$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214223.roa File: AS214223.roa (raw, json) Hash identifier: FggJG3olxCoqncpKex71vZyLZBmaHWHiHk36DZ2eeW8= Subject key identifier: AF:06:FF:F8:15:FC:47:94:0D:D9:5C:35:85:A4:04:4B:68:D2:93:60 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 33FA28D2CDB9F72FBF2643FA78CADB1F1D5C5CFA Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa Signing time: Sat 21 Feb 2026 12:04:00 +0000 ROA not before: Sat 21 Feb 2026 11:59:00 +0000 ROA not after: Sat 20 Feb 2027 12:04:00 +0000 asID: 214223 IP address blocks: 2a05:dfc3:fa00::/40 maxlen: 48 2a0a:6044:aa10::/48 maxlen: 48 2a0f:6283:1000::/40 maxlen: 40 2a0f:6283:1300::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 09:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fa:28:d2:cd:b9:f7:2f:bf:26:43:fa:78:ca:db:1f:1d:5c:5c:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Feb 21 11:59:00 2026 GMT Not After : Feb 20 12:04:00 2027 GMT Subject: CN=AF06FFF815FC47940DD95C3585A4044B68D29360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:68:f4:5c:8f:31:8f:cc:f1:90:7b:f7:b3:e2: 66:c1:dc:cb:35:0e:cc:53:0b:1e:88:71:4c:17:af: f0:54:f3:ba:69:5a:a1:9e:a0:6b:0f:54:8a:22:f8: 22:a3:a9:ae:9f:cc:38:4f:ab:30:0f:e8:28:dd:73: d6:1e:ac:00:2a:68:c4:9d:89:b0:7d:f8:ea:a6:80: d9:06:25:42:e9:ad:66:ea:dd:86:44:be:c2:d5:a4: bc:61:74:9f:7d:79:ca:80:2f:32:d6:12:e4:a1:45: e2:aa:d6:f2:67:b1:f5:7c:a9:d4:be:b4:7c:6b:98: 4d:e1:80:32:ce:5d:00:65:ae:9d:a2:bd:39:80:75: 8f:1a:22:86:a2:35:4a:92:2a:2c:45:48:b1:04:c6: 38:7c:51:5b:6d:01:7d:d9:e8:8c:38:d8:10:64:e7: d0:b7:4d:6c:4a:36:86:08:35:84:ba:9f:06:33:f5: 1a:12:3f:f8:fe:20:f5:f1:a0:86:8b:6d:d2:a1:e9: 56:da:ad:de:6d:35:a6:18:5c:ae:bb:58:89:9e:67: 12:22:7f:a8:a9:9f:10:e9:62:1d:9b:a8:6d:34:06: e7:b9:d7:ef:b6:1f:2d:71:e9:c5:b9:27:82:45:16: e7:a4:51:a1:f4:c9:25:1b:33:2b:a6:c1:e4:a4:89: bd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:06:FF:F8:15:FC:47:94:0D:D9:5C:35:85:A4:04:4B:68:D2:93:60 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fa00::/40 2a0a:6044:aa10::/48 2a0f:6283:1000::/40 2a0f:6283:1300::/40 Signature Algorithm: sha256WithRSAEncryption 11:29:b6:4a:ea:28:60:36:b5:28:ce:72:01:b6:6f:bc:2b:23: 12:60:c7:59:3b:f9:e2:52:46:6f:f7:52:f7:5b:ac:f2:92:46: 5f:0b:c9:e6:b4:03:72:73:45:2f:f0:b2:4b:a9:e3:85:69:ec: 90:b1:3d:b0:1f:c7:7f:9a:b5:6a:fa:37:bc:c9:7f:7a:1a:5d: ff:2a:07:52:fc:33:98:0a:09:6b:9e:85:38:22:86:88:7e:36: 59:93:34:a8:da:d8:8f:a0:76:5a:71:4d:94:dc:35:82:a6:27: 29:ba:d0:a9:30:4b:be:14:14:97:56:98:73:f6:66:30:0c:44: 5e:68:e2:cf:b1:f6:7b:16:e5:53:4c:ab:72:1b:af:48:72:d1: 58:86:52:1b:81:ad:60:7f:97:6e:8a:db:b2:c2:af:67:b7:b2: 4d:46:b1:56:05:e7:70:4a:2a:75:cf:1b:15:65:88:44:14:71: 4b:24:0f:d0:5a:20:8b:8e:5d:c1:2f:fa:45:38:f6:37:9c:1c: cb:ef:3d:c1:f2:b2:d3:81:aa:15:39:bc:7c:5b:56:7e:94:14: 55:ed:a0:79:e5:17:2f:4e:0a:b6:b0:cf:4d:b9:76:2f:b2:a7: d9:b9:b3:1c:84:44:1a:3f:a3:15:c4:1f:f7:5d:92:81:62:85: d1:ad:b4:85 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgIUM/oo0s259y+/JkP6eMrbHx1cXPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAyMjExMTU5MDBaFw0yNzAyMjAxMjA0MDBaMDMxMTAvBgNV BAMTKEFGMDZGRkY4MTVGQzQ3OTQwREQ5NUMzNTg1QTQwNDRCNjhEMjkzNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMaPRcjzGPzPGQe/ez4mbB3Ms1 DsxTCx6IcUwXr/BU87ppWqGeoGsPVIoi+CKjqa6fzDhPqzAP6Cjdc9YerAAqaMSd ibB9+OqmgNkGJULprWbq3YZEvsLVpLxhdJ99ecqALzLWEuShReKq1vJnsfV8qdS+ tHxrmE3hgDLOXQBlrp2ivTmAdY8aIoaiNUqSKixFSLEExjh8UVttAX3Z6Iw42BBk 59C3TWxKNoYINYS6nwYz9RoSP/j+IPXxoIaLbdKh6Vbard5tNaYYXK67WImeZxIi f6ipnxDpYh2bqG00Bue51++2Hy1x6cW5J4JFFuekUaH0ySUbMyumweSkib3hAgMB AAGjggH3MIIB8zAdBgNVHQ4EFgQUrwb/+BX8R5QN2Vw1haQES2jSk2AwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyMjMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8EKzApMCcEAgACMCEDBgAq Bd/D+gMHACoKYESqEAMGACoPYoMQAwYAKg9igxMwDQYJKoZIhvcNAQELBQADggEB ABEptkrqKGA2tSjOcgG2b7wrIxJgx1k7+eJSRm/3UvdbrPKSRl8Lyea0A3JzRS/w skup44Vp7JCxPbAfx3+atWr6N7zJf3oaXf8qB1L8M5gKCWuehTgihoh+NlmTNKja 2I+gdlpxTZTcNYKmJym60KkwS74UFJdWmHP2ZjAMRF5o4s+x9nsW5VNMq3Ibr0hy 0ViGUhuBrWB/l26K27LCr2e3sk1GsVYF53BKKnXPGxVliEQUcUskD9BaIIuOXcEv +kU49jecHMvvPcHystOBqhU5vHxbVn6UFFXtoHnlFy9OCrawz025di+yp9m5sxyE RBo/oxXEH/ddkoFihdGttIU= -----END CERTIFICATE-----Generated at Sun Mar 1 18:12:42 2026 by rpki-client