$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: M35Hme8tu2dDCBOV4r75iYscj76JkNEB/7dZIuglgOs= Subject key identifier: 78:23:44:C3:9F:95:87:F8:CE:2E:B6:EF:2C:84:48:C3:94:0E:6B:97 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 476AB57FB386DC51A1ACA1EA3B0B4B9F1293D3AB Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Fri 27 Feb 2026 10:14:47 +0000 ROA not before: Fri 27 Feb 2026 10:09:47 +0000 ROA not after: Fri 26 Feb 2027 10:14:47 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a09:54c4::/32 maxlen: 32 2a0f:6282:2000::/36 maxlen: 36 2a0f:6285::/32 maxlen: 32 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:6a:b5:7f:b3:86:dc:51:a1:ac:a1:ea:3b:0b:4b:9f:12:93:d3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Feb 27 10:09:47 2026 GMT Not After : Feb 26 10:14:47 2027 GMT Subject: CN=782344C39F9587F8CE2EB6EF2C8448C3940E6B97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:f9:43:64:6e:1d:da:76:c5:56:8c:13:b4: 35:e8:20:36:48:64:9e:1d:b9:84:1d:db:12:6a:d4: f5:ee:a2:c7:e1:bf:f3:2b:9d:d6:a2:a5:af:0f:f2: fb:93:34:61:38:71:10:f2:1c:63:d2:6f:d8:b5:9e: 1e:a7:01:12:1b:fb:de:59:bd:f4:56:65:62:7b:61: 3a:c2:28:91:8c:b3:48:28:5d:d2:a2:12:2f:a6:31: e4:35:f1:b0:a4:24:fe:43:15:f6:46:cc:16:f4:1b: cb:7c:bc:ed:ee:4a:e7:6b:9e:e1:4c:9e:4e:75:84: 8c:b5:ba:33:e9:ec:da:da:17:21:75:b9:30:2a:3c: 96:1b:30:98:b0:9b:53:75:e8:03:e4:c1:56:97:d4: 79:32:72:4f:4e:8d:ed:2e:13:0b:d1:e0:42:63:ff: 4f:f1:c5:0c:e9:8c:64:5b:fa:57:12:ef:08:b0:5d: 2f:25:2e:e9:8a:3f:6d:87:5b:8d:e7:8a:9c:9d:64: 5e:0f:8b:19:0e:e2:d5:0d:07:e7:ef:71:cd:3f:52: 14:9e:15:f3:1d:b2:66:a9:f0:34:1d:08:c9:b9:1e: 06:e7:83:d7:70:6d:3c:86:b3:30:27:ac:23:ee:66: 7d:f4:e1:fd:26:41:2c:d9:14:79:82:3f:4d:86:04: e0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:23:44:C3:9F:95:87:F8:CE:2E:B6:EF:2C:84:48:C3:94:0E:6B:97 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a09:54c4::/32 2a0f:6282:2000::/36 2a0f:6285::/32 Signature Algorithm: sha256WithRSAEncryption 6f:32:35:81:29:47:fd:b6:c2:ee:b9:21:e8:fc:db:22:d7:53: 54:40:a1:bb:fb:90:42:6c:1c:54:7d:e1:f5:e5:96:39:ae:8d: aa:75:38:ed:ef:55:f5:1f:4c:f0:e4:2c:fc:b2:64:51:0b:6a: 22:3b:fb:9e:1b:15:69:02:b7:8a:df:b8:b9:65:3c:df:0a:42: a2:96:9b:d6:89:86:70:20:22:b6:fb:d8:18:75:21:c6:ce:74: 67:35:55:44:72:98:3e:67:4f:1d:c7:db:95:47:0c:44:d2:07: 42:bb:a1:58:69:22:6d:12:7c:7a:74:66:97:55:6d:ef:a0:22: 75:66:d8:e2:05:b3:ef:d7:ae:4c:b9:5b:6a:38:03:ea:49:3a: fc:7c:5f:c5:af:d2:31:74:b1:9a:02:e2:05:77:a6:5d:7f:de: 07:40:39:00:db:c7:10:c9:bf:0e:54:2a:85:b9:61:91:5b:89: 65:c5:f6:74:45:eb:b0:bd:cd:a0:dd:71:51:29:f8:cd:21:68: ef:a7:27:94:9d:7d:db:1f:ff:36:be:e3:2b:53:9c:80:4f:2f: 03:68:41:00:b1:1e:2b:8a:69:46:9e:0d:c5:0d:a4:b8:2f:48: f3:5d:30:ed:d1:11:40:e0:24:cc:fc:37:58:1b:88:e6:ad:d6: 4d:04:11:ad -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUR2q1f7OG3FGhrKHqOwtLnxKT06swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAyMjcxMDA5NDdaFw0yNzAyMjYxMDE0NDdaMDMxMTAvBgNV BAMTKDc4MjM0NEMzOUY5NTg3RjhDRTJFQjZFRjJDODQ0OEMzOTQwRTZCOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17/lDZG4d2nbFVowTtDXoIDZI ZJ4duYQd2xJq1PXuosfhv/Mrndaipa8P8vuTNGE4cRDyHGPSb9i1nh6nARIb+95Z vfRWZWJ7YTrCKJGMs0goXdKiEi+mMeQ18bCkJP5DFfZGzBb0G8t8vO3uSudrnuFM nk51hIy1ujPp7NraFyF1uTAqPJYbMJiwm1N16APkwVaX1Hkyck9Oje0uEwvR4EJj /0/xxQzpjGRb+lcS7wiwXS8lLumKP22HW43nipydZF4PixkO4tUNB+fvcc0/UhSe FfMdsmap8DQdCMm5Hgbng9dwbTyGszAnrCPuZn304f0mQSzZFHmCP02GBOBxAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUeCNEw5+Vh/jOLrbvLIRIw5QOa5cwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMCMEAgACMB0DBQAq Bd/CAwUAKglUxAMGBCoPYoIgAwUAKg9ihTANBgkqhkiG9w0BAQsFAAOCAQEAbzI1 gSlH/bbC7rkh6PzbItdTVEChu/uQQmwcVH3h9eWWOa6NqnU47e9V9R9M8OQs/LJk UQtqIjv7nhsVaQK3it+4uWU83wpCopab1omGcCAitvvYGHUhxs50ZzVVRHKYPmdP HcfblUcMRNIHQruhWGkibRJ8enRml1Vt76AidWbY4gWz79euTLlbajgD6kk6/Hxf xa/SMXSxmgLiBXemXX/eB0A5ANvHEMm/DlQqhblhkVuJZcX2dEXrsL3NoN1xUSn4 zSFo76cnlJ192x//Nr7jK1OcgE8vA2hBALEeK4ppRp4NxQ2kuC9I810w7dERQOAk zPw3WBuI5q3WTQQRrQ== -----END CERTIFICATE-----Generated at Mon Mar 2 02:45:32 2026 by rpki-client