$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: dHUnyH36Mqv/p6Eza+lqvW26R7rVHXHCJS1Rs4TE0aI= Subject key identifier: 42:C4:E6:A6:79:CA:D9:FE:F7:2D:DE:48:55:83:72:37:17:E2:46:F6 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 2617D58C80E04B3513AC9878122135305FC1BF5A Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Tue 14 Apr 2026 01:01:36 +0000 ROA not before: Tue 14 Apr 2026 00:56:36 +0000 ROA not after: Tue 13 Apr 2027 01:01:36 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a09:54c4::/32 maxlen: 32 2a0f:6284:5000::/36 maxlen: 36 2a0f:6285::/32 maxlen: 32 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:17:d5:8c:80:e0:4b:35:13:ac:98:78:12:21:35:30:5f:c1:bf:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Apr 14 00:56:36 2026 GMT Not After : Apr 13 01:01:36 2027 GMT Subject: CN=42C4E6A679CAD9FEF72DDE485583723717E246F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:97:d0:4f:4a:ef:74:36:e0:8b:00:7d:42:de: 20:7d:50:50:a8:f5:b8:27:30:ea:fb:6d:8f:1b:d6: 10:55:7a:f6:09:d5:95:2b:b3:4d:c3:b9:58:fd:a8: 12:68:93:8d:5e:f9:6d:fd:74:02:6e:c3:d0:26:82: 0d:3b:5d:17:25:3d:1b:13:ac:3c:39:9a:77:51:4c: f5:6b:fa:9d:9b:64:b6:1c:59:a1:e8:c6:6e:1d:88: ca:fa:33:88:9e:f4:f3:48:79:78:dc:37:89:96:06: 40:f4:e6:93:8a:e1:c2:cf:d2:26:3b:22:b1:d8:61: 2a:60:3f:ea:fc:9d:c1:3d:88:97:f5:a2:df:c0:45: 5d:08:82:f4:dc:3b:84:b5:52:61:95:75:34:a9:3d: ca:93:e4:d6:40:4c:fc:7e:6c:41:40:c3:ef:6f:41: c7:f3:26:04:f2:2f:2e:71:89:78:09:b4:78:cb:5c: 4b:6b:5c:3d:c0:9c:8a:88:ed:97:af:67:31:5d:a9: e3:c5:85:b0:04:c7:37:b4:9a:86:dd:96:3c:53:79: 6e:18:3d:fd:83:02:8a:91:0c:5e:ef:b9:89:98:99: 83:36:e6:3c:48:ac:da:9f:2e:9b:95:9a:73:da:75: e0:b1:01:a5:88:b1:fd:77:98:f6:da:bc:32:16:c2: de:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C4:E6:A6:79:CA:D9:FE:F7:2D:DE:48:55:83:72:37:17:E2:46:F6 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a09:54c4::/32 2a0f:6284:5000::/36 2a0f:6285::/32 Signature Algorithm: sha256WithRSAEncryption 6c:4f:5d:7d:ad:2a:0c:2c:fc:33:f7:ac:ad:80:d8:29:3f:17: 65:54:0f:ab:ee:c1:c7:80:cd:4d:a5:f3:30:ef:b0:e7:8e:18: be:74:16:87:31:5c:0e:86:2d:65:80:c8:89:14:73:4c:c1:5a: b3:79:e8:57:4c:5c:9d:48:30:25:e6:81:cf:7d:4c:57:1e:ee: 0c:18:5b:fd:f8:71:09:2b:98:49:60:19:45:15:2f:d5:2d:50: 24:d2:68:61:98:40:13:0a:d4:19:79:f5:8c:ef:a8:6e:15:be: 64:1e:29:39:e0:69:d8:50:46:ef:7d:19:ff:67:3b:1e:61:aa: 14:3b:7b:c8:8d:a0:54:61:35:30:d5:0c:f5:23:4f:24:9f:cb: 6e:69:35:f8:5a:e9:4c:50:75:99:07:ca:99:f6:32:a6:f9:61: 0b:09:c7:d7:30:da:9e:fc:ce:38:3c:7a:a9:db:31:1b:1f:53: 94:ba:f0:c5:cd:61:92:41:0c:62:de:ed:a4:ec:38:88:90:7b: 2f:67:94:07:55:eb:fd:c9:61:1b:9d:1d:03:e1:ee:01:cb:13: 91:3f:da:c1:d9:84:d4:9d:66:86:1b:92:ae:b0:34:9b:ff:d9: 94:d0:b7:12:d6:89:df:cd:84:f7:3d:93:0a:d0:4e:5c:76:ed: 49:90:ad:d5 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUJhfVjIDgSzUTrJh4EiE1MF/Bv1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA0MTQwMDU2MzZaFw0yNzA0MTMwMTAxMzZaMDMxMTAvBgNV BAMTKDQyQzRFNkE2NzlDQUQ5RkVGNzJEREU0ODU1ODM3MjM3MTdFMjQ2RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUl9BPSu90NuCLAH1C3iB9UFCo 9bgnMOr7bY8b1hBVevYJ1ZUrs03DuVj9qBJok41e+W39dAJuw9Amgg07XRclPRsT rDw5mndRTPVr+p2bZLYcWaHoxm4diMr6M4ie9PNIeXjcN4mWBkD05pOK4cLP0iY7 IrHYYSpgP+r8ncE9iJf1ot/ARV0IgvTcO4S1UmGVdTSpPcqT5NZATPx+bEFAw+9v QcfzJgTyLy5xiXgJtHjLXEtrXD3AnIqI7ZevZzFdqePFhbAExze0mobdljxTeW4Y Pf2DAoqRDF7vuYmYmYM25jxIrNqfLpuVmnPadeCxAaWIsf13mPbavDIWwt41AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUQsTmpnnK2f73Ld5IVYNyNxfiRvYwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMCMEAgACMB0DBQAq Bd/CAwUAKglUxAMGBCoPYoRQAwUAKg9ihTANBgkqhkiG9w0BAQsFAAOCAQEAbE9d fa0qDCz8M/esrYDYKT8XZVQPq+7Bx4DNTaXzMO+w544YvnQWhzFcDoYtZYDIiRRz TMFas3noV0xcnUgwJeaBz31MVx7uDBhb/fhxCSuYSWAZRRUv1S1QJNJoYZhAEwrU GXn1jO+obhW+ZB4pOeBp2FBG730Z/2c7HmGqFDt7yI2gVGE1MNUM9SNPJJ/Lbmk1 +FrpTFB1mQfKmfYypvlhCwnH1zDanvzOODx6qdsxGx9TlLrwxc1hkkEMYt7tpOw4 iJB7L2eUB1Xr/clhG50dA+HuAcsTkT/awdmE1J1mhhuSrrA0m//ZlNC3EtaJ382E 9z2TCtBOXHbtSZCt1Q== -----END CERTIFICATE-----Generated at Fri Apr 17 07:13:05 2026 by rpki-client