$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207113.roa File: AS207113.roa (raw, json) Hash identifier: jrPn1S0rE2s0HNtHN8Jf3nR9cezqd637AczvKPzlYq4= Subject key identifier: BE:76:6F:9A:E4:1E:63:22:45:E0:A5:EB:06:16:63:A7:E6:10:50:B8 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 24DB2F2FAD695648B2C1D7308F5BB43F366B37D1 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa Signing time: Thu 30 Oct 2025 17:45:18 +0000 ROA not before: Thu 30 Oct 2025 17:40:18 +0000 ROA not after: Thu 29 Oct 2026 17:45:18 +0000 asID: 207113 IP address blocks: 2a0f:6284:100::/40 maxlen: 40 2a0f:6284:100::/40 maxlen: 48 2a0f:6284:4200::/44 maxlen: 48 2a0f:6284:420f::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 16:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:db:2f:2f:ad:69:56:48:b2:c1:d7:30:8f:5b:b4:3f:36:6b:37:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 30 17:40:18 2025 GMT Not After : Oct 29 17:45:18 2026 GMT Subject: CN=BE766F9AE41E632245E0A5EB061663A7E61050B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:64:69:78:dd:76:17:1f:1b:d1:c3:29:85:5f: d0:56:d8:ce:bd:bd:5c:69:59:07:cd:dc:b4:c6:d1: 4d:6f:7b:79:c5:27:61:b5:51:4b:28:fc:eb:9c:a3: 51:b9:8b:0b:b9:ad:7b:21:b3:bf:5d:ce:30:e6:04: a9:92:59:1f:34:e6:c9:1e:ae:89:5b:fd:bf:16:0a: 63:b9:a8:f1:90:de:7b:c1:7d:f1:6b:15:66:f2:ea: c0:40:5d:a4:9d:4a:46:21:67:dd:da:8a:ef:2e:85: a1:4f:63:cf:0c:13:37:ac:a9:aa:a9:0a:95:a3:3e: cd:62:54:92:7d:94:0f:f3:b9:a6:7e:a6:01:de:e7: e5:4d:cf:b3:8d:73:e0:2d:2d:04:86:2c:37:6e:2d: b1:72:27:28:26:8f:b6:cc:7a:dd:50:e8:f9:37:42: fc:fe:4a:5b:af:ef:c6:d9:8c:5d:96:74:ff:b5:75: 8e:4b:bf:8e:39:92:e0:e5:1f:22:49:36:58:3a:fe: 0c:52:74:70:99:6f:c7:ba:2b:0e:5e:bc:25:12:74: fe:84:a1:cd:9a:c2:93:64:bb:db:44:3a:4a:61:e8: 44:ab:f7:97:57:7d:ad:a1:78:34:96:af:a0:0e:70: b1:c1:4b:af:5d:71:d0:9b:a8:c1:1a:87:76:b9:76: ab:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:76:6F:9A:E4:1E:63:22:45:E0:A5:EB:06:16:63:A7:E6:10:50:B8 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284:100::/40 2a0f:6284:4200::/44 Signature Algorithm: sha256WithRSAEncryption 81:cf:08:8e:4e:b7:f4:b4:95:5a:d3:20:c7:22:fd:dc:03:05: 8d:e8:bc:1e:b2:dc:83:80:20:0b:64:4e:81:9a:d5:0c:ed:b3: fa:f9:a3:bc:06:b1:fc:03:72:e8:82:c0:af:3e:3c:a7:4c:49: a0:27:9f:73:0a:97:8a:6a:74:64:f9:3c:04:8e:16:9d:17:ec: 62:2d:b7:52:a5:5d:90:96:75:3a:58:d4:d6:6d:40:4a:48:57: 72:3b:c7:10:ec:a8:b1:28:d4:34:35:37:a4:95:b9:f9:c0:cd: ac:eb:9e:7f:32:47:b9:72:13:78:92:50:28:ee:b5:5d:8d:94: 73:f6:bf:3d:33:f3:a7:bc:e1:d7:6d:d7:12:cc:d6:7f:4b:5b: 1b:ba:89:72:17:ad:f4:0a:1d:95:92:8f:5b:1a:af:a1:d6:d1: 11:cf:a4:3d:05:b0:32:86:e4:d1:8f:65:86:31:6e:21:66:66: 04:0b:9f:da:2b:11:b2:04:1c:cb:5b:a4:af:d0:0f:82:63:5a: 68:ab:68:06:86:8c:a9:24:9c:f6:c5:4d:0f:7d:76:b6:a3:73: 52:b4:09:46:c1:65:e4:5d:7e:cc:13:17:67:b5:d8:3f:4c:db: 55:5f:54:2e:7c:79:5c:bf:c0:e1:96:14:9c:95:1a:69:65:bd: 0d:c5:a6:91 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJNsvL61pVkiywdcwj1u0PzZrN9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMzAxNzQwMThaFw0yNjEwMjkxNzQ1MThaMDMxMTAvBgNV BAMTKEJFNzY2RjlBRTQxRTYzMjI0NUUwQTVFQjA2MTY2M0E3RTYxMDUwQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzZGl43XYXHxvRwymFX9BW2M69 vVxpWQfN3LTG0U1ve3nFJ2G1UUso/Ouco1G5iwu5rXshs79dzjDmBKmSWR805ske rolb/b8WCmO5qPGQ3nvBffFrFWby6sBAXaSdSkYhZ93aiu8uhaFPY88MEzesqaqp CpWjPs1iVJJ9lA/zuaZ+pgHe5+VNz7ONc+AtLQSGLDduLbFyJygmj7bMet1Q6Pk3 Qvz+Sluv78bZjF2WdP+1dY5Lv445kuDlHyJJNlg6/gxSdHCZb8e6Kw5evCUSdP6E oc2awpNku9tEOkph6ESr95dXfa2heDSWr6AOcLHBS69dcdCbqMEah3a5dqsZAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUvnZvmuQeYyJF4KXrBhZjp+YQULgwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDcxMTMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBgAq D2KEAQMHBCoPYoRCADANBgkqhkiG9w0BAQsFAAOCAQEAgc8Ijk639LSVWtMgxyL9 3AMFjei8HrLcg4AgC2ROgZrVDO2z+vmjvAax/ANy6ILArz48p0xJoCefcwqXimp0 ZPk8BI4WnRfsYi23UqVdkJZ1OljU1m1ASkhXcjvHEOyosSjUNDU3pJW5+cDNrOue fzJHuXITeJJQKO61XY2Uc/a/PTPzp7zh123XEszWf0tbG7qJchet9AodlZKPWxqv odbREc+kPQWwMobk0Y9lhjFuIWZmBAuf2isRsgQcy1ukr9APgmNaaKtoBoaMqSSc 9sVND312tqNzUrQJRsFl5F1+zBMXZ7XYP0zbVV9ULnx5XL/A4ZYUnJUaaWW9DcWm kQ== -----END CERTIFICATE-----Generated at Wed Nov 5 07:37:07 2025 by rpki-client