$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS199746.roa File: AS199746.roa (raw, json) Hash identifier: I0uXqzD65KLW7/YCfo4Koz0PQbUAGaPY3mQY0fDih7k= Subject key identifier: E4:D5:51:D0:12:25:3F:E1:C4:56:4B:1F:F0:E0:79:20:C0:D5:03:53 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 6B52CD7B1A482B45519694B87402B4AE87CBC113 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS199746.roa Signing time: Wed 29 Apr 2026 08:33:24 +0000 ROA not before: Wed 29 Apr 2026 08:28:24 +0000 ROA not after: Wed 28 Apr 2027 08:33:24 +0000 asID: 199746 IP address blocks: 2a0f:6283:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:52:cd:7b:1a:48:2b:45:51:96:94:b8:74:02:b4:ae:87:cb:c1:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Apr 29 08:28:24 2026 GMT Not After : Apr 28 08:33:24 2027 GMT Subject: CN=E4D551D012253FE1C4564B1FF0E07920C0D50353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bf:b8:e3:6c:59:e9:fb:c1:42:e9:39:68:02: a9:2a:8e:c1:36:a0:ab:09:6d:bc:6b:9d:e2:e0:1a: 38:98:54:3d:0e:e9:27:4e:df:c2:36:0e:08:d8:16: 8d:bd:70:13:af:85:a8:6b:75:22:50:20:09:9d:7f: 68:a1:71:46:d3:3a:89:46:1e:07:cf:1c:7c:29:05: ea:ed:5c:01:7a:f2:37:df:ea:31:0e:d6:c3:68:7a: 66:61:9f:37:c9:ce:ff:fd:1d:a7:fc:2d:df:b8:6b: d6:05:5e:00:d0:55:55:ae:a0:d3:e5:8f:ce:48:30: dd:2e:8f:bc:22:3c:1a:a8:2d:db:2e:a7:d6:c8:87: 4a:28:bc:f7:0f:77:47:cf:01:c5:26:7e:f7:dd:78: 6b:08:19:af:1e:ea:dd:6a:cb:a5:3f:a5:7f:1e:b2: b2:f3:ef:13:d1:3c:bd:82:0a:c4:5b:4c:62:ca:e1: bb:20:cb:81:20:10:72:f6:be:b9:a6:11:b8:98:c6: 4b:3e:20:ef:cd:d5:ff:ac:1a:b2:0e:37:68:a6:eb: 9a:d5:be:7a:b8:91:69:5b:92:78:5f:b4:5a:5c:44: 21:aa:5c:7d:dc:ef:7d:c1:c6:19:a7:3d:e7:93:ef: c8:16:f6:fa:ee:94:a1:28:4c:97:3f:fe:df:3f:43: 4a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D5:51:D0:12:25:3F:E1:C4:56:4B:1F:F0:E0:79:20:C0:D5:03:53 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS199746.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:4000::/34 Signature Algorithm: sha256WithRSAEncryption 19:e6:57:a3:df:9d:a7:56:ed:02:b5:3b:18:94:82:d0:1a:97: 01:6c:78:ac:0b:95:7c:b3:5f:7d:90:34:18:98:22:1e:b7:29: 95:c9:a1:c6:58:02:6a:a7:37:5b:50:49:13:a4:90:11:54:eb: ce:94:9d:0c:55:b1:82:ef:b9:65:e8:33:fd:55:59:d0:7f:b5: 75:9c:64:12:3b:ce:43:db:e1:d7:d0:e0:60:3e:45:42:b8:08: ed:49:58:a4:37:cd:9b:7b:66:10:86:27:9d:df:5c:e8:94:3d: eb:3b:59:57:a8:83:fc:f0:fb:3e:ca:97:a4:18:cf:b0:f9:09: dc:3e:76:ec:55:39:87:a6:dc:cc:45:eb:de:62:8a:06:1a:04: 2c:75:71:42:bf:11:fb:dd:62:cd:24:c8:7e:19:5f:6c:e2:07: 95:74:25:88:5d:f9:af:84:6f:66:dd:c9:31:f9:16:ba:22:51: 0a:62:3b:0f:71:65:21:7b:42:a2:09:f0:10:a1:9d:ca:51:55: 19:33:ce:e7:55:e2:66:9b:d4:af:1f:46:ba:6d:ea:f2:f4:a7: ea:c1:68:71:73:65:26:15:2f:a0:87:48:af:41:8c:fc:d9:74: 1f:26:e2:da:0b:df:e0:06:2f:b2:75:d7:76:83:c2:e8:ab:92: d8:0d:3d:53 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUa1LNexpIK0VRlpS4dAK0rofLwRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA0MjkwODI4MjRaFw0yNzA0MjgwODMzMjRaMDMxMTAvBgNV BAMTKEU0RDU1MUQwMTIyNTNGRTFDNDU2NEIxRkYwRTA3OTIwQzBENTAzNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOv7jjbFnp+8FC6TloAqkqjsE2 oKsJbbxrneLgGjiYVD0O6SdO38I2DgjYFo29cBOvhahrdSJQIAmdf2ihcUbTOolG HgfPHHwpBertXAF68jff6jEO1sNoemZhnzfJzv/9Haf8Ld+4a9YFXgDQVVWuoNPl j85IMN0uj7wiPBqoLdsup9bIh0oovPcPd0fPAcUmfvfdeGsIGa8e6t1qy6U/pX8e srLz7xPRPL2CCsRbTGLK4bsgy4EgEHL2vrmmEbiYxks+IO/N1f+sGrION2im65rV vnq4kWlbknhftFpcRCGqXH3c733BxhmnPeeT78gW9vrulKEoTJc//t8/Q0rfAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQU5NVR0BIlP+HEVksf8OB5IMDVA1MwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMxOTk3NDYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYq D2KDQDANBgkqhkiG9w0BAQsFAAOCAQEAGeZXo9+dp1btArU7GJSC0BqXAWx4rAuV fLNffZA0GJgiHrcplcmhxlgCaqc3W1BJE6SQEVTrzpSdDFWxgu+5Zegz/VVZ0H+1 dZxkEjvOQ9vh19DgYD5FQrgI7UlYpDfNm3tmEIYnnd9c6JQ96ztZV6iD/PD7PsqX pBjPsPkJ3D527FU5h6bczEXr3mKKBhoELHVxQr8R+91izSTIfhlfbOIHlXQliF35 r4RvZt3JMfkWuiJRCmI7D3FlIXtCognwEKGdylFVGTPO51XiZpvUrx9Gum3q8vSn 6sFocXNlJhUvoIdIr0GM/Nl0Hybi2gvf4AYvsnXXdoPC6KuS2A09Uw== -----END CERTIFICATE-----Generated at Tue May 12 22:43:40 2026 by rpki-client