$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215916.roa File: AS215916.roa (raw, json) Hash identifier: JpD3bZY5sUqOGGjlwF5VW/9J/3HCHUPvKBkFh+9ZrUA= Subject key identifier: 2F:11:21:32:4C:16:50:22:19:7F:6F:61:66:D0:DB:48:72:00:1E:BA Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 705770F437955BC0F17455BDEF8EAE5827C0BBED Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215916.roa Signing time: Thu 23 Apr 2026 18:19:45 +0000 ROA not before: Thu 23 Apr 2026 18:14:45 +0000 ROA not after: Thu 22 Apr 2027 18:19:45 +0000 asID: 215916 IP address blocks: 2a0f:6284:4800::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:57:70:f4:37:95:5b:c0:f1:74:55:bd:ef:8e:ae:58:27:c0:bb:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Apr 23 18:14:45 2026 GMT Not After : Apr 22 18:19:45 2027 GMT Subject: CN=2F1121324C165022197F6F6166D0DB4872001EBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:36:4d:a5:db:26:64:20:e8:3c:1d:87:08:bd: 07:7b:f3:cc:f7:d2:1f:8b:f3:ac:b7:cf:42:32:33: b1:a7:88:a4:9b:bf:27:9b:b0:fa:6a:52:93:4f:19: 48:57:6f:94:c1:7b:b7:47:e9:8b:27:ac:27:60:9f: fb:a4:15:9d:25:1f:a6:56:44:3b:14:0b:ab:81:fd: 23:05:2a:8d:83:37:78:ed:ca:d6:56:db:b9:92:90: ea:90:2e:e6:5f:32:f3:5b:bd:77:92:2b:ae:b8:87: 27:eb:8b:fd:45:2d:cb:6e:b8:ec:c1:03:2d:81:32: 0c:95:c4:cc:9e:11:79:7b:4e:5e:ef:2b:5b:7b:42: 47:e2:11:ed:ff:e1:fe:d0:27:31:4d:9e:0c:34:d9: 74:31:4a:b0:5f:59:cc:72:26:75:91:44:10:d0:61: 7c:60:6c:94:ee:16:c2:fd:11:09:b2:53:84:c3:d4: 7c:0d:da:6a:a8:0c:c3:bc:eb:7d:d6:22:d1:ad:3b: 12:5f:36:32:68:c1:43:cf:f3:d3:26:4a:0d:bd:e7: 8c:ec:87:8a:8d:2c:db:7f:33:d4:8f:75:db:fd:2b: 1b:4c:5a:e4:75:ae:ad:66:9e:59:33:80:16:11:3e: 36:c7:ff:78:cf:a0:24:b1:81:c4:be:45:79:d8:79: ba:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:11:21:32:4C:16:50:22:19:7F:6F:61:66:D0:DB:48:72:00:1E:BA X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215916.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284:4800::/40 Signature Algorithm: sha256WithRSAEncryption 93:6f:ed:e8:db:bf:5c:77:b3:c2:3d:83:cd:9b:d6:df:53:c5: 99:01:02:f1:bf:b5:f0:03:63:5b:d5:3f:50:8b:4c:46:0e:3e: 01:94:8a:9e:22:11:6f:cc:2c:69:ac:2e:cb:f8:c5:e1:d8:d9: 02:9e:03:68:30:ab:2a:3f:5a:e8:64:09:ba:8d:bf:dc:97:33: a4:a0:0c:af:bd:89:c9:5c:2f:7d:85:2a:2c:47:e7:c0:be:05: 5c:9f:36:55:87:2d:67:4e:8e:4e:cf:30:51:25:19:5b:87:17: 1a:86:4a:94:94:5b:00:3f:5b:ba:aa:04:ef:28:44:76:67:bb: 5e:91:41:a2:bd:3c:8b:1c:96:67:14:f9:2e:d3:b6:c1:e3:54: cf:74:69:fe:98:ee:f2:d5:1f:eb:8e:49:a3:30:d7:54:eb:e6: e8:64:33:6b:18:c5:f4:2b:1d:3d:41:09:15:36:cf:d6:75:d4: 84:a7:d7:39:f7:ca:8a:ec:08:d4:f1:e2:b0:c7:e9:52:5c:d3: 71:79:8c:d8:91:3d:43:86:a3:67:61:8b:77:2a:ed:8a:8f:1c: e4:73:6f:8f:29:0c:4b:bd:5f:1d:43:14:4d:a1:a9:89:6c:2f: 77:d6:29:a9:21:81:f2:6c:da:c5:bb:d0:d5:b8:c4:a4:49:c0: 9b:3f:e5:64 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUcFdw9DeVW8DxdFW9746uWCfAu+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA0MjMxODE0NDVaFw0yNzA0MjIxODE5NDVaMDMxMTAvBgNV BAMTKDJGMTEyMTMyNEMxNjUwMjIxOTdGNkY2MTY2RDBEQjQ4NzIwMDFFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSNk2l2yZkIOg8HYcIvQd788z3 0h+L86y3z0IyM7GniKSbvyebsPpqUpNPGUhXb5TBe7dH6YsnrCdgn/ukFZ0lH6ZW RDsUC6uB/SMFKo2DN3jtytZW27mSkOqQLuZfMvNbvXeSK664hyfri/1FLctuuOzB Ay2BMgyVxMyeEXl7Tl7vK1t7QkfiEe3/4f7QJzFNngw02XQxSrBfWcxyJnWRRBDQ YXxgbJTuFsL9EQmyU4TD1HwN2mqoDMO8633WItGtOxJfNjJowUPP89MmSg2954zs h4qNLNt/M9SPddv9KxtMWuR1rq1mnlkzgBYRPjbH/3jPoCSxgcS+RXnYebrpAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQULxEhMkwWUCIZf29hZtDbSHIAHrowHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTU5MTYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAq D2KESDANBgkqhkiG9w0BAQsFAAOCAQEAk2/t6Nu/XHezwj2DzZvW31PFmQEC8b+1 8ANjW9U/UItMRg4+AZSKniIRb8wsaawuy/jF4djZAp4DaDCrKj9a6GQJuo2/3Jcz pKAMr72JyVwvfYUqLEfnwL4FXJ82VYctZ06OTs8wUSUZW4cXGoZKlJRbAD9buqoE 7yhEdme7XpFBor08ixyWZxT5LtO2weNUz3Rp/pju8tUf645JozDXVOvm6GQzaxjF 9CsdPUEJFTbP1nXUhKfXOffKiuwI1PHisMfpUlzTcXmM2JE9Q4ajZ2GLdyrtio8c 5HNvjykMS71fHUMUTaGpiWwvd9YpqSGB8mzaxbvQ1bjEpEnAmz/lZA== -----END CERTIFICATE-----Generated at Wed May 13 00:46:07 2026 by rpki-client