$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS0.roa File: AS0.roa (raw, json) Hash identifier: vWbxeCL3P0QMXKiqt+AihLp5GWBv7WdGVr7HnTd9uwM= Subject key identifier: 50:B5:DC:D1:63:6F:BF:0C:B7:55:35:AF:A0:FD:7A:7F:BB:6A:13:EE Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 01392E22A3DF936AB85B4740CD08639B644B920B Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS0.roa Signing time: Thu 21 May 2026 08:00:08 +0000 ROA not before: Thu 21 May 2026 07:55:08 +0000 ROA not after: Thu 20 May 2027 08:00:08 +0000 asID: 0 IP address blocks: 2a0f:6284:7000::/36 maxlen: 36 2a0f:6284:d000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 May 2026 08:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:39:2e:22:a3:df:93:6a:b8:5b:47:40:cd:08:63:9b:64:4b:92:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: May 21 07:55:08 2026 GMT Not After : May 20 08:00:08 2027 GMT Subject: CN=50B5DCD1636FBF0CB75535AFA0FD7A7FBB6A13EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3e:f0:ef:63:55:df:41:16:e4:ec:f6:f7:f4: 36:b0:3d:c6:c8:ef:4b:53:17:b3:c4:a3:cd:e6:63: e9:91:51:ce:e8:19:9f:26:87:37:97:13:d5:ee:2f: ee:ec:73:c5:62:74:fc:fe:46:73:5b:7b:da:88:5f: 6f:65:42:21:a1:36:81:d5:48:35:7b:c1:f2:04:03: bd:87:4a:5c:fd:f5:ac:b6:98:7c:f0:8b:60:3b:0f: 11:7c:eb:9c:fc:0f:5a:c1:d3:9a:e3:c4:15:57:eb: 35:3c:e1:6f:68:6f:af:2f:56:2a:c6:e1:70:ea:83: e8:e0:43:37:4e:2c:87:97:12:b0:e3:db:bf:1b:0b: b5:ca:ba:b2:82:55:34:fa:44:1a:13:41:84:81:b2: 62:84:2c:45:87:37:f8:b8:f5:d8:ab:69:1a:fe:07: 13:d8:55:59:a3:bc:8f:5c:fc:70:36:30:47:31:8e: d3:53:37:1b:78:09:49:49:bf:6a:05:8c:53:77:0e: 97:76:ec:fb:17:50:5c:11:e1:a1:ab:a4:06:71:8e: 8d:43:a8:92:50:7d:62:45:9e:60:85:47:8f:49:f5: c6:e0:0e:b0:08:46:af:2f:31:49:d3:47:51:33:e1: 1c:6e:aa:3f:ff:7e:a3:84:11:23:dc:4e:35:d1:f0: 73:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B5:DC:D1:63:6F:BF:0C:B7:55:35:AF:A0:FD:7A:7F:BB:6A:13:EE X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284:7000::/36 2a0f:6284:d000::/36 Signature Algorithm: sha256WithRSAEncryption 88:73:ff:06:94:ea:82:f7:b8:5a:4e:d3:8b:ad:ba:43:e5:21: 98:20:1e:7a:38:bf:1e:1a:ad:e0:be:6a:44:ff:66:cb:a0:b3: d6:3f:d1:85:86:38:a7:99:ce:a8:5b:f6:28:c5:35:98:af:49: 47:10:4b:3a:44:2e:62:be:b8:c7:0f:c5:db:5a:90:6d:b5:58: 8b:45:40:1e:bc:69:bb:85:be:37:79:e8:bc:18:58:4a:b5:54: b3:16:c7:91:93:b4:09:49:2f:3e:82:05:ca:79:89:89:c7:3d: 9c:66:81:83:93:26:cc:51:12:18:76:3a:30:37:79:5e:8d:5b: 29:57:e8:5f:5a:2d:47:cb:23:60:44:9e:3d:1e:b7:11:ec:ba: ee:0f:dd:65:0a:6c:b8:b1:e0:e9:c3:b1:97:e1:e5:46:c9:9d: 2f:b7:49:fa:6d:12:54:25:c1:c7:d1:23:ae:2f:48:36:d8:92: f0:32:a3:14:8d:29:8d:f2:3f:1f:cc:0c:6a:6b:e5:ca:b3:73: 3d:96:28:db:67:05:43:8a:ee:15:86:f1:c4:fc:fa:ad:23:2e: f3:e2:7c:73:63:d4:2b:1b:9d:7f:74:46:23:51:e4:4f:a4:2c: 7f:40:2d:44:75:e2:8a:ce:4c:f0:2c:75:da:48:ac:4c:3a:95: 54:44:00:9c -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIUATkuIqPfk2q4W0dAzQhjm2RLkgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA1MjEwNzU1MDhaFw0yNzA1MjAwODAwMDhaMDMxMTAvBgNV BAMTKDUwQjVEQ0QxNjM2RkJGMENCNzU1MzVBRkEwRkQ3QTdGQkI2QTEzRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIPvDvY1XfQRbk7Pb39DawPcbI 70tTF7PEo83mY+mRUc7oGZ8mhzeXE9XuL+7sc8VidPz+RnNbe9qIX29lQiGhNoHV SDV7wfIEA72HSlz99ay2mHzwi2A7DxF865z8D1rB05rjxBVX6zU84W9ob68vVirG 4XDqg+jgQzdOLIeXErDj278bC7XKurKCVTT6RBoTQYSBsmKELEWHN/i49diraRr+ BxPYVVmjvI9c/HA2MEcxjtNTNxt4CUlJv2oFjFN3Dpd27PsXUFwR4aGrpAZxjo1D qJJQfWJFnmCFR49J9cbgDrAIRq8vMUnTR1Ez4Rxuqj//fqOEESPcTjXR8HNXAgMB AAGjggHhMIIB3TAdBgNVHQ4EFgQUULXc0WNvvwy3VTWvoP16f7tqE+4wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyMEoGCCsGAQUFBwELBD4wPDA6BggrBgEFBQcwC4YucnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYEKg9ihHAD BgQqD2KE0DANBgkqhkiG9w0BAQsFAAOCAQEAiHP/BpTqgve4Wk7Ti626Q+UhmCAe eji/Hhqt4L5qRP9my6Cz1j/RhYY4p5nOqFv2KMU1mK9JRxBLOkQuYr64xw/F21qQ bbVYi0VAHrxpu4W+N3novBhYSrVUsxbHkZO0CUkvPoIFynmJicc9nGaBg5MmzFES GHY6MDd5Xo1bKVfoX1otR8sjYESePR63Eey67g/dZQpsuLHg6cOxl+HlRsmdL7dJ +m0SVCXBx9Ejri9INtiS8DKjFI0pjfI/H8wMamvlyrNzPZYo22cFQ4ruFYbxxPz6 rSMu8+J8c2PUKxudf3RGI1HkT6Qsf0AtRHXiis5M8Cx12kisTDqVVEQAnA== -----END CERTIFICATE-----Generated at Mon May 25 14:57:01 2026 by rpki-client