$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS216006.roa File: AS216006.roa (raw, json) Hash identifier: EBhk1412Nyp6WyLB5WU6j+Jl8byXsXms0wFLLkoCvzw= Subject key identifier: 74:A0:D9:99:7B:15:82:20:7F:66:6C:05:51:7D:5A:78:B3:4F:0E:5C Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 6F91B7BD3E11006A8E03152AA9FDB6CCB48553E9 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS216006.roa Signing time: Mon 27 Apr 2026 12:03:09 +0000 ROA not before: Mon 27 Apr 2026 11:58:09 +0000 ROA not after: Mon 26 Apr 2027 12:03:09 +0000 asID: 216006 IP address blocks: 2a0f:6284:500::/44 maxlen: 44 2a0f:6284:500::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:91:b7:bd:3e:11:00:6a:8e:03:15:2a:a9:fd:b6:cc:b4:85:53:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Apr 27 11:58:09 2026 GMT Not After : Apr 26 12:03:09 2027 GMT Subject: CN=74A0D9997B1582207F666C05517D5A78B34F0E5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:28:71:f0:9a:d7:7c:c3:50:cf:ae:9e:67:2d: cf:fd:c8:79:17:e0:d9:10:00:7d:82:2e:3f:d8:2c: 10:62:84:c2:a2:ac:fa:1f:b5:34:e2:76:78:b0:b6: 87:ff:77:7d:d9:92:88:7b:f2:09:48:8f:cd:48:f0: 95:5f:fb:5e:12:0b:bf:8e:62:d9:70:4f:4e:53:3c: ff:7e:82:cc:9c:ec:9b:3f:0d:9a:d1:d6:02:55:7a: 7f:3c:a5:13:39:bf:bb:fb:62:fe:88:58:54:0a:e6: c4:b4:59:21:ab:0d:56:b8:74:65:69:d6:d1:07:3b: 2e:77:56:85:ca:53:27:fe:10:a3:8d:3f:92:0f:0f: 30:50:47:0e:34:54:5d:1b:60:c8:4c:be:43:7f:74: 64:77:db:79:5e:65:41:4b:36:f2:56:cb:2f:d1:1f: c0:a0:8f:e4:14:46:a0:d4:7e:00:0d:df:1f:97:9d: f0:7f:06:b9:f9:b8:8e:f6:b2:3e:08:a6:bf:db:84: 49:73:6e:8c:31:b9:65:8d:71:a3:0d:d3:02:b7:6b: aa:76:6f:68:3d:b6:e2:a6:69:e7:1f:63:ca:be:cb: fd:7f:73:d7:d0:76:8c:41:ed:7a:9a:d2:04:dc:99: e9:b0:1c:6d:db:16:c6:ed:43:74:10:ae:a1:22:f2: ca:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A0:D9:99:7B:15:82:20:7F:66:6C:05:51:7D:5A:78:B3:4F:0E:5C X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS216006.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284:500::/44 Signature Algorithm: sha256WithRSAEncryption 64:8c:34:bc:b8:bd:d7:88:1f:43:08:ee:6b:c5:01:c6:09:5b: 82:2a:ce:10:c3:ec:df:5c:ae:4e:d6:cb:66:2f:21:b3:17:75: 7d:29:56:22:e9:e6:d8:34:45:e0:56:e9:ef:99:aa:6e:26:71: dc:24:73:91:10:f7:4f:69:f1:bb:32:6b:89:a0:d8:b0:67:6f: 30:d7:2d:e8:e7:d9:21:a3:fc:a1:31:73:13:f4:b9:34:50:69: 59:5e:d7:73:86:67:c7:37:05:d1:69:52:66:6e:ff:6f:69:1a: 9b:35:38:4d:d5:ad:da:d8:86:9b:f6:e4:fd:18:1d:e4:59:46: 24:9b:e3:ed:6a:55:e8:45:26:13:2e:f4:d5:bb:04:8f:9e:1d: bc:ae:d6:45:fd:8e:1e:ec:62:6b:7c:7b:93:55:d6:f7:37:43: e0:d6:49:5a:c2:9a:ef:f4:85:0a:c4:ab:5a:44:e2:3c:71:08: c2:1f:af:0d:55:c7:91:a0:db:a0:00:69:05:7d:4c:df:78:93: fc:f0:cf:1f:7a:1b:ab:fd:10:a7:0f:8d:76:d6:9a:c4:21:ba: d0:4d:df:ec:9a:f4:1b:52:db:a5:71:55:f2:a5:34:4e:8b:2f: 19:cb:4e:e8:2c:99:c5:1b:76:54:64:ed:6a:12:6d:28:56:fc: ad:86:cb:fe -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUb5G3vT4RAGqOAxUqqf22zLSFU+kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA0MjcxMTU4MDlaFw0yNzA0MjYxMjAzMDlaMDMxMTAvBgNV BAMTKDc0QTBEOTk5N0IxNTgyMjA3RjY2NkMwNTUxN0Q1QTc4QjM0RjBFNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8KHHwmtd8w1DPrp5nLc/9yHkX 4NkQAH2CLj/YLBBihMKirPoftTTidniwtof/d33Zkoh78glIj81I8JVf+14SC7+O YtlwT05TPP9+gsyc7Js/DZrR1gJVen88pRM5v7v7Yv6IWFQK5sS0WSGrDVa4dGVp 1tEHOy53VoXKUyf+EKONP5IPDzBQRw40VF0bYMhMvkN/dGR323leZUFLNvJWyy/R H8Cgj+QURqDUfgAN3x+XnfB/Brn5uI72sj4Ipr/bhElzbowxuWWNcaMN0wK3a6p2 b2g9tuKmaecfY8q+y/1/c9fQdoxB7Xqa0gTcmemwHG3bFsbtQ3QQrqEi8sobAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUdKDZmXsVgiB/ZmwFUX1aeLNPDlwwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTYwMDYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQq D2KEBQAwDQYJKoZIhvcNAQELBQADggEBAGSMNLy4vdeIH0MI7mvFAcYJW4IqzhDD 7N9crk7Wy2YvIbMXdX0pViLp5tg0ReBW6e+Zqm4mcdwkc5EQ909p8bsya4mg2LBn bzDXLejn2SGj/KExcxP0uTRQaVle13OGZ8c3BdFpUmZu/29pGps1OE3VrdrYhpv2 5P0YHeRZRiSb4+1qVehFJhMu9NW7BI+eHbyu1kX9jh7sYmt8e5NV1vc3Q+DWSVrC mu/0hQrEq1pE4jxxCMIfrw1Vx5Gg26AAaQV9TN94k/zwzx96G6v9EKcPjXbWmsQh utBN3+ya9BtS26VxVfKlNE6LLxnLTugsmcUbdlRk7WoSbShW/K2Gy/4= -----END CERTIFICATE-----Generated at Wed May 13 00:14:42 2026 by rpki-client