKe2bNg2536l FgOZCYl3RxLJ06DyYOVjcPkc8jSxUv7qakaxtBYvk8boZ+7fsyJkbvlNXd4etQKH cZEVFYwbrGjcda4= -----END CERTIFICATE-----Generated at Sat Aug 9 02:45:19 2025 by rpki-client