$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: u20w9X5LgphAOu1wT+Nat36uBAdL105Ls/HR54A82+Y= Subject key identifier: 84:0A:97:42:C7:12:2B:5D:3A:D5:41:2C:8C:CF:8D:47:20:22:04:90 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 70DC0009AD1E562CC14571E2D395746178837E8B Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Wed 06 Aug 2025 09:33:01 +0000 ROA not before: Wed 06 Aug 2025 09:28:01 +0000 ROA not after: Wed 05 Aug 2026 09:33:01 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a06:1284::/32 maxlen: 32 2a09:54c7:c000::/34 maxlen: 34 2a0f:6284::/34 maxlen: 34 2a0f:6284:5000::/36 maxlen: 36 2a0f:6285::/32 maxlen: 32 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 11 Aug 2025 04:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:dc:00:09:ad:1e:56:2c:c1:45:71:e2:d3:95:74:61:78:83:7e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 6 09:28:01 2025 GMT Not After : Aug 5 09:33:01 2026 GMT Subject: CN=840A9742C7122B5D3AD5412C8CCF8D4720220490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1c:07:0d:3c:f7:da:c2:bc:00:a6:50:7c:31: f2:2a:38:e1:3d:b9:ec:f4:7a:3c:ee:63:c1:99:7b: cd:f4:97:5a:58:6c:63:e9:19:7f:d0:85:a2:14:32: 3a:99:76:99:be:7c:8e:a9:6e:f5:58:0c:7d:42:9a: 71:5a:7d:be:cb:ea:d4:85:98:f1:ca:3a:7e:2f:5f: eb:65:e9:09:8f:56:cc:70:29:1f:f5:2f:7c:61:d2: d6:b3:cf:11:70:0f:ca:5b:e4:21:04:98:ac:fe:6f: 0f:a1:e8:5b:15:74:5c:08:cb:a9:15:e5:40:2e:cf: 29:6a:85:1b:71:ed:31:9c:56:85:ee:b9:f8:98:c5: 21:98:c4:ec:13:18:e9:33:2e:1e:08:74:98:ed:fe: 81:fa:09:34:34:d8:4d:5f:c1:7a:d9:ef:ec:1f:9d: e3:79:58:41:14:f9:b7:8f:1f:dc:4b:b0:3e:3d:e8: 6c:37:00:88:ba:6f:e5:5b:8a:50:57:f7:03:4a:83: 54:ac:9a:8f:a6:24:b9:44:5a:cb:e4:b7:bd:3b:c0: f1:87:07:75:7d:f5:4d:09:8b:a5:4f:c8:ef:38:8b: 8f:9e:49:39:a1:8b:14:b2:7a:a6:61:9c:a3:f1:67: 2b:f6:92:3b:27:66:91:90:72:58:59:0a:b1:83:05: e4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0A:97:42:C7:12:2B:5D:3A:D5:41:2C:8C:CF:8D:47:20:22:04:90 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a06:1284::/32 2a09:54c7:c000::/34 2a0f:6284::/34 2a0f:6284:5000::/36 2a0f:6285::/32 Signature Algorithm: sha256WithRSAEncryption 28:7e:94:da:bc:b2:45:eb:66:e6:20:ad:e5:46:9e:83:ee:96: 64:6d:3d:6a:e2:21:98:34:12:ac:d7:06:ed:db:19:3a:df:77: f2:8d:02:3f:42:ad:fe:ae:2f:08:a8:c5:ef:77:ee:b0:1c:92: d6:3b:04:91:38:43:00:ba:18:fb:52:5f:5d:24:99:97:19:07: 71:4d:d0:1f:5b:6e:27:e6:72:22:09:c3:92:25:86:00:b8:78: 88:6b:1d:ab:6e:9b:d1:01:89:e4:4f:b6:5e:8c:b7:33:45:b7: 07:9c:b7:e2:f7:00:01:5e:e1:71:21:26:b7:b5:26:7b:26:42: 74:d4:f9:69:e1:58:b8:38:df:ca:a1:50:1f:38:45:c3:27:29: 2c:64:43:44:59:d4:bd:27:ec:e3:70:09:75:df:33:9a:93:67: 93:5c:32:59:a4:ee:f7:4d:72:45:6d:3b:42:5c:37:d7:07:a3: d6:9c:ee:13:ab:22:dc:9f:b7:f9:62:75:08:7e:46:58:f3:b9: e7:a0:a5:87:58:84:16:a6:5c:4a:83:ed:49:59:dd:db:de:f2: f2:6f:98:a1:4f:74:04:af:76:df:53:65:98:cd:2f:19:c6:b2: 34:a4:5d:99:49:27:46:9f:d2:65:10:1c:f1:91:86:56:77:8a: 63:4f:49:a4 -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUcNwACa0eVizBRXHi05V0YXiDfoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MDYwOTI4MDFaFw0yNjA4MDUwOTMzMDFaMDMxMTAvBgNV BAMTKDg0MEE5NzQyQzcxMjJCNUQzQUQ1NDEyQzhDQ0Y4RDQ3MjAyMjA0OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHHAcNPPfawrwAplB8MfIqOOE9 uez0ejzuY8GZe830l1pYbGPpGX/QhaIUMjqZdpm+fI6pbvVYDH1CmnFafb7L6tSF mPHKOn4vX+tl6QmPVsxwKR/1L3xh0tazzxFwD8pb5CEEmKz+bw+h6FsVdFwIy6kV 5UAuzylqhRtx7TGcVoXuufiYxSGYxOwTGOkzLh4IdJjt/oH6CTQ02E1fwXrZ7+wf neN5WEEU+bePH9xLsD496Gw3AIi6b+VbilBX9wNKg1Ssmo+mJLlEWsvkt707wPGH B3V99U0Ji6VPyO84i4+eSTmhixSyeqZhnKPxZyv2kjsnZpGQclhZCrGDBeTXAgMB AAGjggIDMIIB/zAdBgNVHQ4EFgQUhAqXQscSK1061UEsjM+NRyAiBJAwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MDMEAgACMC0DBQAq Bd/CAwUAKgYShAMGBioJVMfAAwYGKg9ihAADBgQqD2KEUAMFACoPYoUwDQYJKoZI hvcNAQELBQADggEBACh+lNq8skXrZuYgreVGnoPulmRtPWriIZg0EqzXBu3bGTrf d/KNAj9Crf6uLwioxe937rAcktY7BJE4QwC6GPtSX10kmZcZB3FN0B9bbifmciIJ w5IlhgC4eIhrHatum9EBieRPtl6MtzNFtwect+L3AAFe4XEhJre1JnsmQnTU+Wnh WLg438qhUB84RcMnKSxkQ0RZ1L0n7ONwCXXfM5qTZ5NcMlmk7vdNckVtO0JcN9cH o9ac7hOrItyft/lidQh+RljzueegpYdYhBamXEqD7UlZ3dve8vJvmKFPdASvdt9T ZZjNLxnGsjSkXZlJJ0af0mUQHPGRhlZ3imNPSaQ= -----END CERTIFICATE-----Generated at Sun Aug 10 13:44:27 2025 by rpki-client