$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS204464.roa File: AS204464.roa (raw, json) Hash identifier: z43TAhUcOe49A+TiOvyzZTeQsIG9TnmG2ORPv3d45v0= Subject key identifier: 9D:BD:71:35:BB:E9:70:A8:8C:8D:19:8C:6B:17:64:5A:03:B3:03:2C Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 73CE8953499567B504F43179537D729304FEDD6F Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS204464.roa Signing time: Fri 24 Apr 2026 13:18:53 +0000 ROA not before: Fri 24 Apr 2026 13:13:53 +0000 ROA not after: Fri 23 Apr 2027 13:18:53 +0000 asID: 204464 IP address blocks: 2a0f:6283:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ce:89:53:49:95:67:b5:04:f4:31:79:53:7d:72:93:04:fe:dd:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Apr 24 13:13:53 2026 GMT Not After : Apr 23 13:18:53 2027 GMT Subject: CN=9DBD7135BBE970A88C8D198C6B17645A03B3032C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:8b:ea:a8:f0:99:09:97:8d:38:62:e9:e4:66: 0b:dc:e0:92:38:2f:4d:cb:77:80:d0:43:f6:ed:d6: 7f:5a:86:f2:35:30:fa:aa:30:af:a0:15:95:79:12: 95:01:7f:14:a8:a2:6b:7c:6e:86:80:d8:64:25:40: 3f:32:5c:f9:2c:e1:fb:47:aa:25:e5:c3:43:ed:12: c0:20:9e:86:57:af:c7:2f:99:01:ad:6c:73:d8:9f: 51:a8:e7:fc:b4:4f:11:b0:f3:72:7f:4e:63:fd:f7: 18:c2:c1:fb:9b:ef:b2:2f:91:83:ab:63:60:5b:ad: ab:de:6c:b7:bf:03:bf:3a:62:6f:e9:b2:04:33:d1: 69:06:34:4a:74:37:cd:88:11:9e:0a:31:c1:64:b2: f8:0d:79:10:e1:5c:ae:28:9a:88:be:96:0c:4d:11: e8:ca:1a:c1:d2:7b:41:9b:41:0f:54:a1:f7:e0:53: ae:bd:71:ac:1e:dc:8b:8a:02:6b:aa:ca:50:c6:3f: 69:55:81:39:7d:b4:e3:7e:fc:be:66:89:0d:98:5b: 53:1d:78:ea:ff:df:78:4a:47:a3:05:c9:4b:06:6a: b8:fa:b9:98:2e:0a:37:9c:c2:50:7b:bb:14:68:76: 42:c4:ba:fc:60:4b:67:ed:e5:0a:82:63:85:46:29: c6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BD:71:35:BB:E9:70:A8:8C:8D:19:8C:6B:17:64:5A:03:B3:03:2C X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS204464.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:4000::/34 Signature Algorithm: sha256WithRSAEncryption 1f:09:a9:d4:ff:ed:78:0f:c0:db:1b:c3:e7:2a:53:30:92:f9: a2:30:42:3e:3c:21:9f:44:c7:3e:c6:e7:52:bf:cd:dc:34:6c: e5:af:9b:b4:ac:4f:39:e2:f6:5e:90:cb:1f:56:f7:e3:1a:18: 77:41:f6:07:a3:22:f5:99:50:9f:d2:45:38:0c:91:a3:37:b2: f4:c2:18:9b:d1:a6:25:40:12:3e:69:cb:f6:24:f7:b1:dd:9a: 51:6f:51:38:46:0e:35:6c:48:4e:7e:d6:5e:67:28:36:3e:0b: f5:8a:a7:9f:96:7b:d5:f3:da:8f:69:48:4f:82:69:47:45:c9: 11:e2:b9:9c:27:0f:f0:46:e5:56:d1:34:af:1b:89:ac:b5:7a: 2e:af:db:ef:6d:ab:27:46:ef:a8:8b:14:16:83:a1:f7:3b:9e: 91:36:a5:29:6c:21:6b:a2:64:4a:fe:00:f5:78:49:e7:2b:8f: 07:f5:ce:01:17:e8:66:0f:b4:39:33:f3:0f:98:18:5e:fc:ed: 57:41:a5:bb:02:44:62:cf:3b:74:fd:b5:f8:88:2b:a7:17:9b: 21:75:6f:08:bb:ff:18:a8:3e:ad:fc:f2:04:c1:bf:bd:3d:f2: 52:58:4f:5e:85:59:31:83:a8:25:a1:5a:e7:94:32:da:ac:1a: 05:85:3f:6c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUc86JU0mVZ7UE9DF5U31ykwT+3W8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA0MjQxMzEzNTNaFw0yNzA0MjMxMzE4NTNaMDMxMTAvBgNV BAMTKDlEQkQ3MTM1QkJFOTcwQTg4QzhEMTk4QzZCMTc2NDVBMDNCMzAzMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0i+qo8JkJl404YunkZgvc4JI4 L03Ld4DQQ/bt1n9ahvI1MPqqMK+gFZV5EpUBfxSoomt8boaA2GQlQD8yXPks4ftH qiXlw0PtEsAgnoZXr8cvmQGtbHPYn1Go5/y0TxGw83J/TmP99xjCwfub77IvkYOr Y2BbravebLe/A786Ym/psgQz0WkGNEp0N82IEZ4KMcFksvgNeRDhXK4omoi+lgxN EejKGsHSe0GbQQ9UoffgU669cawe3IuKAmuqylDGP2lVgTl9tON+/L5miQ2YW1Md eOr/33hKR6MFyUsGarj6uZguCjecwlB7uxRodkLEuvxgS2ft5QqCY4VGKcYXAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUnb1xNbvpcKiMjRmMaxdkWgOzAywwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDQ0NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYq D2KDQDANBgkqhkiG9w0BAQsFAAOCAQEAHwmp1P/teA/A2xvD5ypTMJL5ojBCPjwh n0THPsbnUr/N3DRs5a+btKxPOeL2XpDLH1b34xoYd0H2B6Mi9ZlQn9JFOAyRozey 9MIYm9GmJUASPmnL9iT3sd2aUW9ROEYONWxITn7WXmcoNj4L9Yqnn5Z71fPaj2lI T4JpR0XJEeK5nCcP8EblVtE0rxuJrLV6Lq/b722rJ0bvqIsUFoOh9zuekTalKWwh a6JkSv4A9XhJ5yuPB/XOARfoZg+0OTPzD5gYXvztV0GluwJEYs87dP21+Igrpxeb IXVvCLv/GKg+rfzyBMG/vT3yUlhPXoVZMYOoJaFa55Qy2qwaBYU/bA== -----END CERTIFICATE-----Generated at Tue May 12 21:54:09 2026 by rpki-client