$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214040.roa File: AS214040.roa (raw, json) Hash identifier: CixqSH40rr7AARh/mHtFl2Iaz4+mKDRdL7FuPGHpE1Q= Subject key identifier: 9C:9F:C3:1A:1D:62:15:B2:04:AA:EB:04:16:8D:D0:5C:9D:FA:7D:33 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 34C669F69A77D91BE1B648F8F98494A732A60993 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214040.roa Signing time: Mon 27 Oct 2025 04:14:35 +0000 ROA not before: Mon 27 Oct 2025 04:09:35 +0000 ROA not after: Mon 26 Oct 2026 04:14:35 +0000 asID: 214040 IP address blocks: 2a06:1281:8000::/36 maxlen: 36 2a09:54c6:3000::/36 maxlen: 36 2a09:54c6:6000::/36 maxlen: 36 2a09:54c6:7000::/36 maxlen: 36 2a09:54c6:b000::/36 maxlen: 36 2a09:54c6:c000::/36 maxlen: 44 2a09:54c6:e000::/36 maxlen: 44 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 10:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c6:69:f6:9a:77:d9:1b:e1:b6:48:f8:f9:84:94:a7:32:a6:09:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 27 04:09:35 2025 GMT Not After : Oct 26 04:14:35 2026 GMT Subject: CN=9C9FC31A1D6215B204AAEB04168DD05C9DFA7D33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:06:0e:0b:f2:b1:19:12:cf:9e:3c:7e:b8:82: 1b:be:29:bd:d7:b5:0b:0f:15:20:b6:aa:5f:ec:61: 1d:1a:62:f3:fb:59:01:8b:ab:12:1b:8c:34:20:d0: 25:cb:13:7d:34:75:a0:61:73:0d:d8:76:b1:57:aa: f3:35:d9:56:55:15:a3:1e:5c:2f:ec:aa:37:a1:dc: 6e:97:82:7c:0f:f3:9f:db:41:ed:2c:18:a2:8c:a9: 41:5b:e7:01:65:5e:aa:46:8c:d2:45:75:99:07:fa: ae:00:0d:e0:85:4c:02:55:ef:68:ab:2b:ac:a4:63: 08:2a:b8:d6:54:cb:64:86:90:5e:57:4c:33:14:b6: db:6b:7d:dd:5c:61:b6:01:62:84:a0:94:1f:95:91: 5c:69:9c:8c:cb:e7:de:be:53:29:1e:2d:b8:ed:0e: 21:37:d5:f4:6f:44:a5:79:49:8c:7d:30:5a:65:d1: 66:24:4b:21:be:eb:df:8c:43:a4:86:b7:2d:dd:3d: ec:b4:54:e0:63:98:25:e3:1c:30:28:2b:9a:4d:94: 9c:7b:4b:48:8e:42:20:d6:79:c2:e8:fb:86:5c:b9: 7d:95:11:9f:96:4a:38:f1:4e:00:dc:77:d1:37:15: ba:35:da:fe:11:4e:63:d6:bb:7e:fb:1a:e9:26:53: 82:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9F:C3:1A:1D:62:15:B2:04:AA:EB:04:16:8D:D0:5C:9D:FA:7D:33 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214040.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:8000::/36 2a09:54c6:3000::/36 2a09:54c6:6000::/35 2a09:54c6:b000::-2a09:54c6:cfff:ffff:ffff:ffff:ffff:ffff 2a09:54c6:e000::/36 Signature Algorithm: sha256WithRSAEncryption 08:2f:14:b1:6b:f7:60:f8:39:2e:9d:87:43:cc:f4:fd:98:41: 6f:59:01:fa:f6:6f:78:45:6e:9d:87:0d:93:9b:84:8c:01:d7: cf:c9:b5:46:d2:3f:96:74:1b:63:42:c7:df:32:44:0d:b5:d9: 19:7b:6b:65:fe:23:e9:81:ed:c2:70:ed:f5:87:f9:2b:00:b7: ca:91:46:67:17:14:a8:c6:7c:4d:3c:1f:cb:d8:39:a5:c8:96: 81:f1:a3:c3:0e:df:5c:cc:2e:45:55:d2:03:1a:20:54:78:f7: e1:55:75:24:8f:4a:38:08:c3:18:8e:ec:8a:08:26:51:30:95: 08:9c:3b:2c:9b:89:3f:c3:26:ba:17:fd:e5:07:cd:c8:b6:83: 9b:8b:75:cb:12:06:e5:f2:96:b6:49:6d:e1:a5:80:b2:27:4f: 6e:1a:2c:cf:85:64:14:3b:9a:39:59:01:1d:db:0d:ca:00:08: e1:1d:ab:d7:78:01:83:48:dd:4b:b9:0f:fb:b6:70:00:38:2b: 15:2a:58:97:84:8e:35:fd:7f:fb:96:ba:b0:96:f6:74:56:b8: c7:a2:30:69:bc:f5:8f:d5:22:ac:b8:1c:db:7b:b1:d6:a2:52: f7:3a:54:4e:e8:5a:cd:7c:26:f9:33:68:71:7d:9d:f4:8e:02: 2d:4a:dd:86 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUNMZp9pp32Rvhtkj4+YSUpzKmCZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMjcwNDA5MzVaFw0yNjEwMjYwNDE0MzVaMDMxMTAvBgNV BAMTKDlDOUZDMzFBMUQ2MjE1QjIwNEFBRUIwNDE2OEREMDVDOURGQTdEMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Bg4L8rEZEs+ePH64ghu+Kb3X tQsPFSC2ql/sYR0aYvP7WQGLqxIbjDQg0CXLE300daBhcw3YdrFXqvM12VZVFaMe XC/sqjeh3G6XgnwP85/bQe0sGKKMqUFb5wFlXqpGjNJFdZkH+q4ADeCFTAJV72ir K6ykYwgquNZUy2SGkF5XTDMUtttrfd1cYbYBYoSglB+VkVxpnIzL596+UykeLbjt DiE31fRvRKV5SYx9MFpl0WYkSyG+69+MQ6SGty3dPey0VOBjmCXjHDAoK5pNlJx7 S0iOQiDWecLo+4ZcuX2VEZ+WSjjxTgDcd9E3Fbo12v4RTmPWu377GukmU4L/AgMB AAGjggIIMIICBDAdBgNVHQ4EFgQUnJ/DGh1iFbIEqusEFo3QXJ36fTMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQwNDAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwSwYIKwYBBQUHAQcBAf8EPDA6MDgEAgACMDIDBgQq BhKBgAMGBCoJVMYwAwYFKglUxmAwEAMGBCoJVMawAwYEKglUxsADBgQqCVTG4DAN BgkqhkiG9w0BAQsFAAOCAQEACC8UsWv3YPg5Lp2HQ8z0/ZhBb1kB+vZveEVunYcN k5uEjAHXz8m1RtI/lnQbY0LH3zJEDbXZGXtrZf4j6YHtwnDt9Yf5KwC3ypFGZxcU qMZ8TTwfy9g5pciWgfGjww7fXMwuRVXSAxogVHj34VV1JI9KOAjDGI7siggmUTCV CJw7LJuJP8Mmuhf95QfNyLaDm4t1yxIG5fKWtklt4aWAsidPbhosz4VkFDuaOVkB HdsNygAI4R2r13gBg0jdS7kP+7ZwADgrFSpYl4SONf1/+5a6sJb2dFa4x6Iwabz1 j9UirLgc23ux1qJS9zpUTuhazXwm+TNocX2d9I4CLUrdhg== -----END CERTIFICATE-----Generated at Wed Nov 5 17:48:51 2025 by rpki-client