$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207083.roa File: AS207083.roa (raw, json) Hash identifier: EWWZJqshPIPPRvUYhot+rF6NabgNZ3P4yEJ41ieVyw0= Subject key identifier: 3D:46:3C:34:5B:6A:E9:8C:BF:55:6D:79:0B:69:C2:CA:67:E2:2C:A3 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 50BA5AD33BA0505248969562C430A4B465C6F684 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa Signing time: Tue 17 Mar 2026 19:48:17 +0000 ROA not before: Tue 17 Mar 2026 19:43:17 +0000 ROA not after: Tue 16 Mar 2027 19:48:17 +0000 asID: 207083 IP address blocks: 2a0f:6282:f000::/36 maxlen: 36 2a0f:6284:1::/48 maxlen: 48 2a0f:6284:4213::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 23:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ba:5a:d3:3b:a0:50:52:48:96:95:62:c4:30:a4:b4:65:c6:f6:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Mar 17 19:43:17 2026 GMT Not After : Mar 16 19:48:17 2027 GMT Subject: CN=3D463C345B6AE98CBF556D790B69C2CA67E22CA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:67:ea:1e:d1:69:f1:14:b9:6d:73:8e:27:ad: e7:24:e4:ae:f3:2a:10:92:03:17:72:1e:0f:a4:70: 43:29:36:86:3e:e5:70:8b:27:4f:4b:d6:bc:99:57: e0:f1:c2:91:da:2b:7c:63:35:80:54:33:0a:63:30: 42:f3:7e:85:dc:ba:dd:15:8f:f5:47:c2:24:66:c2: 78:af:08:71:93:db:86:49:94:6a:f6:fe:ed:41:06: 6d:3b:cc:dc:04:0a:01:54:23:33:f0:a5:61:dd:81: 3e:ef:f7:34:d3:6e:df:d8:5f:6d:0d:da:e1:e8:6e: b1:17:21:b5:ab:0a:10:3f:08:26:ff:45:4c:61:f9: 1c:df:e8:c3:2a:8a:2a:55:85:96:d1:4f:b3:54:8e: d6:6c:21:8e:4a:e5:54:3c:f7:4f:f4:ee:e4:38:a9: 89:2e:e7:ba:ea:ef:b7:b1:f0:b5:96:48:11:fb:47: fd:b6:54:0e:f8:19:74:36:a8:fa:6c:62:22:78:89: e4:7f:19:bb:02:94:17:f3:40:2b:b5:97:e7:f3:9e: d1:3e:1e:3e:47:a6:98:fc:32:d5:db:a9:4c:6d:a0: 15:3d:99:40:d2:6a:3c:be:32:63:b1:25:5b:5a:88: 29:77:d3:e1:9f:1b:13:e6:a8:d7:a4:19:97:a1:5e: 0d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:46:3C:34:5B:6A:E9:8C:BF:55:6D:79:0B:69:C2:CA:67:E2:2C:A3 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6282:f000::/36 2a0f:6284:1::/48 2a0f:6284:4213::/48 Signature Algorithm: sha256WithRSAEncryption 12:ec:05:3b:c5:c8:8e:10:bf:03:d4:12:d2:35:c2:4f:67:4b: 34:cd:c1:d1:fe:32:44:1d:8f:f9:12:03:4f:14:9f:08:5a:ae: 4b:b2:cb:66:ba:45:20:92:bb:47:e4:25:10:9c:6d:32:90:24: 6a:0d:30:26:28:6f:38:fa:66:cc:61:e5:af:a2:d9:32:a3:86: b9:66:ca:50:2f:f8:98:21:2a:6f:37:c5:55:98:bc:97:d8:45: c1:43:f4:a7:f1:cf:0b:81:7c:7b:ec:85:36:22:d3:87:7b:a8: fe:ef:08:dc:52:b6:92:09:01:18:d6:a2:ea:9f:ce:e8:29:71: e9:7d:c1:91:c0:13:72:1d:03:21:92:31:e3:64:11:2c:d3:c0: 6f:be:e1:13:c9:93:cc:2d:7e:ca:fd:22:ec:df:c0:aa:33:2f: 7b:99:4f:b5:07:1a:9b:77:48:d5:f1:cf:41:2d:71:e6:89:2f: 58:2b:08:6e:b2:b4:81:19:14:bd:de:a5:96:a1:e6:fa:5b:76: 02:ef:a4:ce:fa:3e:94:3f:19:a5:2f:2c:14:fa:b2:99:2c:4a: 41:7f:f7:b4:66:cf:84:09:68:aa:55:cb:fc:72:de:05:ae:d2: 97:2e:1d:86:fb:c3:62:d5:c8:0d:68:97:ea:e1:4c:f8:c0:71: 5d:89:e9:d4 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUULpa0zugUFJIlpVixDCktGXG9oQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAzMTcxOTQzMTdaFw0yNzAzMTYxOTQ4MTdaMDMxMTAvBgNV BAMTKDNENDYzQzM0NUI2QUU5OENCRjU1NkQ3OTBCNjlDMkNBNjdFMjJDQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrZ+oe0WnxFLltc44nreck5K7z KhCSAxdyHg+kcEMpNoY+5XCLJ09L1ryZV+DxwpHaK3xjNYBUMwpjMELzfoXcut0V j/VHwiRmwnivCHGT24ZJlGr2/u1BBm07zNwECgFUIzPwpWHdgT7v9zTTbt/YX20N 2uHobrEXIbWrChA/CCb/RUxh+Rzf6MMqiipVhZbRT7NUjtZsIY5K5VQ890/07uQ4 qYku57rq77ex8LWWSBH7R/22VA74GXQ2qPpsYiJ4ieR/GbsClBfzQCu1l+fzntE+ Hj5Hppj8MtXbqUxtoBU9mUDSajy+MmOxJVtaiCl30+GfGxPmqNekGZehXg1VAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUPUY8NFtq6Yy/VW15C2nCymfiLKMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDcwODMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMwYIKwYBBQUHAQcBAf8EJDAiMCAEAgACMBoDBgQq D2KC8AMHACoPYoQAAQMHACoPYoRCEzANBgkqhkiG9w0BAQsFAAOCAQEAEuwFO8XI jhC/A9QS0jXCT2dLNM3B0f4yRB2P+RIDTxSfCFquS7LLZrpFIJK7R+QlEJxtMpAk ag0wJihvOPpmzGHlr6LZMqOGuWbKUC/4mCEqbzfFVZi8l9hFwUP0p/HPC4F8e+yF NiLTh3uo/u8I3FK2kgkBGNai6p/O6Clx6X3BkcATch0DIZIx42QRLNPAb77hE8mT zC1+yv0i7N/AqjMve5lPtQcam3dI1fHPQS1x5okvWCsIbrK0gRkUvd6llqHm+lt2 Au+kzvo+lD8ZpS8sFPqymSxKQX/3tGbPhAloqlXL/HLeBa7Sly4dhvvDYtXIDWiX 6uFM+MBxXYnp1A== -----END CERTIFICATE-----Generated at Thu Mar 26 05:30:19 2026 by rpki-client