$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214016.roa File: AS214016.roa (raw, json) Hash identifier: zcvEvp2/j2LK/MX1xg8MHZOQ5HzDbloQDfeG4i2gK7I= Subject key identifier: 27:39:8F:AC:FB:EE:AC:28:FC:D2:F2:F6:15:7F:6B:F6:F4:9A:35:9C Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 735EAC97ABE4841A142FE343597978D17869E284 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214016.roa Signing time: Thu 24 Jul 2025 13:09:28 +0000 ROA not before: Thu 24 Jul 2025 13:04:28 +0000 ROA not after: Thu 23 Jul 2026 13:09:28 +0000 asID: 214016 IP address blocks: 2a0f:6283::/36 maxlen: 36 2a0f:6283:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 08 Aug 2025 21:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:5e:ac:97:ab:e4:84:1a:14:2f:e3:43:59:79:78:d1:78:69:e2:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 24 13:04:28 2025 GMT Not After : Jul 23 13:09:28 2026 GMT Subject: CN=27398FACFBEEAC28FCD2F2F6157F6BF6F49A359C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:b7:10:99:07:76:a0:26:84:2f:9b:fe:8f: c1:48:01:f1:ee:ba:05:87:bf:0e:90:0d:0e:a3:1a: 49:2d:83:70:44:52:0e:68:2a:93:8e:4b:da:5d:f8: 58:da:69:5f:23:d1:4a:10:28:da:3e:18:44:3c:9d: aa:d8:c3:4c:14:f6:6c:96:10:8b:22:9e:8f:e8:0b: d2:8a:ae:f8:80:9e:7e:c0:09:f8:a0:09:e4:f8:62: d8:59:da:a3:e1:c7:f5:d8:4a:0b:c4:01:e6:83:0b: e9:31:85:a7:e5:e9:54:48:bc:c9:d6:2d:b2:7f:bb: 15:b0:8a:2b:e5:a7:0c:7d:61:28:ae:4a:bc:14:32: 01:66:87:5f:8e:0a:26:de:76:45:91:17:e1:fb:8b: 45:57:54:a8:b0:fa:53:11:73:ce:11:8d:b8:8e:a6: 7a:17:4c:fa:d0:06:0b:03:b6:be:3e:d5:86:00:8f: 7f:84:f7:78:77:b8:35:53:8b:8e:0b:04:45:ab:17: b9:cd:96:22:5d:5d:68:c0:3f:22:2f:a9:aa:06:2c: ea:39:51:a9:81:a8:d9:2d:99:d3:fc:32:ba:51:61: 09:da:6a:e9:51:9d:94:e8:5a:b4:ca:b7:a2:e7:47: f0:b3:2a:5b:ed:9a:e5:1a:08:9e:74:29:74:b2:27: fe:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:39:8F:AC:FB:EE:AC:28:FC:D2:F2:F6:15:7F:6B:F6:F4:9A:35:9C X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283::/36 2a0f:6283:3000::/36 Signature Algorithm: sha256WithRSAEncryption 20:bf:8f:dd:02:90:74:c9:59:0c:54:c3:04:4f:d4:d2:ed:9f: d6:21:cc:5e:f0:23:0a:f1:2d:64:d9:3d:96:26:bf:b0:ac:3f: da:2d:db:98:61:8e:32:e9:bc:52:7a:c2:27:41:78:03:56:6d: 4b:e6:5b:21:d6:07:1a:c4:83:2a:18:65:67:44:82:b4:f9:a3: af:c3:5c:54:37:f5:cd:a2:9d:03:1e:d9:82:7b:5f:be:4a:8b: 8f:b2:ca:88:b3:00:63:db:9a:87:93:36:25:57:75:6f:7d:03: 3e:fe:ba:bc:bc:43:06:24:1f:b2:22:84:5f:b8:b8:45:bb:32: 09:44:9a:52:f3:91:49:de:91:4c:49:c0:78:23:1f:92:e1:b7: 8e:32:62:b7:93:ab:43:c2:a0:53:b6:10:ed:55:c6:c9:4c:3c: b9:27:70:f0:68:96:14:cc:70:b7:f7:71:47:76:a4:3a:f4:cd: 32:79:f9:28:49:ce:8c:9f:db:b6:11:8b:bc:d7:b9:30:13:26: 53:80:42:c3:37:0d:f7:04:02:bf:49:89:a3:e5:5e:6d:04:73: 8f:82:ce:47:be:c2:9a:82:61:b4:75:fe:26:fb:18:74:ad:c2: fb:3e:e5:15:b6:c3:45:15:7d:d7:38:8e:09:d5:33:97:14:8a: 76:98:14:e2 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUc16sl6vkhBoUL+NDWXl40Xhp4oQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MjQxMzA0MjhaFw0yNjA3MjMxMzA5MjhaMDMxMTAvBgNV BAMTKDI3Mzk4RkFDRkJFRUFDMjhGQ0QyRjJGNjE1N0Y2QkY2RjQ5QTM1OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsg7cQmQd2oCaEL5v+j8FIAfHu ugWHvw6QDQ6jGkktg3BEUg5oKpOOS9pd+FjaaV8j0UoQKNo+GEQ8narYw0wU9myW EIsino/oC9KKrviAnn7ACfigCeT4YthZ2qPhx/XYSgvEAeaDC+kxhafl6VRIvMnW LbJ/uxWwiivlpwx9YSiuSrwUMgFmh1+OCibedkWRF+H7i0VXVKiw+lMRc84RjbiO pnoXTPrQBgsDtr4+1YYAj3+E93h3uDVTi44LBEWrF7nNliJdXWjAPyIvqaoGLOo5 UamBqNktmdP8MrpRYQnaaulRnZToWrTKt6LnR/CzKlvtmuUaCJ50KXSyJ/6hAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUJzmPrPvurCj80vL2FX9r9vSaNZwwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQwMTYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgQq D2KDAAMGBCoPYoMwMA0GCSqGSIb3DQEBCwUAA4IBAQAgv4/dApB0yVkMVMMET9TS 7Z/WIcxe8CMK8S1k2T2WJr+wrD/aLduYYY4y6bxSesInQXgDVm1L5lsh1gcaxIMq GGVnRIK0+aOvw1xUN/XNop0DHtmCe1++SouPssqIswBj25qHkzYlV3VvfQM+/rq8 vEMGJB+yIoRfuLhFuzIJRJpS85FJ3pFMScB4Ix+S4beOMmK3k6tDwqBTthDtVcbJ TDy5J3DwaJYUzHC393FHdqQ69M0yefkoSc6Mn9u2EYu817kwEyZTgELDNw33BAK/ SYmj5V5tBHOPgs5HvsKagmG0df4m+xh0rcL7PuUVtsNFFX3XOI4J1TOXFIp2mBTi -----END CERTIFICATE-----Generated at Fri Aug 8 13:09:21 2025 by rpki-client