This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS209693.roa File: AS209693.roa (raw, json) Hash identifier: YYU4EFCsKq6C9vcB1lWGUkkRZYAHb/YgzrwR6m/EW3k= Subject key identifier: A1:F1:88:B9:37:62:3A:35:4B:C2:86:51:EC:0B:D5:C1:3B:99:AA:81 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 5398F53CA7232557CC674386F4E6D671939D40B6 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS209693.roa Signing time: Mon 08 Dec 2025 20:32:43 +0000 ROA not before: Mon 08 Dec 2025 20:27:43 +0000 ROA not after: Mon 07 Dec 2026 20:32:43 +0000 asID: 209693 IP address blocks: 2a09:54c6:5000::/36 maxlen: 36 2a09:54c6:5000::/48 maxlen: 48 2a09:54c6:5005::/48 maxlen: 48 2a0f:6284:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:98:f5:3c:a7:23:25:57:cc:67:43:86:f4:e6:d6:71:93:9d:40:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Dec 8 20:27:43 2025 GMT Not After : Dec 7 20:32:43 2026 GMT Subject: CN=A1F188B937623A354BC28651EC0BD5C13B99AA81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:12:78:9e:ec:26:da:a7:d2:0d:dd:31:58:6f: 03:3d:a3:a2:15:f1:29:5d:4a:3b:0d:04:ff:0e:4f: cd:18:c0:8e:5b:e7:f5:1d:1e:a0:b9:54:ac:5e:9e: 0f:b7:ad:d2:62:c8:13:78:31:d8:39:aa:c4:a4:c1: 76:e7:ba:97:1b:bc:91:b8:8e:58:9e:83:a3:97:6a: 30:00:6e:cb:38:3b:4e:7e:01:ce:a7:bc:10:25:51: 8a:70:7e:b0:ca:97:14:2a:6a:c0:d2:55:b9:cb:9d: 4b:7c:c8:f0:07:e7:f2:c8:76:27:3a:dd:f1:07:37: 46:f2:57:b0:35:db:99:f7:15:a6:07:bc:4b:03:f7: 54:17:29:54:d4:5b:f8:db:b3:94:44:f4:83:43:b2: 23:53:67:a6:1e:17:37:6b:51:81:f7:89:c3:8e:54: c2:7f:77:17:d1:d8:1c:9c:1e:15:57:c4:1a:87:10: 35:b8:23:ac:09:c0:14:08:a8:ad:ae:39:8a:0e:40: f8:ba:d9:f3:a0:b6:fb:e6:3e:a6:1d:97:fb:f1:67: 0d:9c:b8:ca:c4:ac:40:f4:ad:71:93:de:5b:8b:39: 09:69:a0:7a:a5:af:59:60:fe:3a:13:a3:9f:79:b3: d8:c3:ae:f7:24:f9:ef:0a:13:c9:0b:f4:54:e4:37: 22:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F1:88:B9:37:62:3A:35:4B:C2:86:51:EC:0B:D5:C1:3B:99:AA:81 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS209693.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:5000::/36 2a0f:6284:c000::/34 Signature Algorithm: sha256WithRSAEncryption 89:fd:2e:9e:ec:51:70:27:44:d4:6e:35:0c:d7:77:91:4d:7f: ca:31:b2:b8:b1:77:31:65:72:8f:79:9e:90:70:02:26:96:c2: 26:27:af:c9:15:6b:65:af:9d:74:19:8f:08:38:2e:40:d6:36: 94:1b:ed:c2:4c:f6:a5:f8:5c:7f:f0:24:89:ec:23:ae:74:9e: 42:51:14:bf:1c:22:ea:eb:7b:a9:f7:d1:7c:0a:62:ad:ce:ea: 02:2d:3b:f3:fa:60:16:88:0f:3c:3b:99:c0:55:28:e0:c1:9e: 51:68:6d:90:28:41:7b:77:8b:82:bc:7b:48:db:0c:6a:bb:51: 19:ea:c7:43:6b:ad:f1:52:3f:16:b1:0b:b7:f4:19:a8:2c:3d: 83:a6:ba:e1:6f:bc:d7:96:28:2b:fa:b5:3c:e6:4c:cd:fe:fc: 8f:b5:be:e0:9c:fa:42:a6:1e:26:7d:2c:50:d3:1d:fb:f0:0c: 42:76:88:c8:70:e3:49:a5:eb:65:8a:ea:3b:f2:2b:ec:43:07: 3b:ac:74:64:05:28:1c:50:d8:c6:74:f0:8b:b4:07:be:40:5e: bf:d0:df:59:13:83:59:c3:3a:cc:92:44:29:2c:23:8b:e2:c1: 80:ee:e3:04:c2:29:3e:99:fa:11:a1:95:a3:42:4a:86:03:96: 2f:02:9c:60 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUU5j1PKcjJVfMZ0OG9ObWcZOdQLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEyMDgyMDI3NDNaFw0yNjEyMDcyMDMyNDNaMDMxMTAvBgNV BAMTKEExRjE4OEI5Mzc2MjNBMzU0QkMyODY1MUVDMEJENUMxM0I5OUFBODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiEnie7Cbap9IN3TFYbwM9o6IV 8SldSjsNBP8OT80YwI5b5/UdHqC5VKxeng+3rdJiyBN4Mdg5qsSkwXbnupcbvJG4 jlieg6OXajAAbss4O05+Ac6nvBAlUYpwfrDKlxQqasDSVbnLnUt8yPAH5/LIdic6 3fEHN0byV7A125n3FaYHvEsD91QXKVTUW/jbs5RE9INDsiNTZ6YeFzdrUYH3icOO VMJ/dxfR2BycHhVXxBqHEDW4I6wJwBQIqK2uOYoOQPi62fOgtvvmPqYdl/vxZw2c uMrErED0rXGT3luLOQlpoHqlr1lg/joTo595s9jDrvck+e8KE8kL9FTkNyK/AgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUofGIuTdiOjVLwoZR7AvVwTuZqoEwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDk2OTMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgQq CVTGUAMGBioPYoTAMA0GCSqGSIb3DQEBCwUAA4IBAQCJ/S6e7FFwJ0TUbjUM13eR TX/KMbK4sXcxZXKPeZ6QcAImlsImJ6/JFWtlr510GY8IOC5A1jaUG+3CTPal+Fx/ 8CSJ7COudJ5CURS/HCLq63up99F8CmKtzuoCLTvz+mAWiA88O5nAVSjgwZ5RaG2Q KEF7d4uCvHtI2wxqu1EZ6sdDa63xUj8WsQu39BmoLD2Dprrhb7zXligr+rU85kzN /vyPtb7gnPpCph4mfSxQ0x378AxCdojIcONJpetliuo78ivsQwc7rHRkBSgcUNjG dPCLtAe+QF6/0N9ZE4NZwzrMkkQpLCOL4sGA7uMEwik+mfoRoZWjQkqGA5YvApxg -----END CERTIFICATE-----Generated at Sun Dec 21 00:27:58 2025 by rpki-client