$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215108.roa File: AS215108.roa (raw, json) Hash identifier: rkjm907eaANvqz9Uaj+dCfVQg9bGw/FvOmzCdqvBE6g= Subject key identifier: 85:B5:7D:FB:0F:F4:F9:8A:87:D9:C1:A0:41:C8:AE:64:E3:6A:E9:C4 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 51428C9D4D4F29CA728F531E96FBCAF6A921A0A9 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215108.roa Signing time: Thu 19 Mar 2026 08:00:25 +0000 ROA not before: Thu 19 Mar 2026 07:55:25 +0000 ROA not after: Thu 18 Mar 2027 08:00:25 +0000 asID: 215108 IP address blocks: 2a0a:6044:2000::/36 maxlen: 36 2a0f:6282:8000::/36 maxlen: 36 2a0f:6282:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 23:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:42:8c:9d:4d:4f:29:ca:72:8f:53:1e:96:fb:ca:f6:a9:21:a0:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Mar 19 07:55:25 2026 GMT Not After : Mar 18 08:00:25 2027 GMT Subject: CN=85B57DFB0FF4F98A87D9C1A041C8AE64E36AE9C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5b:61:56:ca:17:f5:95:17:f4:8d:b6:a9:7e: 4b:5d:4d:e6:20:b9:c0:c8:9b:c6:b1:0e:90:39:8c: aa:6a:a5:81:ee:69:d0:a6:22:ec:a9:e4:a1:5b:49: 51:92:81:2e:aa:fc:4e:16:64:34:7e:b7:94:cc:4c: 6f:0c:3a:38:1c:a8:d3:0d:e0:01:8c:8d:d9:9c:8f: b9:f6:18:aa:8a:42:14:2a:c9:38:ff:a2:01:bd:a4: 3d:b8:a6:8f:04:94:36:5d:66:20:e4:e2:ec:d1:4a: 42:d3:76:73:73:e9:23:1f:24:55:c2:ee:c1:2f:b0: b6:53:60:74:d4:0a:ee:8b:3f:4d:12:e0:88:9c:44: 3c:9c:1b:f3:30:b1:8c:36:de:7f:d8:1f:9c:f2:d4: e1:77:a7:7b:c2:56:4b:c4:98:50:1a:8b:01:c8:99: ca:ae:8f:8c:17:81:e4:a9:80:34:c5:0a:4f:9e:68: 74:12:50:fa:b4:b6:d8:ea:4d:01:21:3a:51:0b:b5: cb:83:e8:e9:0d:15:79:06:3a:ca:d5:6a:2f:db:d5: c0:2b:ce:b2:d6:45:4b:89:3a:c5:12:e8:aa:15:60: 0e:c0:29:0f:3d:ba:8d:4a:cf:ff:52:08:d7:08:dd: 9b:ef:30:b8:23:72:2d:c4:43:db:9d:a0:4d:c2:6b: f3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B5:7D:FB:0F:F4:F9:8A:87:D9:C1:A0:41:C8:AE:64:E3:6A:E9:C4 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215108.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:2000::/36 2a0f:6282:8000::/36 2a0f:6282:c000::/36 Signature Algorithm: sha256WithRSAEncryption 7a:38:92:07:ec:7f:34:66:d6:99:ff:5d:3b:e5:09:6e:37:a1: 97:79:9c:f5:68:da:b2:43:24:80:84:83:28:10:4e:02:6f:ea: 49:70:fb:53:63:60:a4:99:c1:d8:b4:83:8d:b1:fd:b1:9a:23: d2:44:76:e5:04:32:ad:9b:8d:b0:4c:0a:d5:aa:39:2b:b6:41: c0:47:e6:e9:49:91:0f:da:06:c0:dc:be:70:f1:36:bb:fa:c2: bc:9b:48:8b:cd:9b:1d:77:f2:75:38:5f:17:32:f4:06:35:b0: 12:3a:3b:77:81:fe:f4:ad:25:6c:33:ac:64:36:fb:a2:6a:c9: 3e:4b:90:a1:b6:9b:00:4a:8a:0c:bc:66:23:89:04:64:18:5c: a0:63:97:1a:cf:7d:86:50:76:73:f3:aa:6b:fb:0d:5b:40:60: 58:17:3b:21:cf:12:d4:55:39:9a:c8:18:f4:b9:c1:be:e9:bc: 85:0e:f1:dd:a8:87:68:d4:96:ea:92:e5:00:36:aa:d7:a9:2e: ca:da:e7:fd:25:8e:6e:73:15:f8:0f:8a:7f:4c:56:58:60:ba: e5:cb:8a:54:03:96:9b:97:fa:42:ad:c2:ed:36:5a:b4:04:16: 08:d0:f7:7e:fa:ce:29:fe:72:9e:b4:77:c4:17:74:1a:c8:fe: 16:a6:89:7b -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUUUKMnU1PKcpyj1MelvvK9qkhoKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAzMTkwNzU1MjVaFw0yNzAzMTgwODAwMjVaMDMxMTAvBgNV BAMTKDg1QjU3REZCMEZGNEY5OEE4N0Q5QzFBMDQxQzhBRTY0RTM2QUU5QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrW2FWyhf1lRf0jbapfktdTeYg ucDIm8axDpA5jKpqpYHuadCmIuyp5KFbSVGSgS6q/E4WZDR+t5TMTG8MOjgcqNMN 4AGMjdmcj7n2GKqKQhQqyTj/ogG9pD24po8ElDZdZiDk4uzRSkLTdnNz6SMfJFXC 7sEvsLZTYHTUCu6LP00S4IicRDycG/MwsYw23n/YH5zy1OF3p3vCVkvEmFAaiwHI mcquj4wXgeSpgDTFCk+eaHQSUPq0ttjqTQEhOlELtcuD6OkNFXkGOsrVai/b1cAr zrLWRUuJOsUS6KoVYA7AKQ89uo1Kz/9SCNcI3ZvvMLgjci3EQ9udoE3Ca/NbAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUhbV9+w/0+YqH2cGgQciuZONq6cQwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTUxMDgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgACMBgDBgQq CmBEIAMGBCoPYoKAAwYEKg9igsAwDQYJKoZIhvcNAQELBQADggEBAHo4kgfsfzRm 1pn/XTvlCW43oZd5nPVo2rJDJICEgygQTgJv6klw+1NjYKSZwdi0g42x/bGaI9JE duUEMq2bjbBMCtWqOSu2QcBH5ulJkQ/aBsDcvnDxNrv6wrybSIvNmx138nU4Xxcy 9AY1sBI6O3eB/vStJWwzrGQ2+6JqyT5LkKG2mwBKigy8ZiOJBGQYXKBjlxrPfYZQ dnPzqmv7DVtAYFgXOyHPEtRVOZrIGPS5wb7pvIUO8d2oh2jUluqS5QA2qtepLsra 5/0ljm5zFfgPin9MVlhguuXLilQDlpuX+kKtwu02WrQEFgjQ9376zin+cp60d8QX dBrI/hamiXs= -----END CERTIFICATE-----Generated at Thu Mar 26 11:22:16 2026 by rpki-client