$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: EhkSNPMjADwx3OSjKiCL9eE/9dBCdhHfGkgaWfo4OKY= Subject key identifier: E7:0E:0F:A2:EE:D5:6E:73:D0:BD:DA:BE:7E:44:2B:FB:9A:84:97:6A Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 3185428AAA079106F6556602103E4EF00F54CC20 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Mon 18 Aug 2025 15:59:01 +0000 ROA not before: Mon 18 Aug 2025 15:54:01 +0000 ROA not after: Mon 17 Aug 2026 15:59:01 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a06:1284::/32 maxlen: 32 2a09:54c7:c000::/34 maxlen: 34 2a0f:6284::/34 maxlen: 34 2a0f:6284:5000::/36 maxlen: 36 2a0f:6284:7000::/36 maxlen: 36 2a0f:6285::/32 maxlen: 32 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:85:42:8a:aa:07:91:06:f6:55:66:02:10:3e:4e:f0:0f:54:cc:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 18 15:54:01 2025 GMT Not After : Aug 17 15:59:01 2026 GMT Subject: CN=E70E0FA2EED56E73D0BDDABE7E442BFB9A84976A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:82:6a:c2:1f:14:c5:cd:b6:a8:b0:62:f5:34: b7:c3:9e:ca:40:64:3f:39:d9:a3:b4:e6:7f:1c:7f: c4:48:bf:b0:97:88:2d:c6:98:5a:c3:5e:a1:fa:66: f9:a7:7a:9a:49:56:2e:6f:27:b6:24:90:f8:50:11: 63:c3:87:62:c1:14:b9:f6:e3:f2:68:70:6f:30:a8: e9:82:81:f1:4d:e4:a4:38:b1:5e:19:a5:71:83:60: 42:db:00:bf:f7:6f:c2:0f:3f:21:37:8f:7f:7b:3c: ea:41:4f:78:69:aa:8e:83:69:6d:6d:0b:9f:5d:b4: 59:f2:c3:ba:66:60:d0:ae:7a:6c:4d:e5:43:70:38: fe:02:18:bc:96:5c:e2:ca:fe:73:d9:7b:82:cc:01: 84:93:40:53:41:c4:b8:4e:d3:6e:ef:5c:35:73:f5: 56:db:4d:5f:c0:61:8a:e1:81:d3:38:1c:b0:f8:3b: bc:67:c1:1d:0b:a3:bb:e9:ab:69:68:67:42:d7:52: bc:62:5d:b2:88:ab:13:48:16:75:60:93:47:f0:d6: 00:76:61:63:e9:29:ae:16:2f:76:61:45:bb:c9:f3: 1c:09:90:f0:5b:e6:50:46:e1:35:30:fe:82:52:09: a4:f3:72:0a:11:15:a9:2c:bc:1e:ba:e3:df:0f:2b: 1c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0E:0F:A2:EE:D5:6E:73:D0:BD:DA:BE:7E:44:2B:FB:9A:84:97:6A X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a06:1284::/32 2a09:54c7:c000::/34 2a0f:6284::/34 2a0f:6284:5000::/36 2a0f:6284:7000::/36 2a0f:6285::/32 Signature Algorithm: sha256WithRSAEncryption 80:e0:8a:6b:6a:10:26:14:0e:48:9a:c1:18:bc:ff:a2:62:bb: a7:c3:b4:b2:4f:28:c2:fc:f1:d5:af:cc:2b:27:d3:f3:94:6d: e0:aa:89:71:a2:07:32:58:f2:10:86:d7:07:7b:13:b4:c2:e9: 79:7e:cc:e5:67:24:60:46:d7:c3:c6:76:d2:52:69:1e:6d:ef: 27:2e:74:c4:cb:41:8e:50:1c:b1:a5:c6:77:d6:2d:cd:fb:ec: 7b:de:dd:c0:7f:be:f3:5d:f1:2e:b3:a4:a8:90:04:c9:7c:c3: 13:11:a2:33:b5:28:5e:99:e0:87:f5:38:42:5a:2a:ca:11:13: e8:8b:77:42:60:0d:48:d2:89:93:f1:d1:fe:c7:1d:41:31:72: e3:8f:c1:90:de:40:2b:4c:5e:0e:be:57:b0:76:78:e9:d1:1f: ed:02:73:69:35:77:24:56:35:8b:8e:08:c8:40:2a:6c:32:f8: 4d:b1:6b:54:67:84:21:9f:a3:e9:d8:8f:38:8e:2b:2c:5e:fd: b3:7d:b1:68:f3:4b:68:80:aa:0b:06:c5:6a:6b:58:5b:ba:ba: da:91:3e:1e:7a:c1:0a:82:86:ea:75:bd:d3:b3:e0:a6:eb:36: 58:3f:44:08:e7:1e:40:27:ab:a2:f0:34:84:ce:8a:ba:19:75: 7a:51:3a:14 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUMYVCiqoHkQb2VWYCED5O8A9UzCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MTgxNTU0MDFaFw0yNjA4MTcxNTU5MDFaMDMxMTAvBgNV BAMTKEU3MEUwRkEyRUVENTZFNzNEMEJEREFCRTdFNDQyQkZCOUE4NDk3NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDgmrCHxTFzbaosGL1NLfDnspA ZD852aO05n8cf8RIv7CXiC3GmFrDXqH6ZvmneppJVi5vJ7YkkPhQEWPDh2LBFLn2 4/JocG8wqOmCgfFN5KQ4sV4ZpXGDYELbAL/3b8IPPyE3j397POpBT3hpqo6DaW1t C59dtFnyw7pmYNCuemxN5UNwOP4CGLyWXOLK/nPZe4LMAYSTQFNBxLhO027vXDVz 9VbbTV/AYYrhgdM4HLD4O7xnwR0Lo7vpq2loZ0LXUrxiXbKIqxNIFnVgk0fw1gB2 YWPpKa4WL3ZhRbvJ8xwJkPBb5lBG4TUw/oJSCaTzcgoRFaksvB66498PKxzVAgMB AAGjggILMIICBzAdBgNVHQ4EFgQU5w4Pou7VbnPQvdq+fkQr+5qEl2owHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwTgYIKwYBBQUHAQcBAf8EPzA9MDsEAgACMDUDBQAq Bd/CAwUAKgYShAMGBioJVMfAAwYGKg9ihAADBgQqD2KEUAMGBCoPYoRwAwUAKg9i hTANBgkqhkiG9w0BAQsFAAOCAQEAgOCKa2oQJhQOSJrBGLz/omK7p8O0sk8owvzx 1a/MKyfT85Rt4KqJcaIHMljyEIbXB3sTtMLpeX7M5WckYEbXw8Z20lJpHm3vJy50 xMtBjlAcsaXGd9Ytzfvse97dwH++813xLrOkqJAEyXzDExGiM7UoXpngh/U4Qloq yhET6It3QmANSNKJk/HR/scdQTFy44/BkN5AK0xeDr5XsHZ46dEf7QJzaTV3JFY1 i44IyEAqbDL4TbFrVGeEIZ+j6diPOI4rLF79s32xaPNLaICqCwbFamtYW7q62pE+ HnrBCoKG6nW907Pgpus2WD9ECOceQCerovA0hM6Kuhl1elE6FA== -----END CERTIFICATE-----Generated at Sat Aug 23 16:03:12 2025 by rpki-client