$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS212895.roa File: AS212895.roa (raw, json) Hash identifier: Wxex7jYvQD1kXWMTXJLv0P89wqyfi8scM6Acuqq2k3o= Subject key identifier: 09:21:A2:69:78:1E:EB:42:3D:13:A1:6B:E7:05:49:AB:6B:69:23:9C Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 754181A3A2903B347A06ED446DE9D5151F1DAA52 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS212895.roa Signing time: Thu 19 Mar 2026 21:49:05 +0000 ROA not before: Thu 19 Mar 2026 21:44:05 +0000 ROA not after: Thu 18 Mar 2027 21:49:05 +0000 asID: 212895 IP address blocks: 2a0f:6284::/48 maxlen: 48 2a0f:6284:d::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:41:81:a3:a2:90:3b:34:7a:06:ed:44:6d:e9:d5:15:1f:1d:aa:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Mar 19 21:44:05 2026 GMT Not After : Mar 18 21:49:05 2027 GMT Subject: CN=0921A269781EEB423D13A16BE70549AB6B69239C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:14:cc:d1:8e:ef:25:0b:a7:5a:31:56:ec:3f: 90:06:00:2d:41:1a:21:8e:9c:32:ef:48:13:3d:e3: 6c:fe:8b:77:66:b6:4b:88:6f:42:ac:db:d6:c4:64: 77:62:70:e6:1f:68:c3:d9:06:03:81:c2:20:73:82: 7b:15:54:82:60:79:64:05:13:f8:5e:6c:55:23:72: 53:2c:be:c5:a7:d7:33:3e:b2:5f:ad:c4:61:ad:97: ef:d4:a7:24:09:13:51:7a:11:e8:9c:0c:5f:92:48: da:dd:21:e7:69:1f:b2:70:0d:57:aa:9f:80:42:cf: 3b:1e:1e:88:ae:fe:1b:1b:51:b3:e8:ae:52:50:81: c3:69:2a:18:50:19:7f:bf:78:ba:b4:55:23:24:48: 64:3c:ab:47:35:a4:f6:d5:36:ed:35:34:e5:26:16: 92:10:7f:c7:b8:bf:a8:ce:b2:19:1b:0c:41:55:24: e3:32:a7:37:67:88:5d:ed:a2:9d:44:3a:10:74:39: 6e:1c:ed:fd:8a:01:45:ea:09:02:04:5c:be:07:0b: bb:d3:87:87:cd:8c:83:ac:d3:c0:68:6e:d0:1f:d5: 0e:e6:4b:b9:3e:ef:6b:23:57:43:27:5e:82:76:f4: b5:fa:0a:60:4b:01:a9:ad:fc:4f:f3:6c:e0:48:28: 72:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:21:A2:69:78:1E:EB:42:3D:13:A1:6B:E7:05:49:AB:6B:69:23:9C X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS212895.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284::/48 2a0f:6284:d::/48 Signature Algorithm: sha256WithRSAEncryption 08:14:40:d3:dd:e6:19:cb:13:e1:5f:ce:d0:b7:4f:6c:33:f4: 74:22:69:c2:e4:3c:7a:79:c7:72:d2:c4:ea:86:29:05:5a:a6: f2:81:05:59:96:29:09:a8:6f:ee:d3:6c:3e:ba:70:c3:6e:cf: 5a:14:58:50:ba:d2:53:f3:52:7e:30:ac:ae:09:14:9f:fb:34: f2:fc:d9:45:85:e0:3f:77:90:71:3e:8b:38:e0:f0:a7:98:ac: 08:29:dd:df:d6:9e:e1:93:46:d6:b2:0c:e3:d3:b7:aa:7f:da: ec:fa:46:09:9a:0c:8c:12:9f:9e:1a:8c:3b:03:84:36:03:a8: 8f:9b:57:04:08:5e:40:ff:51:ad:7e:6c:b3:55:37:b8:ed:6a: 9c:9c:14:1f:ab:91:76:13:02:a6:8c:31:e6:b9:b0:50:4e:a8: 28:ef:9d:b1:63:a9:04:32:33:ca:6e:49:6e:db:d5:de:6e:0f: fc:f2:e2:d9:3e:32:23:72:47:24:7e:ca:4f:7a:d8:7f:48:da: ec:ab:ed:41:54:73:e4:28:8f:10:92:a1:93:16:9e:2b:53:0c: 88:63:7f:84:63:64:fd:d6:db:de:68:12:cd:3e:d1:60:82:c7: 1b:7d:37:43:60:06:da:8a:2a:35:c2:df:3e:db:70:f6:85:75: a5:80:a5:b3 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUdUGBo6KQOzR6Bu1EbenVFR8dqlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAzMTkyMTQ0MDVaFw0yNzAzMTgyMTQ5MDVaMDMxMTAvBgNV BAMTKDA5MjFBMjY5NzgxRUVCNDIzRDEzQTE2QkU3MDU0OUFCNkI2OTIzOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvFMzRju8lC6daMVbsP5AGAC1B GiGOnDLvSBM942z+i3dmtkuIb0Ks29bEZHdicOYfaMPZBgOBwiBzgnsVVIJgeWQF E/hebFUjclMsvsWn1zM+sl+txGGtl+/UpyQJE1F6EeicDF+SSNrdIedpH7JwDVeq n4BCzzseHoiu/hsbUbPorlJQgcNpKhhQGX+/eLq0VSMkSGQ8q0c1pPbVNu01NOUm FpIQf8e4v6jOshkbDEFVJOMypzdniF3top1EOhB0OW4c7f2KAUXqCQIEXL4HC7vT h4fNjIOs08BobtAf1Q7mS7k+72sjV0MnXoJ29LX6CmBLAamt/E/zbOBIKHIhAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUCSGiaXge60I9E6Fr5wVJq2tpI5wwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTI4OTUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgACMBIDBwAq D2KEAAADBwAqD2KEAA0wDQYJKoZIhvcNAQELBQADggEBAAgUQNPd5hnLE+FfztC3 T2wz9HQiacLkPHp5x3LSxOqGKQVapvKBBVmWKQmob+7TbD66cMNuz1oUWFC60lPz Un4wrK4JFJ/7NPL82UWF4D93kHE+izjg8KeYrAgp3d/WnuGTRtayDOPTt6p/2uz6 RgmaDIwSn54ajDsDhDYDqI+bVwQIXkD/Ua1+bLNVN7jtapycFB+rkXYTAqaMMea5 sFBOqCjvnbFjqQQyM8puSW7b1d5uD/zy4tk+MiNyRyR+yk962H9I2uyr7UFUc+Qo jxCSoZMWnitTDIhjf4RjZP3W295oEs0+0WCCxxt9N0NgBtqKKjXC3z7bcPaFdaWA pbM= -----END CERTIFICATE-----Generated at Thu Mar 26 14:04:54 2026 by rpki-client