$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207113.roa File: AS207113.roa (raw, json) Hash identifier: y8joWtDO7ZaRJ7WHX7P7QQ7HAaVbS3wNII44x5n10UQ= Subject key identifier: 4A:0C:DA:CC:2F:46:35:FB:0E:D2:56:41:1D:BA:34:B1:50:5E:BB:D3 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1547AA5827A650EB089E2ECB9544F477BE933182 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa Signing time: Fri 01 Aug 2025 15:05:02 +0000 ROA not before: Fri 01 Aug 2025 15:00:02 +0000 ROA not after: Fri 31 Jul 2026 15:05:02 +0000 asID: 207113 IP address blocks: 2a0f:6284:4200::/44 maxlen: 44 2a0f:6284:4200::/44 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 08 Aug 2025 21:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:47:aa:58:27:a6:50:eb:08:9e:2e:cb:95:44:f4:77:be:93:31:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 1 15:00:02 2025 GMT Not After : Jul 31 15:05:02 2026 GMT Subject: CN=4A0CDACC2F4635FB0ED256411DBA34B1505EBBD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:92:59:0d:fe:ca:9d:29:29:25:03:0e:59:f3: ea:63:d1:c2:40:8e:f0:52:31:9e:2c:ac:cf:46:81: 5e:0c:18:f1:aa:49:4c:78:33:2a:64:3c:de:8c:7e: 0c:57:54:04:32:62:d3:c7:42:b9:39:3f:8e:7f:f2: 4d:d0:fe:fc:a6:f2:cc:41:79:1d:87:14:df:bd:30: 18:e4:25:84:f8:67:b3:09:d0:c5:c6:c2:fd:82:96: 28:5d:46:75:d4:b6:c5:aa:2b:cf:db:d6:45:5f:27: c9:04:a2:33:02:09:0b:ce:8e:e5:35:33:6e:a3:0c: b8:6a:4d:f7:ce:44:0a:c4:df:34:b4:fc:b6:09:bc: 43:a0:cd:6c:95:ad:6b:02:b6:fb:84:7c:f7:68:4c: 33:4c:9b:86:1a:f4:98:0b:66:51:d9:0d:fd:e9:6a: f5:b2:66:64:ad:0a:06:a1:ff:e4:64:91:4b:20:e8: 25:0d:a7:b6:c3:5a:0e:20:9e:01:3e:16:05:a0:31: c9:9b:4f:99:1a:fc:99:90:c3:53:fe:b0:99:aa:c1: 93:d8:e6:6b:e9:af:68:42:4a:8c:6a:61:af:cc:33: da:2d:c5:12:88:c0:cc:6f:be:32:f9:26:6c:07:f9: 37:69:77:28:a8:33:87:1a:84:80:fd:8b:95:26:41: 73:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0C:DA:CC:2F:46:35:FB:0E:D2:56:41:1D:BA:34:B1:50:5E:BB:D3 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284:4200::/44 Signature Algorithm: sha256WithRSAEncryption 3e:41:ae:56:5c:e5:20:0c:39:9a:c1:fa:0f:cc:68:75:6d:e9: 6d:a8:f9:94:4a:1e:4b:c4:6e:af:e3:46:32:8a:53:18:d7:3b: 5d:d4:85:36:34:eb:1f:4f:da:b9:de:6e:61:7a:90:c9:df:ba: 62:c4:aa:4a:56:40:db:1d:7e:74:a8:ef:f0:76:97:3c:13:a0: 82:d9:66:ed:e9:a5:2e:2f:b9:8b:60:64:3a:d7:9a:a1:6f:bf: 23:19:5e:d1:53:10:58:bb:40:f1:ad:09:f6:7f:94:69:eb:07: 56:9a:02:14:3d:bc:7b:40:7d:ac:7a:7e:63:0e:e2:21:5b:56: a6:08:a1:56:00:57:29:27:d2:f0:d2:34:9a:e9:15:9f:cd:4f: 8b:f6:b8:e5:93:af:ae:23:6f:15:5f:03:c6:59:df:4a:9c:a9: 27:11:53:e6:95:cb:3c:ff:4d:0d:9b:90:b3:4f:a5:b4:18:48: 28:2f:5c:13:c9:aa:05:c6:fc:47:ae:2e:6d:88:22:fd:f4:41: b2:58:00:16:46:35:5e:e5:aa:30:c7:63:37:85:01:fd:ea:78: 65:10:f6:db:88:c9:53:64:a5:c2:94:d4:61:de:c4:7a:3b:b6: 09:07:69:48:51:f4:84:c6:ae:2e:fe:c6:50:67:87:28:3f:df: 6d:e5:35:0a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUFUeqWCemUOsIni7LlUT0d76TMYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MDExNTAwMDJaFw0yNjA3MzExNTA1MDJaMDMxMTAvBgNV BAMTKDRBMENEQUNDMkY0NjM1RkIwRUQyNTY0MTFEQkEzNEIxNTA1RUJCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfklkN/sqdKSklAw5Z8+pj0cJA jvBSMZ4srM9GgV4MGPGqSUx4MypkPN6MfgxXVAQyYtPHQrk5P45/8k3Q/vym8sxB eR2HFN+9MBjkJYT4Z7MJ0MXGwv2ClihdRnXUtsWqK8/b1kVfJ8kEojMCCQvOjuU1 M26jDLhqTffORArE3zS0/LYJvEOgzWyVrWsCtvuEfPdoTDNMm4Ya9JgLZlHZDf3p avWyZmStCgah/+RkkUsg6CUNp7bDWg4gngE+FgWgMcmbT5ka/JmQw1P+sJmqwZPY 5mvpr2hCSoxqYa/MM9otxRKIwMxvvjL5JmwH+TdpdyioM4cahID9i5UmQXNvAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUSgzazC9GNfsO0lZBHbo0sVBeu9MwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDcxMTMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQq D2KEQgAwDQYJKoZIhvcNAQELBQADggEBAD5BrlZc5SAMOZrB+g/MaHVt6W2o+ZRK HkvEbq/jRjKKUxjXO13UhTY06x9P2rnebmF6kMnfumLEqkpWQNsdfnSo7/B2lzwT oILZZu3ppS4vuYtgZDrXmqFvvyMZXtFTEFi7QPGtCfZ/lGnrB1aaAhQ9vHtAfax6 fmMO4iFbVqYIoVYAVykn0vDSNJrpFZ/NT4v2uOWTr64jbxVfA8ZZ30qcqScRU+aV yzz/TQ2bkLNPpbQYSCgvXBPJqgXG/EeuLm2IIv30QbJYABZGNV7lqjDHYzeFAf3q eGUQ9tuIyVNkpcKU1GHexHo7tgkHaUhR9ITGri7+xlBnhyg/323lNQo= -----END CERTIFICATE-----Generated at Fri Aug 8 10:21:22 2025 by rpki-client