This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS0.roa File: AS0.roa (raw, json) Hash identifier: XyqVifFTfqtqWbn6BbQvTXZ4hMJSwX3bPsjLI//H3pU= Subject key identifier: E2:E5:08:18:BE:C1:81:1C:6C:6C:FD:D0:E4:BC:0F:1C:FA:5E:8B:E1 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 0FB3CC281FFE5B681573506450FC7B9230323645 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS0.roa Signing time: Wed 03 Dec 2025 12:22:01 +0000 ROA not before: Wed 03 Dec 2025 12:17:01 +0000 ROA not after: Wed 02 Dec 2026 12:22:01 +0000 asID: 0 IP address blocks: 2a0f:6283:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b3:cc:28:1f:fe:5b:68:15:73:50:64:50:fc:7b:92:30:32:36:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Dec 3 12:17:01 2025 GMT Not After : Dec 2 12:22:01 2026 GMT Subject: CN=E2E50818BEC1811C6C6CFDD0E4BC0F1CFA5E8BE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6b:1b:be:7f:3f:fa:b8:9f:8e:dc:2c:43:d4: 91:48:3f:aa:5f:f2:52:af:fa:78:5d:98:c4:0d:4b: 3d:a8:0a:f9:00:02:ae:6a:f4:7a:2b:0c:d5:b5:30: 21:a2:ae:30:fa:9e:a5:6f:2d:81:24:b2:de:be:8e: f3:10:40:cc:44:ec:00:36:ff:57:4f:55:de:4c:88: 5d:58:46:7b:35:a6:ed:9d:fa:09:d6:3f:cb:d5:91: 5d:02:cb:28:64:e2:93:96:6c:6c:02:7a:7e:0b:ef: ec:7f:62:a1:09:0c:86:bd:39:84:d9:65:ee:62:47: 52:78:ff:79:b7:fc:44:55:2f:72:94:be:e8:08:81: a2:37:f9:e1:8c:7e:ea:a3:0d:58:1f:3e:94:e8:c4: b2:df:7b:1c:29:64:ab:ba:dd:52:44:a3:4c:15:07: 28:ce:bc:ec:b2:34:98:04:09:22:5e:2a:c9:90:fa: c9:1b:1d:0d:05:e4:39:fe:fc:d0:2d:a6:27:67:10: 3a:fd:06:a9:09:4c:2e:c9:b5:7e:d7:4e:71:b1:04: d1:f8:26:50:72:36:c6:58:41:7c:f4:8c:04:1d:1e: e1:99:29:bc:85:65:52:b5:ef:21:c2:c5:b8:25:5b: fe:de:dd:c8:dc:1f:30:8b:ed:ba:39:16:0c:5d:1f: 62:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E5:08:18:BE:C1:81:1C:6C:6C:FD:D0:E4:BC:0F:1C:FA:5E:8B:E1 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:7000::/36 Signature Algorithm: sha256WithRSAEncryption 68:70:2b:8b:df:b0:e8:d9:69:2d:29:30:60:2e:b1:32:d6:c2: 50:46:d8:40:53:d4:d8:da:61:80:07:c4:59:01:0d:c4:87:1a: 93:2e:3b:83:47:bd:79:ee:1f:4d:fb:27:48:a2:a9:bf:3e:66: f8:0f:41:46:4a:98:4a:0d:4a:18:4a:8d:e8:bd:56:3a:f6:e3: 63:e4:d7:86:e0:93:df:51:b5:46:07:3b:c7:97:77:0a:b8:5d: c5:02:46:d4:86:73:50:f2:a4:09:bd:f0:08:0b:e6:fa:b6:4a: b2:72:c2:c5:f5:ba:f3:cb:11:07:1e:fb:12:c4:23:92:6f:9e: eb:aa:5b:0c:bf:88:99:d8:57:ee:6d:cd:ef:c7:4e:3b:db:dc: 77:fc:af:c1:8d:43:41:94:57:d5:da:07:1f:04:86:5f:fe:d9: a1:95:3a:26:92:f8:15:81:05:3c:27:65:35:b7:08:1f:53:23: af:7d:25:99:76:c3:b1:d7:95:d4:03:9a:53:fd:87:94:d4:37: 23:f1:f0:51:ca:49:53:44:52:2e:fd:76:37:32:6b:a3:54:57: 29:76:62:df:72:3c:4c:42:81:78:0d:bf:eb:5f:4c:52:10:48: e9:02:a3:bb:aa:3b:12:1e:9e:3e:90:1a:f9:74:fd:9f:96:7c: 82:fa:d5:2e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIUD7PMKB/+W2gVc1BkUPx7kjAyNkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEyMDMxMjE3MDFaFw0yNjEyMDIxMjIyMDFaMDMxMTAvBgNV BAMTKEUyRTUwODE4QkVDMTgxMUM2QzZDRkREMEU0QkMwRjFDRkE1RThCRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLaxu+fz/6uJ+O3CxD1JFIP6pf 8lKv+nhdmMQNSz2oCvkAAq5q9HorDNW1MCGirjD6nqVvLYEkst6+jvMQQMxE7AA2 /1dPVd5MiF1YRns1pu2d+gnWP8vVkV0Cyyhk4pOWbGwCen4L7+x/YqEJDIa9OYTZ Ze5iR1J4/3m3/ERVL3KUvugIgaI3+eGMfuqjDVgfPpToxLLfexwpZKu63VJEo0wV ByjOvOyyNJgECSJeKsmQ+skbHQ0F5Dn+/NAtpidnEDr9BqkJTC7JtX7XTnGxBNH4 JlByNsZYQXz0jAQdHuGZKbyFZVK17yHCxbglW/7e3cjcHzCL7bo5FgxdH2J9AgMB AAGjggHZMIIB1TAdBgNVHQ4EFgQU4uUIGL7BgRxsbP3Q5LwPHPpei+EwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyMEoGCCsGAQUFBwELBD4wPDA6BggrBgEFBQcwC4YucnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKg9ig3Aw DQYJKoZIhvcNAQELBQADggEBAGhwK4vfsOjZaS0pMGAusTLWwlBG2EBT1NjaYYAH xFkBDcSHGpMuO4NHvXnuH037J0iiqb8+ZvgPQUZKmEoNShhKjei9Vjr242Pk14bg k99RtUYHO8eXdwq4XcUCRtSGc1DypAm98AgL5vq2SrJywsX1uvPLEQce+xLEI5Jv nuuqWwy/iJnYV+5tze/HTjvb3Hf8r8GNQ0GUV9XaBx8Ehl/+2aGVOiaS+BWBBTwn ZTW3CB9TI699JZl2w7HXldQDmlP9h5TUNyPx8FHKSVNEUi79djcya6NUVyl2Yt9y PExCgXgNv+tfTFIQSOkCo7uqOxIenj6QGvl0/Z+WfIL61S4= -----END CERTIFICATE-----Generated at Sat Dec 6 10:59:41 2025 by rpki-client