This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: a/xYnmIPuik6mtdoBfXF4feB8rV05aT/T8nCpPz+M28= Subject key identifier: AC:D2:3A:FB:24:EF:9E:CD:1F:E9:D7:A2:AF:51:42:FD:E2:2F:67:E4 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1ED9530438F15B7604AC7715FDD659FDA4D93681 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Tue 25 Nov 2025 15:03:04 +0000 ROA not before: Tue 25 Nov 2025 14:58:04 +0000 ROA not after: Tue 24 Nov 2026 15:03:04 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a0f:6284:6000::/36 maxlen: 36 2a0f:6284:7000::/36 maxlen: 36 2a0f:6285::/32 maxlen: 32 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d9:53:04:38:f1:5b:76:04:ac:77:15:fd:d6:59:fd:a4:d9:36:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Nov 25 14:58:04 2025 GMT Not After : Nov 24 15:03:04 2026 GMT Subject: CN=ACD23AFB24EF9ECD1FE9D7A2AF5142FDE22F67E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a4:c6:0b:3a:56:6e:ff:8a:6e:93:0b:d0:5c: 8d:90:42:47:41:8c:d9:4f:68:61:46:78:21:40:e0: 2a:0e:6f:6d:73:de:cc:82:9f:98:73:8d:18:39:63: ac:85:b2:ce:ac:9c:ae:db:27:f5:27:fe:2e:61:bc: 3b:e0:0b:d9:a5:83:ec:02:d2:e7:15:a7:bb:02:a4: 4b:12:0a:32:50:55:ed:6f:63:12:29:c5:dd:c2:b5: 49:2b:b3:42:2a:d5:f8:3a:7f:8d:30:c7:1a:8a:6b: 88:20:a6:96:5b:f1:31:08:8e:64:0a:a2:c3:d4:be: 6c:fc:e9:98:e1:f9:2c:64:a3:c7:3d:26:34:69:d8: fd:43:dd:b5:04:ba:16:75:da:b0:03:15:76:45:8a: 57:d0:3f:38:e4:c2:bc:4b:42:db:54:62:f8:ef:31: f9:7a:4d:8a:44:57:fc:d4:5d:b2:cc:b7:7c:9b:69: 77:90:92:68:16:f1:be:a3:0f:94:5d:5c:56:61:ba: 2b:c4:09:fe:04:fd:0e:97:e5:e2:70:d9:25:c9:8a: 65:70:a4:c1:ae:41:9a:d8:ae:a7:d7:50:26:fc:e7: 18:ec:3b:df:a2:17:f1:c4:ee:c3:28:55:aa:50:76: 9b:06:28:15:7e:d1:cc:87:0d:f2:6f:96:9c:5d:90: fc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D2:3A:FB:24:EF:9E:CD:1F:E9:D7:A2:AF:51:42:FD:E2:2F:67:E4 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a0f:6284:6000::/35 2a0f:6285::/32 Signature Algorithm: sha256WithRSAEncryption 85:3a:45:6a:6a:dc:e4:ef:1e:90:16:5f:49:84:b5:33:f0:a4: dc:cb:1e:02:8a:53:1d:19:6d:09:0f:7b:b8:7a:87:04:fd:45: d1:79:0e:13:e3:41:74:68:a6:14:55:f8:4a:14:71:74:c3:c6: f9:eb:ea:c5:80:0b:dc:ba:5f:65:ba:80:4c:f8:e9:83:a3:0a: 46:04:91:27:c5:13:5d:b2:d5:df:e1:1d:f4:c8:ce:82:6f:99: 2d:f1:63:93:85:2b:f8:d6:2b:b0:49:41:00:54:b4:d1:16:81: ae:8b:66:c0:0d:cb:65:82:71:68:34:3f:7c:b5:91:ae:dd:62: d9:29:bf:f1:35:3b:94:d4:56:14:d8:fc:71:88:2b:04:f5:9a: 7c:09:a9:e0:2b:33:c2:60:7a:de:fe:df:d0:07:06:6f:25:69: ba:5d:58:dd:11:6f:91:72:bc:1b:d2:03:04:64:8e:28:9c:1c: 6d:25:d6:9c:10:f9:fa:75:a5:a6:6c:d7:8f:8e:17:85:c1:e1: 0a:54:a5:44:e7:a0:79:e0:cc:03:4b:5f:55:c1:b6:a7:6c:49: f5:4b:5a:4f:be:3c:2c:21:87:17:d1:60:a7:cb:63:62:35:da: 61:f0:ba:50:63:e2:81:26:22:9e:14:c1:2d:c2:43:a1:05:41: 2a:98:02:a2 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUHtlTBDjxW3YErHcV/dZZ/aTZNoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTExMjUxNDU4MDRaFw0yNjExMjQxNTAzMDRaMDMxMTAvBgNV BAMTKEFDRDIzQUZCMjRFRjlFQ0QxRkU5RDdBMkFGNTE0MkZERTIyRjY3RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvpMYLOlZu/4pukwvQXI2QQkdB jNlPaGFGeCFA4CoOb21z3syCn5hzjRg5Y6yFss6snK7bJ/Un/i5hvDvgC9mlg+wC 0ucVp7sCpEsSCjJQVe1vYxIpxd3CtUkrs0Iq1fg6f40wxxqKa4ggppZb8TEIjmQK osPUvmz86Zjh+Sxko8c9JjRp2P1D3bUEuhZ12rADFXZFilfQPzjkwrxLQttUYvjv Mfl6TYpEV/zUXbLMt3ybaXeQkmgW8b6jD5RdXFZhuivECf4E/Q6X5eJw2SXJimVw pMGuQZrYrqfXUCb85xjsO9+iF/HE7sMoVapQdpsGKBV+0cyHDfJvlpxdkPw1AgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUrNI6+yTvns0f6deir1FC/eIvZ+QwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwLwYIKwYBBQUHAQcBAf8EIDAeMBwEAgACMBYDBQAq Bd/CAwYFKg9ihGADBQAqD2KFMA0GCSqGSIb3DQEBCwUAA4IBAQCFOkVqatzk7x6Q Fl9JhLUz8KTcyx4CilMdGW0JD3u4eocE/UXReQ4T40F0aKYUVfhKFHF0w8b56+rF gAvcul9luoBM+OmDowpGBJEnxRNdstXf4R30yM6Cb5kt8WOThSv41iuwSUEAVLTR FoGui2bADctlgnFoND98tZGu3WLZKb/xNTuU1FYU2PxxiCsE9Zp8CangKzPCYHre /t/QBwZvJWm6XVjdEW+Rcrwb0gMEZI4onBxtJdacEPn6daWmbNePjheFweEKVKVE 56B54MwDS19VwbanbEn1S1pPvjwsIYcX0WCny2NiNdph8LpQY+KBJiKeFMEtwkOh BUEqmAKi -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:04 2025 by rpki-client