$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS209944.roa File: AS209944.roa (raw, json) Hash identifier: z/W+ZQl7Lp5QBaJORPsjxIBK1FgPIY38IiVbwsoUAgU= Subject key identifier: F7:1B:94:60:05:A5:2B:71:D5:70:83:13:86:B4:55:C1:08:34:95:A8 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 0A5F2529FD4A7BF75B1CF02C7F8F58D98146FB24 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS209944.roa Signing time: Fri 27 Feb 2026 13:46:50 +0000 ROA not before: Fri 27 Feb 2026 13:41:50 +0000 ROA not after: Fri 26 Feb 2027 13:46:50 +0000 asID: 209944 IP address blocks: 2a09:54c6:a701::/48 maxlen: 48 2a0f:6283:1102::/48 maxlen: 48 2a0f:6284:4219::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 06:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:5f:25:29:fd:4a:7b:f7:5b:1c:f0:2c:7f:8f:58:d9:81:46:fb:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Feb 27 13:41:50 2026 GMT Not After : Feb 26 13:46:50 2027 GMT Subject: CN=F71B946005A52B71D570831386B455C1083495A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8f:24:b1:26:b0:d2:34:be:1a:30:02:7d:93: c8:7c:bf:b0:d6:d9:82:13:52:f0:d7:7c:83:9b:4d: 88:98:c9:6e:b1:ac:96:54:87:34:ae:9f:04:46:f0: 2b:bf:96:82:cb:51:f2:4f:ec:99:9c:50:28:0e:7c: c5:7c:2d:7c:83:92:d5:0f:fb:3a:5c:a8:b8:4b:26: 3a:37:3a:0a:5a:9d:c7:12:08:1a:60:72:35:87:46: 5f:e7:39:f2:3c:9d:f6:06:f1:e7:be:ad:55:c1:27: ad:08:9b:2b:68:4f:96:92:22:be:dd:80:ac:00:0f: 7f:c0:c2:4b:81:5b:45:c1:8e:58:4d:ff:b2:df:48: 35:a2:33:6f:97:55:f9:f2:f1:05:a7:e2:4f:0a:62: 15:f5:45:ff:bd:22:d6:3f:ee:9e:3d:aa:5f:f9:98: ab:ee:df:d7:c8:5b:51:07:dd:5e:09:0a:0f:fc:10: 71:ab:1b:27:26:2c:65:32:2d:98:c3:9e:51:f1:f7: 3b:0a:c3:b0:7b:a1:de:74:c1:02:e2:30:d8:ab:cc: 12:f6:6b:07:b2:70:56:c8:8d:5e:e3:f6:1a:1b:1b: e4:6b:eb:93:1c:8e:0a:16:51:8c:91:b9:2e:07:66: 2d:97:0c:a8:a3:8e:16:e0:2e:91:c7:8f:f7:56:5d: b8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1B:94:60:05:A5:2B:71:D5:70:83:13:86:B4:55:C1:08:34:95:A8 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS209944.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:a701::/48 2a0f:6283:1102::/48 2a0f:6284:4219::/48 Signature Algorithm: sha256WithRSAEncryption 48:42:27:e9:6f:6e:70:e8:b3:8d:34:29:4c:5d:a6:04:91:17: 41:16:13:5e:a1:5f:1b:da:90:78:b9:1b:85:53:11:e2:21:5c: a8:c4:b8:bd:de:24:fe:80:07:25:97:41:c1:56:32:05:2f:c8: 01:8e:8b:cc:46:1a:ae:82:58:fe:e9:d8:2f:54:b0:22:ac:a3: bd:0d:11:d2:6d:8a:37:c7:10:73:23:b3:ed:28:a9:8f:57:2d: 68:3d:4a:b7:ba:30:78:8d:ea:64:0d:a3:71:5c:56:7b:9e:23: f4:73:17:af:d8:21:e7:17:ae:44:0b:ad:85:83:42:51:d4:55: 25:c4:c7:03:66:98:42:53:ab:b4:44:1f:c2:af:de:8a:2a:92: a6:dd:2f:ae:8f:78:94:d7:f4:d8:75:20:f8:37:fd:e8:3e:86: 88:09:4c:95:d6:bc:30:01:2c:5c:71:8f:b8:ec:2c:d9:3c:62: 52:93:44:c0:c2:85:8f:9b:ff:23:36:35:40:da:c2:b4:77:82: de:54:94:b1:f4:3b:ba:80:4b:58:79:2f:3f:3d:09:68:dc:3e: c4:a7:7d:bf:a1:d0:a6:3e:e7:3f:63:e3:7d:a4:cd:6b:ee:bd: 17:36:36:9a:7b:66:a8:43:f2:2c:7b:77:09:92:09:ac:49:e9: a8:c8:11:ed -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgIUCl8lKf1Ke/dbHPAsf49Y2YFG+yQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAyMjcxMzQxNTBaFw0yNzAyMjYxMzQ2NTBaMDMxMTAvBgNV BAMTKEY3MUI5NDYwMDVBNTJCNzFENTcwODMxMzg2QjQ1NUMxMDgzNDk1QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jySxJrDSNL4aMAJ9k8h8v7DW 2YITUvDXfIObTYiYyW6xrJZUhzSunwRG8Cu/loLLUfJP7JmcUCgOfMV8LXyDktUP +zpcqLhLJjo3OgpanccSCBpgcjWHRl/nOfI8nfYG8ee+rVXBJ60ImytoT5aSIr7d gKwAD3/AwkuBW0XBjlhN/7LfSDWiM2+XVfny8QWn4k8KYhX1Rf+9ItY/7p49ql/5 mKvu39fIW1EH3V4JCg/8EHGrGycmLGUyLZjDnlHx9zsKw7B7od50wQLiMNirzBL2 aweycFbIjV7j9hobG+Rr65McjgoWUYyRuS4HZi2XDKijjhbgLpHHj/dWXbjTAgMB AAGjggHxMIIB7TAdBgNVHQ4EFgQU9xuUYAWlK3HVcIMThrRVwQg0lagwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDk5NDQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMCEEAgACMBsDBwAq CVTGpwEDBwAqD2KDEQIDBwAqD2KEQhkwDQYJKoZIhvcNAQELBQADggEBAEhCJ+lv bnDos400KUxdpgSRF0EWE16hXxvakHi5G4VTEeIhXKjEuL3eJP6AByWXQcFWMgUv yAGOi8xGGq6CWP7p2C9UsCKso70NEdJtijfHEHMjs+0oqY9XLWg9Sre6MHiN6mQN o3FcVnueI/RzF6/YIecXrkQLrYWDQlHUVSXExwNmmEJTq7REH8Kv3ooqkqbdL66P eJTX9Nh1IPg3/eg+hogJTJXWvDABLFxxj7jsLNk8YlKTRMDChY+b/yM2NUDawrR3 gt5UlLH0O7qAS1h5Lz89CWjcPsSnfb+h0KY+5z9j432kzWvuvRc2Npp7ZqhD8ix7 dwmSCaxJ6ajIEe0= -----END CERTIFICATE-----Generated at Sun Mar 1 16:21:47 2026 by rpki-client