This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214040.roa File: AS214040.roa (raw, json) Hash identifier: XS2j8lBT01KWcSOw9J7LoeVBILXnT5erVanoZbmX3uE= Subject key identifier: 80:D0:4C:8A:3C:DA:41:90:97:00:3E:35:7D:9A:62:D0:7E:4A:DB:35 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 69246DF9D36E7ED2B3E6B95DBE0B79A9663B5085 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214040.roa Signing time: Fri 23 Jan 2026 11:36:10 +0000 ROA not before: Fri 23 Jan 2026 11:31:10 +0000 ROA not after: Fri 22 Jan 2027 11:36:10 +0000 asID: 214040 IP address blocks: 2a06:1281:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:24:6d:f9:d3:6e:7e:d2:b3:e6:b9:5d:be:0b:79:a9:66:3b:50:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jan 23 11:31:10 2026 GMT Not After : Jan 22 11:36:10 2027 GMT Subject: CN=80D04C8A3CDA419097003E357D9A62D07E4ADB35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:fc:4a:66:ce:7a:f6:ea:8d:98:f5:95:ca: 2e:01:d4:5a:d9:0c:ab:2f:f4:ab:80:e0:e1:e3:b1: 6a:07:73:c6:80:d2:eb:3c:3c:71:0a:3b:1f:b3:9c: 7e:ad:77:ba:03:b8:ad:82:9d:bc:31:92:18:ec:97: e0:60:09:8e:a0:96:74:59:e1:44:63:0d:f9:8d:c8: 82:fd:d5:11:f9:28:1c:c1:e0:f2:11:49:d9:81:9e: bb:1d:e9:84:7a:f8:79:e0:62:2d:f0:56:eb:11:a8: 00:e2:4d:16:52:4a:7e:4e:11:11:43:de:8d:b9:18: 9c:da:9b:22:d8:24:1e:3b:36:76:d8:07:fb:86:97: 7b:42:0b:20:b4:65:97:8b:a9:ab:da:ca:77:82:29: fc:f7:ea:c4:d0:88:cb:07:2f:b0:c0:ee:1f:36:4f: 3a:58:fd:2a:30:ef:49:c0:ab:ef:9a:bc:65:79:a4: f2:f0:ce:ea:40:ed:ce:4e:ac:91:29:0e:02:bc:82: a6:92:b4:4e:9e:67:7b:d0:a9:72:2a:19:ec:09:e3: 4d:50:33:e0:8d:ec:1c:80:a9:da:01:40:bf:fb:cb: f8:87:84:51:43:d8:eb:ca:a8:1e:c7:e0:db:14:a2: a1:e3:ad:d5:44:90:b9:04:22:f5:2c:fe:f4:41:f0: 7d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D0:4C:8A:3C:DA:41:90:97:00:3E:35:7D:9A:62:D0:7E:4A:DB:35 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214040.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:8000::/36 Signature Algorithm: sha256WithRSAEncryption 8d:a3:7e:c3:d1:3f:0a:c9:ce:15:f7:05:95:f6:0a:af:78:1f: 20:08:71:cb:c9:13:7a:a7:df:4d:77:93:f8:f6:62:12:15:a2: e6:e4:6f:0e:67:ea:51:c7:62:73:6c:0b:2f:9a:a4:b5:61:40: ae:38:97:cd:c0:e8:19:af:c1:b9:dd:ab:3b:9e:53:be:1f:e8: c3:53:b7:68:95:fb:b3:8a:82:2f:ed:39:34:d8:e4:7c:18:2d: fd:9f:39:77:f9:47:3b:26:1b:18:2d:8f:f5:65:66:a2:d7:4e: 82:0a:c9:3e:28:16:e9:16:b3:09:cc:51:52:2a:e0:eb:1e:b9: 2d:6e:a1:54:11:df:ef:f3:54:e2:b5:59:5b:bf:a1:16:fa:6a: a5:76:55:83:e2:d9:7b:a5:77:34:ce:2e:9a:9b:a1:1e:06:ca: 2d:72:a3:4d:18:3e:86:42:e4:f8:c1:f0:57:14:99:2d:5b:1f: a8:12:27:a3:16:87:07:f4:cc:f3:dc:d4:03:1b:94:e8:a5:f7: 4b:3b:00:15:91:eb:78:be:c8:72:09:4f:58:d8:9e:fb:d9:33: f7:ce:4e:55:9c:85:cc:3f:82:6c:3c:65:25:cf:59:96:da:f1: 63:25:db:4b:bc:a4:f1:72:16:c2:98:91:a8:d1:bf:59:2b:21: cf:54:2f:1f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUaSRt+dNuftKz5rldvgt5qWY7UIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAxMjMxMTMxMTBaFw0yNzAxMjIxMTM2MTBaMDMxMTAvBgNV BAMTKDgwRDA0QzhBM0NEQTQxOTA5NzAwM0UzNTdEOUE2MkQwN0U0QURCMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRBPxKZs569uqNmPWVyi4B1FrZ DKsv9KuA4OHjsWoHc8aA0us8PHEKOx+znH6td7oDuK2Cnbwxkhjsl+BgCY6glnRZ 4URjDfmNyIL91RH5KBzB4PIRSdmBnrsd6YR6+HngYi3wVusRqADiTRZSSn5OERFD 3o25GJzamyLYJB47NnbYB/uGl3tCCyC0ZZeLqavayneCKfz36sTQiMsHL7DA7h82 TzpY/Sow70nAq++avGV5pPLwzupA7c5OrJEpDgK8gqaStE6eZ3vQqXIqGewJ401Q M+CN7ByAqdoBQL/7y/iHhFFD2OvKqB7H4NsUoqHjrdVEkLkEIvUs/vRB8H2vAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUgNBMijzaQZCXAD41fZpi0H5K2zUwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQwNDAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQq BhKBgDANBgkqhkiG9w0BAQsFAAOCAQEAjaN+w9E/CsnOFfcFlfYKr3gfIAhxy8kT eqffTXeT+PZiEhWi5uRvDmfqUcdic2wLL5qktWFArjiXzcDoGa/Bud2rO55Tvh/o w1O3aJX7s4qCL+05NNjkfBgt/Z85d/lHOyYbGC2P9WVmotdOggrJPigW6RazCcxR Uirg6x65LW6hVBHf7/NU4rVZW7+hFvpqpXZVg+LZe6V3NM4umpuhHgbKLXKjTRg+ hkLk+MHwVxSZLVsfqBInoxaHB/TM89zUAxuU6KX3SzsAFZHreL7IcglPWNie+9kz 985OVZyFzD+CbDxlJc9ZltrxYyXbS7yk8XIWwpiRqNG/WSshz1QvHw== -----END CERTIFICATE-----Generated at Sun Jan 25 07:09:50 2026 by rpki-client