$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS206016.roa File: AS206016.roa (raw, json) Hash identifier: JOFwvJ3ZV6h9dKhU9PkRX2ytg1qs6+wyjV1GNxwj5yo= Subject key identifier: 4D:25:B2:AB:49:45:BB:3C:68:0C:AF:08:76:17:A7:87:8E:96:14:D2 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1B7DDEEEE91E464F8199F86723C91BFE5EB5C194 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS206016.roa Signing time: Tue 12 Aug 2025 13:55:40 +0000 ROA not before: Tue 12 Aug 2025 13:50:40 +0000 ROA not after: Tue 11 Aug 2026 13:55:40 +0000 asID: 206016 IP address blocks: 2a0f:6283:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:7d:de:ee:e9:1e:46:4f:81:99:f8:67:23:c9:1b:fe:5e:b5:c1:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 12 13:50:40 2025 GMT Not After : Aug 11 13:55:40 2026 GMT Subject: CN=4D25B2AB4945BB3C680CAF087617A7878E9614D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:99:6d:1f:8c:de:39:8e:5e:6a:f6:ae:c6:c3: 8b:ea:79:87:d4:eb:50:36:70:96:3a:f7:3a:7b:26: 02:f2:6f:22:27:ff:09:54:31:21:10:45:9e:90:6d: 24:72:c7:c8:17:e4:15:0c:cb:e9:d7:e7:21:38:16: d4:65:9c:09:34:d2:2c:99:50:3f:06:40:45:86:f8: 1a:b8:93:02:1f:9b:d9:90:35:c6:fe:0f:5e:15:bc: 42:93:19:78:02:44:f8:11:1e:4a:ba:9b:47:e7:d5: 3d:5b:ed:fe:69:3a:9f:ef:18:78:6d:63:ca:00:dd: 6b:ba:66:be:3d:d8:fb:57:a6:99:6f:f6:dc:5e:16: 26:7e:5a:6a:61:86:8b:f0:b0:b3:f9:aa:64:f3:a1: 27:79:af:4d:f7:3a:fc:63:58:8f:db:d0:30:5e:4c: 76:ed:56:85:a4:9f:d8:17:f1:48:8e:19:e0:56:7b: 3b:57:b7:20:1b:38:98:69:2d:7b:b7:6d:51:be:7c: e3:61:36:bb:a1:7e:b4:1e:bd:58:b2:fc:25:90:10: f5:df:80:a6:45:f5:42:58:86:b6:58:f5:83:a7:c9: ff:5e:5a:30:41:ae:22:6f:e8:4e:55:00:a6:15:6a: 00:87:e9:ed:af:21:95:e8:af:fd:d9:70:4f:c2:d3: cb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:25:B2:AB:49:45:BB:3C:68:0C:AF:08:76:17:A7:87:8E:96:14:D2 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS206016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:2000::/48 Signature Algorithm: sha256WithRSAEncryption 68:bb:87:0e:7d:8b:a7:24:e4:80:81:e2:9f:ab:15:1c:5a:63: a3:33:ce:2d:1e:5c:75:5a:5f:a6:1d:41:65:a3:95:20:50:d0: a6:ce:1e:07:62:37:dd:de:d5:15:96:3e:90:84:7a:1f:66:d4: 56:1b:06:3f:f8:85:9b:c0:06:d3:fe:d1:04:85:ba:1e:97:20: 0b:8b:a8:b7:dc:e6:53:4a:01:71:1a:1a:4b:24:08:ce:ac:81: 99:29:bf:78:34:06:be:73:1e:0f:20:62:ec:4f:24:c3:df:49: 24:bd:bf:85:8a:0d:6e:04:c1:8c:a6:67:17:89:2f:15:1f:a8: 86:ac:08:c5:88:28:37:6f:00:78:34:d1:a2:4a:26:98:35:40: 28:36:03:96:19:75:8d:7f:7c:fe:30:09:d7:44:39:40:e0:4b: cc:1c:dc:a1:5f:ed:39:00:56:e6:da:f4:3c:ad:f8:34:20:01: 1d:ad:72:79:19:b5:3b:56:cc:6b:e3:e0:2a:1d:1c:1d:1a:1e: 7c:da:a1:bb:0f:5a:3c:55:15:00:74:99:d3:2d:de:19:29:3c: c6:41:7d:e8:97:25:4a:82:43:29:88:c2:65:bb:43:d1:21:a2: be:d9:3c:0d:e1:e6:c6:57:2c:f8:f0:aa:9a:80:9c:49:c8:4e: 84:d6:61:23 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUG33e7ukeRk+BmfhnI8kb/l61wZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MTIxMzUwNDBaFw0yNjA4MTExMzU1NDBaMDMxMTAvBgNV BAMTKDREMjVCMkFCNDk0NUJCM0M2ODBDQUYwODc2MTdBNzg3OEU5NjE0RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8mW0fjN45jl5q9q7Gw4vqeYfU 61A2cJY69zp7JgLybyIn/wlUMSEQRZ6QbSRyx8gX5BUMy+nX5yE4FtRlnAk00iyZ UD8GQEWG+Bq4kwIfm9mQNcb+D14VvEKTGXgCRPgRHkq6m0fn1T1b7f5pOp/vGHht Y8oA3Wu6Zr492PtXpplv9txeFiZ+WmphhovwsLP5qmTzoSd5r033OvxjWI/b0DBe THbtVoWkn9gX8UiOGeBWeztXtyAbOJhpLXu3bVG+fONhNruhfrQevViy/CWQEPXf gKZF9UJYhrZY9YOnyf9eWjBBriJv6E5VAKYVagCH6e2vIZXor/3ZcE/C08u3AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUTSWyq0lFuzxoDK8Idhenh46WFNIwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDYwMTYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAq D2KDIAAwDQYJKoZIhvcNAQELBQADggEBAGi7hw59i6ck5ICB4p+rFRxaY6Mzzi0e XHVaX6YdQWWjlSBQ0KbOHgdiN93e1RWWPpCEeh9m1FYbBj/4hZvABtP+0QSFuh6X IAuLqLfc5lNKAXEaGkskCM6sgZkpv3g0Br5zHg8gYuxPJMPfSSS9v4WKDW4EwYym ZxeJLxUfqIasCMWIKDdvAHg00aJKJpg1QCg2A5YZdY1/fP4wCddEOUDgS8wc3KFf 7TkAVuba9Dyt+DQgAR2tcnkZtTtWzGvj4CodHB0aHnzaobsPWjxVFQB0mdMt3hkp PMZBfeiXJUqCQymIwmW7Q9Ehor7ZPA3h5sZXLPjwqpqAnEnIToTWYSM= -----END CERTIFICATE-----Generated at Sat Aug 23 16:20:16 2025 by rpki-client