$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213422.roa File: AS213422.roa (raw, json) Hash identifier: vFDjcDMap4GS+FQflh0cWBIDB9yMip5lrGsH5E8Zjyw= Subject key identifier: 5F:5B:6E:A4:0C:62:AC:99:81:45:E1:1F:CC:04:E4:CE:0F:94:3E:43 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1D2FBD4587DCC1E6371798CC1A4AE83E20524A40 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213422.roa Signing time: Fri 10 Oct 2025 08:36:06 +0000 ROA not before: Fri 10 Oct 2025 08:31:06 +0000 ROA not after: Fri 09 Oct 2026 08:36:06 +0000 asID: 213422 IP address blocks: 2a0f:6283:1400::/48 maxlen: 48 2a0f:6283:1401::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:2f:bd:45:87:dc:c1:e6:37:17:98:cc:1a:4a:e8:3e:20:52:4a:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 10 08:31:06 2025 GMT Not After : Oct 9 08:36:06 2026 GMT Subject: CN=5F5B6EA40C62AC998145E11FCC04E4CE0F943E43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:6a:d5:f5:bb:fa:c3:d2:a0:d4:dd:29:e2: 8b:64:18:b2:3c:50:46:68:e2:77:ab:9b:34:64:0e: b4:22:54:08:0c:ca:a6:c6:7d:84:ca:a1:f4:92:dc: f9:83:ea:c4:7d:27:02:51:fb:c7:ae:ea:d3:d7:d6: 97:7e:e7:0e:e1:af:34:cc:5a:5e:f2:21:8b:3e:25: 64:d5:35:1e:04:8c:df:44:3e:df:36:64:8a:5c:a2: 72:b5:f7:9d:10:3b:3d:5f:19:2f:74:82:82:4c:4f: e8:2f:c5:81:c8:23:70:d9:c6:72:c2:2a:41:94:e2: e4:4c:3a:a3:cf:df:56:2f:b4:35:bb:3b:48:b7:dc: a2:66:dd:8a:aa:df:22:75:0f:c8:70:17:05:24:f1: e4:97:16:c3:99:79:e9:86:b4:96:1a:83:c8:28:ed: d1:71:66:04:b1:e0:67:4b:c8:13:ee:82:23:61:44: 68:57:cc:f4:9a:62:42:95:52:6a:41:38:ad:05:4e: d7:ca:bc:0f:7c:28:d7:1a:1b:95:4b:3d:d3:09:77: 45:3a:8e:07:f0:37:3d:01:6a:5e:73:bd:1e:5e:08: 67:f6:f8:55:7a:e2:d6:14:81:11:fe:47:49:c0:09: fc:09:47:14:b8:c1:26:56:f8:aa:ea:9d:1b:bb:ec: d9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5B:6E:A4:0C:62:AC:99:81:45:E1:1F:CC:04:E4:CE:0F:94:3E:43 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213422.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:1400::/47 Signature Algorithm: sha256WithRSAEncryption 2c:0c:09:92:5f:95:41:70:8c:a6:d7:d9:c4:51:c2:6e:3b:c8: 40:48:59:d8:ce:eb:ab:fa:25:b8:85:0a:7a:db:98:2d:fe:d8: 5d:80:2c:03:36:d2:ec:7d:7c:d6:fe:14:f3:3e:c9:d0:bc:ab: 85:94:dc:b6:41:87:fc:ed:eb:a9:0c:96:6f:ad:46:c6:83:2c: ee:3d:04:f4:96:8e:99:d9:6a:5c:ec:ac:e9:1e:d9:4c:de:37: de:18:3b:36:e8:2a:33:74:cf:56:40:32:c1:3e:97:f1:f0:fd: e1:f8:80:8e:4d:8f:43:1c:d9:6d:0c:0e:df:46:94:7d:52:10: 0c:c8:06:4e:65:62:d0:f8:ec:1d:11:f6:5d:58:20:b4:b5:43: 3d:cf:84:38:fb:39:4b:f2:88:c3:04:5b:f3:21:fa:ac:01:70: 72:f6:e8:75:11:b5:64:cb:2c:1e:3b:f0:3c:b8:78:b5:67:d3: ba:41:9c:89:e4:b0:57:40:26:01:94:2d:dd:1b:00:21:35:ff: d5:81:02:63:26:5c:7f:7b:09:75:9e:c2:9e:20:e1:56:47:69: a5:47:bb:67:dd:73:91:22:79:86:2b:c6:db:e7:b6:17:4f:e7: 46:c6:d0:31:58:79:f1:b8:2d:d2:24:ff:f3:af:4e:a0:3f:6e: e4:c9:b9:fe -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUHS+9RYfcweY3F5jMGkroPiBSSkAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMTAwODMxMDZaFw0yNjEwMDkwODM2MDZaMDMxMTAvBgNV BAMTKDVGNUI2RUE0MEM2MkFDOTk4MTQ1RTExRkNDMDRFNENFMEY5NDNFNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSh2rV9bv6w9Kg1N0p4otkGLI8 UEZo4nermzRkDrQiVAgMyqbGfYTKofSS3PmD6sR9JwJR+8eu6tPX1pd+5w7hrzTM Wl7yIYs+JWTVNR4EjN9EPt82ZIpconK1950QOz1fGS90goJMT+gvxYHII3DZxnLC KkGU4uRMOqPP31YvtDW7O0i33KJm3Yqq3yJ1D8hwFwUk8eSXFsOZeemGtJYag8go 7dFxZgSx4GdLyBPugiNhRGhXzPSaYkKVUmpBOK0FTtfKvA98KNcaG5VLPdMJd0U6 jgfwNz0Bal5zvR5eCGf2+FV64tYUgRH+R0nACfwJRxS4wSZW+KrqnRu77NmtAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUX1tupAxirJmBReEfzATkzg+UPkMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM0MjIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEq D2KDFAAwDQYJKoZIhvcNAQELBQADggEBACwMCZJflUFwjKbX2cRRwm47yEBIWdjO 66v6JbiFCnrbmC3+2F2ALAM20ux9fNb+FPM+ydC8q4WU3LZBh/zt66kMlm+tRsaD LO49BPSWjpnZalzsrOke2UzeN94YOzboKjN0z1ZAMsE+l/Hw/eH4gI5Nj0Mc2W0M Dt9GlH1SEAzIBk5lYtD47B0R9l1YILS1Qz3PhDj7OUvyiMMEW/Mh+qwBcHL26HUR tWTLLB478Dy4eLVn07pBnInksFdAJgGULd0bACE1/9WBAmMmXH97CXWewp4g4VZH aaVHu2fdc5EieYYrxtvnthdP50bG0DFYefG4LdIk//OvTqA/buTJuf4= -----END CERTIFICATE-----Generated at Sun Oct 19 20:10:59 2025 by rpki-client