$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214223.roa File: AS214223.roa (raw, json) Hash identifier: 6mBnuf2zuPVIEX8xWDbCn11eBhORFuQ/0025zoMzRYs= Subject key identifier: 1A:53:58:30:13:54:31:3F:66:4D:85:84:F3:3C:40:79:9E:3F:0E:FE Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 04C36C68B3398AA091F9552562B824A2864F382C Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa Signing time: Sat 12 Jul 2025 20:00:51 +0000 ROA not before: Sat 12 Jul 2025 19:55:51 +0000 ROA not after: Sat 11 Jul 2026 20:00:51 +0000 asID: 214223 IP address blocks: 2a05:dfc3:fa00::/40 maxlen: 48 2a0a:6044:6400::/40 maxlen: 48 2a0a:6044:aa10::/48 maxlen: 48 2a0f:6283:1000::/40 maxlen: 40 2a0f:6283:1300::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 08 Aug 2025 11:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c3:6c:68:b3:39:8a:a0:91:f9:55:25:62:b8:24:a2:86:4f:38:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 12 19:55:51 2025 GMT Not After : Jul 11 20:00:51 2026 GMT Subject: CN=1A5358301354313F664D8584F33C40799E3F0EFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9e:12:a3:3d:e7:07:78:c2:2b:7f:a0:6e:a1: a0:6c:e7:7e:3f:b8:0d:9f:85:08:d8:c8:35:79:d4: 03:7c:51:3c:58:63:63:2e:35:47:98:a1:28:0f:5d: 4d:fd:99:88:0a:aa:fd:3a:a5:e5:9e:4d:00:53:f3: e2:d5:4e:25:3e:73:0a:b3:b7:0f:be:56:69:5a:bb: d1:ae:60:31:71:af:81:c9:bd:b7:a6:c5:78:80:88: ae:e7:d1:c9:61:ad:0e:b7:6c:e0:bc:36:21:cc:23: 3a:3e:4a:21:d1:e1:ce:1a:02:86:79:81:36:f1:55: a4:3f:a5:47:b8:6d:14:a1:c8:e4:35:a1:20:16:4f: 50:a3:13:c8:3c:44:9b:a0:21:88:3d:93:76:5b:f3: cc:8c:4c:47:c2:0b:2e:4b:75:de:3f:82:63:e3:b9: a5:08:e7:b9:69:e8:86:1e:82:d1:e9:1c:e9:58:1c: d5:a1:dc:b9:b3:b3:db:19:92:cc:23:9e:0f:84:f0: a0:66:83:04:08:75:62:7b:49:a9:7b:6d:8d:02:53: 8a:c3:f8:f7:75:00:52:41:3d:62:00:b8:82:81:72: 78:4e:cd:38:ab:87:63:d8:72:1e:6b:e7:40:24:c5: f0:6a:b8:1e:9d:c2:2c:46:4e:71:83:c3:31:67:bb: ed:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:53:58:30:13:54:31:3F:66:4D:85:84:F3:3C:40:79:9E:3F:0E:FE X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fa00::/40 2a0a:6044:6400::/40 2a0a:6044:aa10::/48 2a0f:6283:1000::/40 2a0f:6283:1300::/40 Signature Algorithm: sha256WithRSAEncryption 02:73:87:f0:ed:c4:84:93:69:28:a1:41:05:67:27:dc:9e:cd: d8:88:17:aa:ab:e0:f2:ff:e4:ef:db:b1:0d:bb:37:8c:55:67: 5c:27:25:64:99:4c:b3:73:48:31:7e:99:6d:de:a5:c9:fe:44: 1f:6a:c7:9c:1f:e2:05:49:73:a3:b7:29:93:63:5c:a0:08:45: bb:00:e1:83:ae:5a:47:e8:98:f9:a5:17:4f:16:02:81:0f:d0: 88:b2:d0:34:c8:5b:ac:ce:b2:99:d8:fa:9c:00:d2:8f:a3:0c: bd:bd:da:80:74:ce:6f:d0:9d:a7:76:80:0c:e1:ab:c5:98:71: 50:66:21:2e:c4:a0:f0:0b:15:eb:25:2b:ca:49:e7:a8:06:36: ac:15:97:02:58:f9:c6:d4:4e:d3:be:5a:9b:97:9f:0c:31:1e: 27:ce:26:5f:5c:ba:03:9d:f3:b1:e6:12:c3:46:83:ab:c2:8c: 3d:04:37:ad:46:f1:62:69:53:56:ac:e1:d5:d5:76:aa:38:9c: ee:a1:73:10:f9:54:3f:9c:54:ab:3a:e5:c2:29:e3:82:d0:5a: ef:92:0f:e1:bf:c1:cb:82:82:46:e4:a1:02:ae:ba:9c:28:c2: 69:e7:91:d5:ae:f1:1c:59:aa:54:ec:97:f6:cc:9c:7b:bc:f0: b3:59:51:bc -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUBMNsaLM5iqCR+VUlYrgkooZPOCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MTIxOTU1NTFaFw0yNjA3MTEyMDAwNTFaMDMxMTAvBgNV BAMTKDFBNTM1ODMwMTM1NDMxM0Y2NjREODU4NEYzM0M0MDc5OUUzRjBFRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtnhKjPecHeMIrf6BuoaBs534/ uA2fhQjYyDV51AN8UTxYY2MuNUeYoSgPXU39mYgKqv06peWeTQBT8+LVTiU+cwqz tw++Vmlau9GuYDFxr4HJvbemxXiAiK7n0clhrQ63bOC8NiHMIzo+SiHR4c4aAoZ5 gTbxVaQ/pUe4bRShyOQ1oSAWT1CjE8g8RJugIYg9k3Zb88yMTEfCCy5Ldd4/gmPj uaUI57lp6IYegtHpHOlYHNWh3Lmzs9sZkswjng+E8KBmgwQIdWJ7Sal7bY0CU4rD +Pd1AFJBPWIAuIKBcnhOzTirh2PYch5r50AkxfBquB6dwixGTnGDwzFnu+0jAgMB AAGjggH/MIIB+zAdBgNVHQ4EFgQUGlNYMBNUMT9mTYWE8zxAeZ4/Dv4wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyMjMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwQgYIKwYBBQUHAQcBAf8EMzAxMC8EAgACMCkDBgAq Bd/D+gMGACoKYERkAwcAKgpgRKoQAwYAKg9igxADBgAqD2KDEzANBgkqhkiG9w0B AQsFAAOCAQEAAnOH8O3EhJNpKKFBBWcn3J7N2IgXqqvg8v/k79uxDbs3jFVnXCcl ZJlMs3NIMX6Zbd6lyf5EH2rHnB/iBUlzo7cpk2NcoAhFuwDhg65aR+iY+aUXTxYC gQ/QiLLQNMhbrM6ymdj6nADSj6MMvb3agHTOb9Cdp3aADOGrxZhxUGYhLsSg8AsV 6yUryknnqAY2rBWXAlj5xtRO075am5efDDEeJ84mX1y6A53zseYSw0aDq8KMPQQ3 rUbxYmlTVqzh1dV2qjic7qFzEPlUP5xUqzrlwinjgtBa75IP4b/By4KCRuShAq66 nCjCaeeR1a7xHFmqVOyX9syce7zws1lRvA== -----END CERTIFICATE-----Generated at Fri Aug 8 00:42:56 2025 by rpki-client