$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213124.roa File: AS213124.roa (raw, json) Hash identifier: PttVmnqfw96qlCkr4FCHxTh67DM25MsjXMBydvLjLlo= Subject key identifier: 51:80:3E:14:CA:14:D7:23:23:C0:20:E2:29:52:90:D9:F5:E2:15:51 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1A39A1DAD34D3EF5679998BA41BAB2087E5564E6 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213124.roa Signing time: Fri 22 Aug 2025 19:22:12 +0000 ROA not before: Fri 22 Aug 2025 19:17:12 +0000 ROA not after: Fri 21 Aug 2026 19:22:12 +0000 asID: 213124 IP address blocks: 2a0f:6283:2000::/48 maxlen: 48 2a0f:6283:2001::/48 maxlen: 48 2a0f:6283:2002::/48 maxlen: 48 2a0f:6283:2048::/45 maxlen: 45 2a0f:6284:6000::/36 maxlen: 36 2a0f:6284:8000::/36 maxlen: 36 2a0f:6284:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:39:a1:da:d3:4d:3e:f5:67:99:98:ba:41:ba:b2:08:7e:55:64:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 22 19:17:12 2025 GMT Not After : Aug 21 19:22:12 2026 GMT Subject: CN=51803E14CA14D72323C020E2295290D9F5E21551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a7:e7:e8:23:1b:57:0e:6b:12:2d:56:3d:31: e4:bf:ce:36:89:d4:58:83:be:71:71:a5:6a:5c:2b: cb:1b:fd:df:0a:f3:49:77:23:d6:24:0c:69:1a:d8: 2c:a3:fe:ef:f3:6b:b2:d1:03:bd:09:64:9b:2f:a1: 0d:3b:83:0c:f1:e2:62:f0:5a:8e:8b:35:27:c3:11: 5a:a2:9a:50:2d:c1:59:43:44:c3:66:c1:f9:f9:cb: d1:44:a5:36:09:14:26:27:d4:92:4b:87:a5:cb:16: c5:59:5c:23:03:1c:1a:7c:28:d7:b6:15:ec:b9:d8: 9d:11:e7:84:e2:c0:ad:79:04:61:ee:39:bd:c7:df: 9a:85:5e:95:d8:e5:92:13:ff:57:82:01:54:28:b1: 6f:14:ef:50:ce:cd:5d:8a:90:34:2a:8a:06:e7:29: 4c:08:6c:3e:09:fa:6f:68:07:39:55:ae:7b:a3:ad: fb:96:53:15:85:d4:be:54:1b:5c:e9:e3:df:a0:b0: 87:5b:41:95:cf:f7:7a:f1:3d:4b:f0:c3:20:b3:c6: f7:07:cb:b2:eb:41:1b:84:99:c6:a5:08:df:03:9b: 38:d1:2b:be:36:a8:20:8c:59:08:76:0e:72:2c:dd: c5:8c:42:1c:af:1d:dd:3f:12:7e:53:a0:5e:6e:a3: 10:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:80:3E:14:CA:14:D7:23:23:C0:20:E2:29:52:90:D9:F5:E2:15:51 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:2000::-2a0f:6283:2002:ffff:ffff:ffff:ffff:ffff 2a0f:6283:2048::/45 2a0f:6284:6000::/36 2a0f:6284:8000::/35 Signature Algorithm: sha256WithRSAEncryption 4c:64:f6:0e:f8:bb:49:e3:fd:70:50:c0:93:b6:e7:94:59:aa: 01:e0:6c:39:fd:fa:ea:ef:35:bd:7d:c4:78:b3:c8:d4:2c:b6: d8:22:4f:68:7e:0d:ff:40:0b:a0:8d:ff:53:90:21:f2:2d:98: 41:f7:d1:ed:e2:33:7a:ce:18:75:7c:f0:8a:a4:79:fe:82:5b: c1:aa:fe:92:48:d9:d8:9f:48:21:2b:6d:22:a9:61:e1:03:15: 07:ed:24:bc:b9:60:10:88:4a:11:6b:a9:53:af:21:f1:96:5d: 9a:fb:9a:0d:3b:55:b3:69:4c:8a:97:82:6d:03:9c:eb:c0:35: 29:7a:d7:6c:d0:0a:51:96:13:cf:67:df:39:d4:99:02:d5:a5: 05:f8:8d:04:ba:76:00:3d:b3:13:0e:a7:59:56:16:d6:d3:31: c6:da:db:62:a9:5f:e8:20:0e:64:ff:06:89:82:1b:44:bf:13: 7b:dd:3e:cf:5b:e1:f5:c0:28:43:ef:b5:19:57:33:f5:d9:75: 8a:0f:22:ab:07:1d:8c:fd:cd:23:2b:d6:75:d5:95:00:45:73: fd:51:34:af:dd:7a:46:85:ce:42:c2:0a:2d:ce:8b:2e:f3:df: 0c:1b:e3:0c:83:fa:93:a8:68:dd:16:55:c2:fa:a4:18:3d:82: 55:66:0a:17 -----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgIUGjmh2tNNPvVnmZi6QbqyCH5VZOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MjIxOTE3MTJaFw0yNjA4MjExOTIyMTJaMDMxMTAvBgNV BAMTKDUxODAzRTE0Q0ExNEQ3MjMyM0MwMjBFMjI5NTI5MEQ5RjVFMjE1NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFp+foIxtXDmsSLVY9MeS/zjaJ 1FiDvnFxpWpcK8sb/d8K80l3I9YkDGka2Cyj/u/za7LRA70JZJsvoQ07gwzx4mLw Wo6LNSfDEVqimlAtwVlDRMNmwfn5y9FEpTYJFCYn1JJLh6XLFsVZXCMDHBp8KNe2 Fey52J0R54TiwK15BGHuOb3H35qFXpXY5ZIT/1eCAVQosW8U71DOzV2KkDQqigbn KUwIbD4J+m9oBzlVrnujrfuWUxWF1L5UG1zp49+gsIdbQZXP93rxPUvwwyCzxvcH y7LrQRuEmcalCN8DmzjRK742qCCMWQh2DnIs3cWMQhyvHd0/En5ToF5uoxBrAgMB AAGjggICMIIB/jAdBgNVHQ4EFgQUUYA+FMoU1yMjwCDiKVKQ2fXiFVEwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTMxMjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwRQYIKwYBBQUHAQcBAf8ENjA0MDIEAgACMCwwEQMG BSoPYoMgAwcAKg9igyACAwcDKg9igyBIAwYEKg9ihGADBgUqD2KEgDANBgkqhkiG 9w0BAQsFAAOCAQEATGT2Dvi7SeP9cFDAk7bnlFmqAeBsOf366u81vX3EeLPI1Cy2 2CJPaH4N/0ALoI3/U5Ah8i2YQffR7eIzes4YdXzwiqR5/oJbwar+kkjZ2J9IIStt Iqlh4QMVB+0kvLlgEIhKEWupU68h8ZZdmvuaDTtVs2lMipeCbQOc68A1KXrXbNAK UZYTz2ffOdSZAtWlBfiNBLp2AD2zEw6nWVYW1tMxxtrbYqlf6CAOZP8GiYIbRL8T e90+z1vh9cAoQ++1GVcz9dl1ig8iqwcdjP3NIyvWddWVAEVz/VE0r916RoXOQsIK Lc6LLvPfDBvjDIP6k6ho3RZVwvqkGD2CVWYKFw== -----END CERTIFICATE-----Generated at Sat Aug 23 18:40:00 2025 by rpki-client