$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: Urt6FfDM/Bkt2rcHJicshgJEWzL3rNqYAMyD3uo3Mko= Subject key identifier: 84:B5:6A:02:6D:7B:FD:29:62:AF:FB:05:70:8D:10:67:27:E8:EB:85 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 4C147CA056EA0135D021E16FE2D679BDC532F5F2 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Sun 08 Mar 2026 17:56:13 +0000 ROA not before: Sun 08 Mar 2026 17:51:13 +0000 ROA not after: Sun 07 Mar 2027 17:56:13 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a0f:6282:9000::/36 maxlen: 36 2a0f:6282:a000::/36 maxlen: 36 2a0f:6285::/32 maxlen: 32 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 23:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:14:7c:a0:56:ea:01:35:d0:21:e1:6f:e2:d6:79:bd:c5:32:f5:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Mar 8 17:51:13 2026 GMT Not After : Mar 7 17:56:13 2027 GMT Subject: CN=84B56A026D7BFD2962AFFB05708D106727E8EB85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9e:ea:e0:9e:72:32:50:82:35:ba:09:92:ef: 3c:69:89:36:d8:20:a8:a4:94:43:c6:0e:46:ec:74: e1:5b:f3:70:66:01:2f:d7:32:86:17:00:eb:c3:48: 00:16:ee:07:6a:b3:9e:54:e6:38:16:64:88:cc:35: ec:66:6a:ae:ed:56:9c:e0:88:e8:d2:ef:7c:85:3f: c3:10:69:c8:2c:12:49:26:3b:e1:e7:e1:f6:26:db: 67:d6:dc:f9:11:d6:f2:c0:54:af:9e:6f:f4:f2:36: e8:c6:d6:db:e3:95:e1:37:62:92:8b:72:e7:73:05: fb:42:c0:cb:f4:f2:a6:5e:6b:13:17:4e:8a:3e:2d: 0c:c3:5c:76:84:a8:07:5b:e9:a8:86:2b:a8:aa:f4: d3:56:19:8d:51:c5:f6:12:ae:f5:af:73:6d:b4:b9: 48:fc:1a:4b:65:d6:13:72:e6:54:c8:77:8c:75:93: 1e:d4:c0:68:a2:f4:8f:78:cd:ee:d4:88:bd:7f:d8: f9:9f:79:be:1d:65:e7:2b:a3:ef:8e:17:63:3c:f5: bc:4e:93:43:45:d5:d7:ca:c0:28:0a:ba:46:67:ae: cf:f6:f7:16:c7:dc:17:a3:7e:be:4b:b6:10:be:49: ab:0b:b8:97:66:a8:f6:dc:16:a6:f4:21:b6:2c:7c: 56:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B5:6A:02:6D:7B:FD:29:62:AF:FB:05:70:8D:10:67:27:E8:EB:85 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a0f:6282:9000::-2a0f:6282:afff:ffff:ffff:ffff:ffff:ffff 2a0f:6285::/32 Signature Algorithm: sha256WithRSAEncryption 6a:d1:cc:30:24:6a:6d:48:e5:be:de:ad:e1:6d:d5:8b:4c:25: db:ab:85:b4:d3:70:3b:6d:9a:f4:9d:08:fb:2d:46:cf:1a:57: d4:fe:62:90:ed:3c:ea:1d:3d:4b:d6:75:2b:9d:b4:21:bd:8c: 06:2b:00:5d:09:bb:9d:4b:74:ae:45:0d:1d:c6:47:4d:c2:f4: e2:4d:04:e5:5e:56:82:4f:1d:5a:85:fc:dc:7a:d9:aa:c0:54: 29:18:db:78:72:4e:0c:0a:80:8d:aa:9b:f0:4a:cd:bb:a2:f6: 73:38:4a:f4:02:30:91:a6:65:44:30:05:ed:4d:53:6e:58:04: ed:91:a7:89:04:3c:5b:0e:b4:db:6a:53:8c:bb:a5:fd:0c:4d: 89:5f:ab:33:3e:c9:02:7c:7f:31:1c:05:76:f2:8c:3a:74:c5: 45:f8:0e:09:cd:36:fe:c5:a9:bb:e3:ea:c1:4a:19:b2:0c:09: dc:3b:78:3a:53:28:bd:29:a3:9c:7a:cb:47:da:e2:16:3d:73: 57:76:08:5f:ef:2c:76:e9:28:7b:f5:7d:1f:6d:f2:52:5c:1b: fb:90:f9:80:dd:78:99:e4:4a:22:68:8c:0f:d5:7f:fc:52:0c: 3d:9f:18:77:36:22:f2:df:b7:0e:69:1d:20:d8:be:b8:21:1c: 99:a0:a4:74 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUTBR8oFbqATXQIeFv4tZ5vcUy9fIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAzMDgxNzUxMTNaFw0yNzAzMDcxNzU2MTNaMDMxMTAvBgNV BAMTKDg0QjU2QTAyNkQ3QkZEMjk2MkFGRkIwNTcwOEQxMDY3MjdFOEVCODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQConurgnnIyUII1ugmS7zxpiTbY IKiklEPGDkbsdOFb83BmAS/XMoYXAOvDSAAW7gdqs55U5jgWZIjMNexmaq7tVpzg iOjS73yFP8MQacgsEkkmO+Hn4fYm22fW3PkR1vLAVK+eb/TyNujG1tvjleE3YpKL cudzBftCwMv08qZeaxMXToo+LQzDXHaEqAdb6aiGK6iq9NNWGY1RxfYSrvWvc220 uUj8Gktl1hNy5lTId4x1kx7UwGii9I94ze7UiL1/2Pmfeb4dZecro++OF2M89bxO k0NF1dfKwCgKukZnrs/29xbH3Bejfr5LthC+SasLuJdmqPbcFqb0IbYsfFZXAgMB AAGjggH2MIIB8jAdBgNVHQ4EFgQUhLVqAm17/Slir/sFcI0QZyfo64UwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwOQYIKwYBBQUHAQcBAf8EKjAoMCYEAgACMCADBQAq Bd/CMBADBgQqD2KCkAMGBCoPYoKgAwUAKg9ihTANBgkqhkiG9w0BAQsFAAOCAQEA atHMMCRqbUjlvt6t4W3Vi0wl26uFtNNwO22a9J0I+y1GzxpX1P5ikO086h09S9Z1 K520Ib2MBisAXQm7nUt0rkUNHcZHTcL04k0E5V5Wgk8dWoX83HrZqsBUKRjbeHJO DAqAjaqb8ErNu6L2czhK9AIwkaZlRDAF7U1TblgE7ZGniQQ8Ww6022pTjLul/QxN iV+rMz7JAnx/MRwFdvKMOnTFRfgOCc02/sWpu+PqwUoZsgwJ3Dt4OlMovSmjnHrL R9riFj1zV3YIX+8sdukoe/V9H23yUlwb+5D5gN14meRKImiMD9V//FIMPZ8YdzYi 8t+3DmkdINi+uCEcmaCkdA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:30:35 2026 by rpki-client