$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213798.roa File: AS213798.roa (raw, json) Hash identifier: VgeLzDd21HCYbNNoKXWeTzYBZuA7dqPmUSpzNVRsuHo= Subject key identifier: FC:3C:29:6A:1F:97:0D:4E:39:3C:F8:01:D9:90:8A:7C:48:3B:DB:23 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 14E9D4CD9E429D1737C1C6D84CF926EC6C28175F Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213798.roa Signing time: Wed 06 May 2026 11:48:50 +0000 ROA not before: Wed 06 May 2026 11:43:50 +0000 ROA not after: Wed 05 May 2027 11:48:50 +0000 asID: 213798 IP address blocks: 2a0f:6286:1::/48 maxlen: 48 2a0f:6286:2::/48 maxlen: 48 2a0f:6286:3::/48 maxlen: 48 2a0f:6286:4::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e9:d4:cd:9e:42:9d:17:37:c1:c6:d8:4c:f9:26:ec:6c:28:17:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: May 6 11:43:50 2026 GMT Not After : May 5 11:48:50 2027 GMT Subject: CN=FC3C296A1F970D4E393CF801D9908A7C483BDB23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ba:df:34:93:7e:0c:07:e5:6d:78:5d:e8:a1: 7f:e6:3b:6c:bb:fc:d1:4e:c7:65:14:18:79:c2:77: 14:1b:f3:fc:6f:e4:18:7c:40:81:4b:5c:bc:d3:9b: 18:6b:07:22:99:af:b5:26:51:12:13:13:53:42:a2: 78:03:be:49:de:d6:a2:6f:58:27:ba:c7:4e:4d:03: c2:1a:25:f6:22:0c:6f:f4:e7:be:f9:16:10:13:c6: 40:e5:3e:c4:b1:67:5c:06:a6:3f:f8:6c:9e:c6:16: f5:07:6c:a3:b2:3d:24:6a:b7:dc:71:b9:38:6f:46: da:20:61:5c:a4:da:99:35:f8:24:f5:30:ae:7a:c6: 28:ec:cb:a2:0d:ba:c6:cb:13:79:e3:d7:b3:29:66: ef:af:ed:32:f2:78:3f:57:74:ba:ed:ef:29:5f:36: 3e:1e:06:fa:50:1b:2e:cf:7c:aa:15:8f:46:4b:34: da:be:d4:72:dd:15:3a:d0:b5:36:33:1e:20:14:c4: d6:25:e7:8f:4a:73:84:94:1a:19:42:d9:ae:f8:59: f7:34:ae:bd:82:9a:bb:75:65:16:f9:b1:c1:d2:0b: a3:ba:fc:fd:5d:18:e0:88:f9:c1:3f:1d:c0:fe:51: 91:5e:5a:9e:80:ec:78:bf:6b:0d:6b:1f:f2:ed:a6: c7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3C:29:6A:1F:97:0D:4E:39:3C:F8:01:D9:90:8A:7C:48:3B:DB:23 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213798.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6286:1::-2a0f:6286:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 2c:4f:4a:64:90:8b:aa:a1:4b:5d:42:93:54:de:a1:6f:59:5c: ca:44:4f:e6:05:34:64:5a:06:67:7c:95:b1:64:7f:0f:33:33: 9c:14:c3:66:10:12:6f:f2:11:89:3c:09:9c:1f:94:22:1a:a5: fd:f4:db:01:15:a2:9a:7d:bc:99:53:a5:aa:25:18:15:8b:75: 9e:f9:fd:39:6b:05:fb:d5:ae:85:f7:34:62:71:58:20:0c:04: 1c:f1:13:b0:94:5f:23:b2:95:8d:d7:45:4e:d8:6b:e8:d9:04: aa:15:39:62:b9:d2:65:54:0f:8c:8e:f4:66:ce:09:26:d2:d1: 1c:48:79:0c:47:91:9b:c4:75:c2:92:25:d3:3f:68:ee:9c:b2: 41:47:ef:28:11:67:9b:2e:b0:2b:c7:c6:c3:3d:e8:97:ba:39: 0e:9a:03:71:8f:8a:5a:41:2d:c1:92:cb:f6:b9:8a:b5:54:24: ab:94:64:3e:79:b5:6b:aa:6a:18:16:d3:ea:ef:de:2a:12:df: 4f:3d:9c:6c:0d:53:6b:60:f1:bc:8f:03:81:ba:c7:8b:68:ae: db:79:4d:1f:1d:15:94:3f:4d:c5:18:d0:df:f9:b5:fa:cb:f0: 25:38:da:7f:f5:04:6a:ef:69:6c:f6:21:f4:b3:02:08:07:ae: a9:82:06:00 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUFOnUzZ5CnRc3wcbYTPkm7GwoF18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA1MDYxMTQzNTBaFw0yNzA1MDUxMTQ4NTBaMDMxMTAvBgNV BAMTKEZDM0MyOTZBMUY5NzBENEUzOTNDRjgwMUQ5OTA4QTdDNDgzQkRCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQut80k34MB+VteF3ooX/mO2y7 /NFOx2UUGHnCdxQb8/xv5Bh8QIFLXLzTmxhrByKZr7UmURITE1NCongDvkne1qJv WCe6x05NA8IaJfYiDG/05775FhATxkDlPsSxZ1wGpj/4bJ7GFvUHbKOyPSRqt9xx uThvRtogYVyk2pk1+CT1MK56xijsy6INusbLE3nj17MpZu+v7TLyeD9XdLrt7ylf Nj4eBvpQGy7PfKoVj0ZLNNq+1HLdFTrQtTYzHiAUxNYl549Kc4SUGhlC2a74Wfc0 rr2Cmrt1ZRb5scHSC6O6/P1dGOCI+cE/HcD+UZFeWp6A7Hi/aw1rH/LtpsfRAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQU/Dwpah+XDU45PPgB2ZCKfEg72yMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM3OTgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgACMBQwEgMH ACoPYoYAAQMHACoPYoYABDANBgkqhkiG9w0BAQsFAAOCAQEALE9KZJCLqqFLXUKT VN6hb1lcykRP5gU0ZFoGZ3yVsWR/DzMznBTDZhASb/IRiTwJnB+UIhql/fTbARWi mn28mVOlqiUYFYt1nvn9OWsF+9Wuhfc0YnFYIAwEHPETsJRfI7KVjddFTthr6NkE qhU5YrnSZVQPjI70Zs4JJtLRHEh5DEeRm8R1wpIl0z9o7pyyQUfvKBFnmy6wK8fG wz3ol7o5DpoDcY+KWkEtwZLL9rmKtVQkq5RkPnm1a6pqGBbT6u/eKhLfTz2cbA1T a2DxvI8DgbrHi2iu23lNHx0VlD9NxRjQ3/m1+svwJTjaf/UEau9pbPYh9LMCCAeu qYIGAA== -----END CERTIFICATE-----Generated at Tue May 12 23:59:45 2026 by rpki-client