$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214223.roa File: AS214223.roa (raw, json) Hash identifier: Mh6b8ePe/xc34H9xdFpp/gwnDDdQCU75koQkhr0mFn4= Subject key identifier: AA:27:15:D6:BD:DB:DA:DF:A9:4F:F2:44:45:21:87:A2:04:6E:39:87 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 46C150737A823191AEAE1FF3A800EC0C696E4B9C Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa Signing time: Wed 22 Oct 2025 19:51:14 +0000 ROA not before: Wed 22 Oct 2025 19:46:14 +0000 ROA not after: Wed 21 Oct 2026 19:51:14 +0000 asID: 214223 IP address blocks: 2a05:dfc3:fa00::/40 maxlen: 48 2a0a:6044:6400::/40 maxlen: 48 2a0a:6044:aa10::/48 maxlen: 48 2a0f:6283:1000::/40 maxlen: 40 2a0f:6283:1300::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 16:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c1:50:73:7a:82:31:91:ae:ae:1f:f3:a8:00:ec:0c:69:6e:4b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 22 19:46:14 2025 GMT Not After : Oct 21 19:51:14 2026 GMT Subject: CN=AA2715D6BDDBDADFA94FF244452187A2046E3987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ec:30:94:81:e2:44:43:ff:1d:eb:76:b7:eb: 5a:1e:31:28:47:96:11:fc:c4:75:a7:d2:ef:68:cf: 15:35:ea:52:fe:ae:8d:04:de:9f:a0:af:6b:e1:ca: 36:e5:fe:9a:35:7d:20:0f:e8:34:91:c8:ac:8c:e5: 7f:c1:09:bf:1b:e0:96:b5:37:e1:08:ff:97:0e:0d: de:77:2c:b6:d5:d5:8b:b7:8c:f2:2c:ea:b1:ad:a9: ad:d2:af:7f:56:c5:ad:a9:d4:bd:20:99:ed:f7:ad: 71:bb:ca:4c:ad:7c:f1:ca:a6:34:01:5a:bb:cc:1c: 40:0c:00:20:e2:e2:f7:a5:62:b0:a4:7c:a7:b0:a4: 62:4b:c8:dd:d5:05:cc:81:bf:2b:db:47:c3:50:54: a1:ab:a2:43:5c:1a:77:46:a5:c1:de:8b:5f:c0:4c: 95:05:e7:a3:f0:ab:64:a4:cd:30:39:ae:5b:e4:19: 45:28:18:6d:e3:0f:79:bc:ad:64:e5:ec:62:75:bb: 55:3b:04:09:d5:02:af:bf:ed:d5:dc:d8:ef:cd:aa: 1d:3a:28:5a:ca:e5:85:7c:9e:80:00:4c:a9:e5:c2: 9f:34:40:09:7f:4c:97:dd:0f:4a:05:ce:5b:03:52: 37:2a:1e:c0:64:e5:43:ac:c6:b1:22:b1:dc:b9:9d: 99:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:27:15:D6:BD:DB:DA:DF:A9:4F:F2:44:45:21:87:A2:04:6E:39:87 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fa00::/40 2a0a:6044:6400::/40 2a0a:6044:aa10::/48 2a0f:6283:1000::/40 2a0f:6283:1300::/40 Signature Algorithm: sha256WithRSAEncryption 35:ec:c6:49:1b:42:1a:e4:fd:e8:88:6f:6d:b9:32:e7:9c:e1: 7a:e9:0d:96:0b:e8:63:00:2c:f4:fe:ee:2d:bd:9b:06:43:ac: 6f:2b:fc:84:92:7e:73:4f:fb:4f:11:28:2b:f7:82:06:17:b6: 5a:94:b2:b5:d0:1d:f5:f7:3a:96:54:cc:21:06:2b:41:47:7f: f0:ad:26:85:60:16:fc:ec:00:c0:18:2b:40:10:ee:db:1a:bf: 15:03:ce:50:58:90:b4:a4:8f:35:e3:b0:a7:b5:4f:7d:23:cf: 52:3b:f5:07:b8:18:90:c4:4c:3c:f0:44:90:a0:9b:74:b6:3a: ec:4e:40:93:14:9d:d7:cc:15:6c:20:44:02:06:b7:40:8c:18: 4e:1a:b0:ab:ff:09:f7:ec:b3:1b:e4:d4:94:25:4d:e2:7e:03: 20:51:f4:81:b1:a5:3b:f5:0a:34:80:4b:46:ed:9b:f2:3e:ef: 8f:9c:71:b4:8f:e2:69:b5:00:95:ec:21:ac:e3:ec:71:18:7f: 8a:e7:c5:de:90:44:71:8c:ed:5f:ec:d0:ad:2c:5f:ea:85:03: e0:6d:9b:70:18:36:24:ae:a5:15:c0:b3:65:ac:0f:4f:28:f9: 26:d2:4f:28:cd:6a:41:4f:09:61:85:77:c0:92:12:46:97:c1: 3e:32:86:cf -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIURsFQc3qCMZGurh/zqADsDGluS5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMjIxOTQ2MTRaFw0yNjEwMjExOTUxMTRaMDMxMTAvBgNV BAMTKEFBMjcxNUQ2QkREQkRBREZBOTRGRjI0NDQ1MjE4N0EyMDQ2RTM5ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn7DCUgeJEQ/8d63a361oeMShH lhH8xHWn0u9ozxU16lL+ro0E3p+gr2vhyjbl/po1fSAP6DSRyKyM5X/BCb8b4Ja1 N+EI/5cODd53LLbV1Yu3jPIs6rGtqa3Sr39Wxa2p1L0gme33rXG7ykytfPHKpjQB WrvMHEAMACDi4velYrCkfKewpGJLyN3VBcyBvyvbR8NQVKGrokNcGndGpcHei1/A TJUF56Pwq2SkzTA5rlvkGUUoGG3jD3m8rWTl7GJ1u1U7BAnVAq+/7dXc2O/Nqh06 KFrK5YV8noAATKnlwp80QAl/TJfdD0oFzlsDUjcqHsBk5UOsxrEisdy5nZmdAgMB AAGjggH/MIIB+zAdBgNVHQ4EFgQUqicV1r3b2t+pT/JERSGHogRuOYcwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyMjMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwQgYIKwYBBQUHAQcBAf8EMzAxMC8EAgACMCkDBgAq Bd/D+gMGACoKYERkAwcAKgpgRKoQAwYAKg9igxADBgAqD2KDEzANBgkqhkiG9w0B AQsFAAOCAQEANezGSRtCGuT96Ihvbbky55zheukNlgvoYwAs9P7uLb2bBkOsbyv8 hJJ+c0/7TxEoK/eCBhe2WpSytdAd9fc6llTMIQYrQUd/8K0mhWAW/OwAwBgrQBDu 2xq/FQPOUFiQtKSPNeOwp7VPfSPPUjv1B7gYkMRMPPBEkKCbdLY67E5AkxSd18wV bCBEAga3QIwYThqwq/8J9+yzG+TUlCVN4n4DIFH0gbGlO/UKNIBLRu2b8j7vj5xx tI/iabUAlewhrOPscRh/iufF3pBEcYztX+zQrSxf6oUD4G2bcBg2JK6lFcCzZawP Tyj5JtJPKM1qQU8JYYV3wJISRpfBPjKGzw== -----END CERTIFICATE-----Generated at Wed Nov 5 00:07:28 2025 by rpki-client