$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214040.roa File: AS214040.roa (raw, json) Hash identifier: t7OG16GQnl1zhNhCrZVZ44u11dA5gkzB2OnDbdz+fYs= Subject key identifier: 9B:1B:3A:B9:98:1E:6C:2B:41:3B:A0:75:A7:3D:05:C6:AC:BE:A7:43 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 573D9979856CA3FD1CCD94DBE57F4FCC88503F71 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214040.roa Signing time: Mon 25 May 2026 07:10:42 +0000 ROA not before: Mon 25 May 2026 07:05:42 +0000 ROA not after: Mon 24 May 2027 07:10:42 +0000 asID: 214040 IP address blocks: 2a06:1281:8000::/36 maxlen: 36 2a0f:6282:a000::/36 maxlen: 36 2a0f:6282:e000::/36 maxlen: 36 2a0f:6283:2000::/36 maxlen: 36 2a0f:6283:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Jun 2026 22:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:3d:99:79:85:6c:a3:fd:1c:cd:94:db:e5:7f:4f:cc:88:50:3f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: May 25 07:05:42 2026 GMT Not After : May 24 07:10:42 2027 GMT Subject: CN=9B1B3AB9981E6C2B413BA075A73D05C6ACBEA743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:90:ea:1f:2a:1f:5d:22:7d:20:30:7a:fb:18: 69:c3:7d:e0:cc:63:f1:e4:1f:76:52:09:b7:c1:20: 4d:02:64:17:78:6f:54:9e:5e:ae:9e:ed:da:61:16: fc:e2:8b:43:8f:d9:97:86:15:f1:de:b2:b5:f2:51: 76:79:1b:8b:dd:4f:eb:61:c4:95:93:52:1c:29:38: 5a:c4:0b:2e:b3:e4:e0:4b:34:36:2c:36:8d:98:68: 1e:aa:73:3a:ae:09:a7:a3:1a:5a:ed:77:0b:47:f7: 42:2c:51:fe:bd:dc:9a:0f:ca:c0:1c:56:c9:9a:76: 0e:8b:4e:50:63:c8:46:c6:a0:f0:81:7f:94:af:c2: 8b:eb:a4:80:73:51:b0:b1:55:3e:50:93:46:86:02: f4:f0:aa:13:a0:0e:89:93:5e:69:c1:dc:d8:e9:b0: d1:37:05:45:a1:8e:5c:13:74:ae:85:aa:6a:94:dc: fe:31:ff:57:b2:13:94:03:95:a6:29:d0:85:c5:ab: 17:8e:95:9d:86:31:db:f3:ae:e3:b6:e0:fc:1e:12: 81:24:0a:19:10:2e:bf:d4:7b:43:ff:aa:9a:30:8d: a8:ff:67:43:8c:aa:d5:59:b0:28:83:c2:a2:d2:26: 58:89:7f:bb:16:1a:55:43:0f:99:17:37:a5:75:3e: 41:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:1B:3A:B9:98:1E:6C:2B:41:3B:A0:75:A7:3D:05:C6:AC:BE:A7:43 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214040.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:8000::/36 2a0f:6282:a000::/36 2a0f:6282:e000::/36 2a0f:6283:2000::/36 2a0f:6283:8000::/36 Signature Algorithm: sha256WithRSAEncryption 33:98:79:fa:7b:0c:28:48:cb:fc:32:5f:07:cd:ee:d7:23:9c: 95:4c:90:e0:59:4b:86:f5:69:ff:ad:c5:58:d7:08:2f:c1:aa: 03:e4:17:af:89:b8:79:f5:ff:89:d3:b2:a8:d1:16:6b:6c:a4: 12:d6:b3:56:b3:6b:46:10:f2:92:88:1b:e8:2d:75:10:bb:ba: 6e:b5:28:71:2e:c9:5a:4a:00:3e:18:9b:c2:27:aa:af:c8:0d: 6b:2d:f8:88:8c:5c:80:b1:d4:96:ab:f8:0a:f9:cc:cb:22:7d: 51:32:da:5a:8d:6c:c4:19:89:b1:b3:3e:f5:42:1e:c4:d5:14: 6d:f7:b2:ff:c6:34:30:f9:76:b3:ca:5d:a8:a7:01:84:be:43: 8c:4a:f7:eb:45:0e:16:30:1e:8d:86:53:2b:fd:51:8f:c4:47: 3e:89:b9:a9:6c:31:cb:67:12:5d:76:66:0d:a7:6f:46:0a:ea: 77:5e:f6:53:40:ed:82:47:66:1a:f0:75:05:d1:30:16:f2:cd: 65:b8:da:55:10:26:7b:37:9f:41:60:6a:cd:07:48:34:76:4e: 07:73:77:0c:5f:f6:a7:11:79:d9:26:74:68:19:4b:ed:14:31: 51:57:70:1a:45:b6:3e:a8:93:d3:70:b8:3a:48:b7:34:14:2d: 9c:dd:e3:12 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUVz2ZeYVso/0czZTb5X9PzIhQP3EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA1MjUwNzA1NDJaFw0yNzA1MjQwNzEwNDJaMDMxMTAvBgNV BAMTKDlCMUIzQUI5OTgxRTZDMkI0MTNCQTA3NUE3M0QwNUM2QUNCRUE3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2kOofKh9dIn0gMHr7GGnDfeDM Y/HkH3ZSCbfBIE0CZBd4b1SeXq6e7dphFvzii0OP2ZeGFfHesrXyUXZ5G4vdT+th xJWTUhwpOFrECy6z5OBLNDYsNo2YaB6qczquCaejGlrtdwtH90IsUf693JoPysAc Vsmadg6LTlBjyEbGoPCBf5SvwovrpIBzUbCxVT5Qk0aGAvTwqhOgDomTXmnB3Njp sNE3BUWhjlwTdK6FqmqU3P4x/1eyE5QDlaYp0IXFqxeOlZ2GMdvzruO24PweEoEk ChkQLr/Ue0P/qpowjaj/Z0OMqtVZsCiDwqLSJliJf7sWGlVDD5kXN6V1PkELAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUmxs6uZgebCtBO6B1pz0Fxqy+p0MwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQwNDAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwQQYIKwYBBQUHAQcBAf8EMjAwMC4EAgACMCgDBgQq BhKBgAMGBCoPYoKgAwYEKg9iguADBgQqD2KDIAMGBCoPYoOAMA0GCSqGSIb3DQEB CwUAA4IBAQAzmHn6ewwoSMv8Ml8Hze7XI5yVTJDgWUuG9Wn/rcVY1wgvwaoD5Bev ibh59f+J07Ko0RZrbKQS1rNWs2tGEPKSiBvoLXUQu7putShxLslaSgA+GJvCJ6qv yA1rLfiIjFyAsdSWq/gK+czLIn1RMtpajWzEGYmxsz71Qh7E1RRt97L/xjQw+Xaz yl2opwGEvkOMSvfrRQ4WMB6NhlMr/VGPxEc+ibmpbDHLZxJddmYNp29GCup3XvZT QO2CR2Ya8HUF0TAW8s1luNpVECZ7N59BYGrNB0g0dk4Hc3cMX/anEXnZJnRoGUvt FDFRV3AaRbY+qJPTcLg6SLc0FC2c3eMS -----END CERTIFICATE-----Generated at Wed Jun 17 08:47:32 2026 by rpki-client