$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS209693.roa File: AS209693.roa (raw, json) Hash identifier: OD9JxRKJQtOJEg3gxvKdV3GIu9rFG650vhNyF8TmXM8= Subject key identifier: 63:54:C5:16:02:56:39:F9:A3:09:91:B4:C2:20:D4:6C:16:C4:2D:CA Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 5720A37B052AC1931E6456B7C1AA26A6E3056DC6 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS209693.roa Signing time: Fri 31 Oct 2025 19:35:26 +0000 ROA not before: Fri 31 Oct 2025 19:30:26 +0000 ROA not after: Fri 30 Oct 2026 19:35:26 +0000 asID: 209693 IP address blocks: 2a09:54c6:5000::/36 maxlen: 48 2a0f:6284:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 03:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:20:a3:7b:05:2a:c1:93:1e:64:56:b7:c1:aa:26:a6:e3:05:6d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 31 19:30:26 2025 GMT Not After : Oct 30 19:35:26 2026 GMT Subject: CN=6354C516025639F9A30991B4C220D46C16C42DCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2d:67:7d:9b:bb:48:d0:cc:e5:c1:ef:49:ef: 13:24:5f:97:dd:e2:9f:45:f0:4e:62:a8:1f:01:83: aa:23:f0:d7:2d:19:68:89:25:19:2a:a7:96:7f:06: 8e:f1:7e:70:f4:f8:62:50:eb:6e:84:38:12:dd:82: 59:79:78:64:a9:50:13:56:4a:a0:0b:77:fe:e2:44: 15:06:38:85:bf:08:d4:10:1d:fa:e1:a2:be:d9:d4: 24:4f:1f:f7:52:93:7d:95:89:11:83:a6:87:02:e7: 36:ba:87:aa:47:f1:be:bd:fa:d1:e3:58:e6:b3:87: 27:67:18:5d:09:ee:8a:67:96:ef:26:4f:44:a1:4d: af:e7:2e:c5:b0:c2:72:5c:4e:99:b3:b1:8e:3f:f8: d1:ce:5a:ca:c7:e6:a7:a3:f2:31:08:a0:85:e0:e7: 2b:5a:c9:c9:fe:34:a1:f8:d3:5f:f4:2c:e6:d4:4d: 10:60:e5:de:43:a7:16:03:43:bb:a5:49:11:18:2e: 85:cd:a7:c2:98:74:cc:bc:1c:11:56:9b:91:a1:21: a5:95:02:01:a2:fb:4c:97:a1:93:d8:cc:70:5c:6b: fc:d9:3a:0d:4f:d5:7d:f1:0a:78:3b:24:4f:db:1e: d2:e4:bc:6c:df:45:8e:89:50:fe:3f:8d:19:69:d8: 52:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:54:C5:16:02:56:39:F9:A3:09:91:B4:C2:20:D4:6C:16:C4:2D:CA X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS209693.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:5000::/36 2a0f:6284:c000::/34 Signature Algorithm: sha256WithRSAEncryption 26:fe:3d:5b:e6:fe:ba:ef:ef:cf:02:20:78:a5:10:3e:11:93: c2:65:f5:bb:db:5c:70:36:54:d0:17:a4:27:4f:87:a7:00:af: 7d:1e:99:97:da:f6:7f:95:39:21:1d:e6:1c:f1:d8:b0:f7:df: b2:99:55:a5:2d:9c:d5:96:6e:f3:30:13:5d:2f:eb:2d:55:6c: aa:34:21:78:8a:ab:5a:ae:e7:09:00:74:51:95:e8:de:4e:c9: eb:f8:21:6d:ec:08:fa:7a:b3:06:25:c3:62:6a:e5:be:d6:3c: a1:c9:6b:bf:75:82:c2:98:b2:ff:8f:ed:bc:b4:68:8d:5f:23: 65:83:33:67:de:1c:a6:6d:fc:f3:45:7a:13:5b:c6:0a:a8:88: 38:50:3b:c8:7f:d0:1a:25:e5:e5:5f:6a:b3:13:4b:ab:39:94: 69:28:2c:5a:f0:ae:ac:b6:b6:fc:0c:43:6e:33:31:5a:4a:7b: 97:b3:8e:13:ad:09:0c:fd:d0:bd:72:18:33:b4:5b:a1:d5:36: 79:ee:c8:1d:67:d5:b2:80:f9:a3:dd:51:dd:91:4b:e9:a8:18: 00:8f:bb:97:55:08:4b:bb:1b:55:a2:a8:df:81:fd:e5:7b:ba: 72:0b:f0:d5:0d:90:6a:fb:4e:eb:41:6b:70:c2:25:87:bd:6c: 2d:e7:5f:36 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUVyCjewUqwZMeZFa3waompuMFbcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMzExOTMwMjZaFw0yNjEwMzAxOTM1MjZaMDMxMTAvBgNV BAMTKDYzNTRDNTE2MDI1NjM5RjlBMzA5OTFCNEMyMjBENDZDMTZDNDJEQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqLWd9m7tI0Mzlwe9J7xMkX5fd 4p9F8E5iqB8Bg6oj8NctGWiJJRkqp5Z/Bo7xfnD0+GJQ626EOBLdgll5eGSpUBNW SqALd/7iRBUGOIW/CNQQHfrhor7Z1CRPH/dSk32ViRGDpocC5za6h6pH8b69+tHj WOazhydnGF0J7opnlu8mT0ShTa/nLsWwwnJcTpmzsY4/+NHOWsrH5qej8jEIoIXg 5ytaycn+NKH401/0LObUTRBg5d5DpxYDQ7ulSREYLoXNp8KYdMy8HBFWm5GhIaWV AgGi+0yXoZPYzHBca/zZOg1P1X3xCng7JE/bHtLkvGzfRY6JUP4/jRlp2FJRAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUY1TFFgJWOfmjCZG0wiDUbBbELcowHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDk2OTMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgQq CVTGUAMGBioPYoTAMA0GCSqGSIb3DQEBCwUAA4IBAQAm/j1b5v667+/PAiB4pRA+ EZPCZfW721xwNlTQF6QnT4enAK99HpmX2vZ/lTkhHeYc8diw99+ymVWlLZzVlm7z MBNdL+stVWyqNCF4iqtarucJAHRRlejeTsnr+CFt7Aj6erMGJcNiauW+1jyhyWu/ dYLCmLL/j+28tGiNXyNlgzNn3hymbfzzRXoTW8YKqIg4UDvIf9AaJeXlX2qzE0ur OZRpKCxa8K6strb8DENuMzFaSnuXs44TrQkM/dC9chgztFuh1TZ57sgdZ9WygPmj 3VHdkUvpqBgAj7uXVQhLuxtVoqjfgf3le7pyC/DVDZBq+07rQWtwwiWHvWwt5182 -----END CERTIFICATE-----Generated at Wed Nov 5 13:27:52 2025 by rpki-client