$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: WUZZ55om7H0kjtFRxc9QXWuO21ePSIIvnmoZgD1FBBs= Subject key identifier: B0:79:30:8A:6E:D9:01:F3:7A:D5:A8:EF:CD:7A:79:D7:C4:AB:BF:6B Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1D765CB1E3025CB64338558E8DA38C33BEE60489 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS20473.roa Signing time: Tue 09 Jun 2026 10:57:15 +0000 ROA not before: Tue 09 Jun 2026 10:52:15 +0000 ROA not after: Tue 08 Jun 2027 10:57:15 +0000 asID: 20473 IP address blocks: 2a06:1281:10::/44 maxlen: 48 2a0a:6044:6600::/40 maxlen: 48 2a0a:6044:ac60::/44 maxlen: 48 2a0f:6284:52::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 08:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:76:5c:b1:e3:02:5c:b6:43:38:55:8e:8d:a3:8c:33:be:e6:04:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jun 9 10:52:15 2026 GMT Not After : Jun 8 10:57:15 2027 GMT Subject: CN=B079308A6ED901F37AD5A8EFCD7A79D7C4ABBF6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:98:b5:06:68:cc:9a:b3:35:ef:d7:ac:4e:6e: 36:33:ab:7b:13:f6:1a:64:18:a1:1b:4e:0e:72:88: 01:9b:d1:e5:81:6f:26:79:88:ba:20:96:43:ff:94: 32:77:b8:fc:96:5f:6c:07:16:c8:e8:bb:9d:da:f3: 3d:60:aa:54:d5:36:f9:3e:f9:67:9f:18:8f:21:3c: d8:cf:4b:03:2c:5b:7a:e9:4e:81:01:9e:39:f7:b1: 99:23:04:ab:d3:31:85:53:df:a7:25:0d:e2:38:62: c3:f9:a4:9a:ae:fb:a2:8b:43:68:65:7c:46:3c:ae: 38:8e:65:34:61:41:d5:df:41:08:94:e9:a5:8f:2d: c2:3d:28:78:28:57:7a:a1:5e:03:55:43:47:9c:d6: 7b:b9:4d:b5:3f:28:21:00:dc:22:52:26:1e:07:83: 2e:07:45:1d:d2:8f:80:37:8e:eb:84:39:23:a2:7b: d6:37:21:be:b1:5f:76:58:3b:b3:b2:d0:5b:3f:c9: c7:db:ce:45:2a:4c:5f:bf:47:89:7e:d5:cd:a4:ed: 6f:00:f8:8d:5e:40:62:ef:eb:91:14:69:9a:9f:3a: 76:bf:71:0f:dc:42:66:4f:e7:75:3d:d0:05:bb:b4: f2:fc:33:74:ba:72:d7:db:98:f0:e7:f2:fb:01:68: 23:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:79:30:8A:6E:D9:01:F3:7A:D5:A8:EF:CD:7A:79:D7:C4:AB:BF:6B X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:10::/44 2a0a:6044:6600::/40 2a0a:6044:ac60::/44 2a0f:6284:52::/48 Signature Algorithm: sha256WithRSAEncryption 72:eb:be:bf:9c:65:1c:a3:74:28:5b:27:2c:90:12:c9:1c:1c: d0:2b:49:9e:cd:f4:81:3b:c0:8e:58:ee:6a:af:7c:02:ed:7f: a0:48:d5:69:5f:f6:cb:36:68:aa:82:d3:c9:56:03:d1:8e:8d: 42:9f:9b:73:fa:e1:07:99:7a:55:ef:3c:75:63:41:84:3d:4e: ca:03:5c:68:87:7d:2e:90:1a:6c:ce:5a:6c:85:6e:bd:10:77: e1:5c:61:25:7b:70:1f:a0:07:48:5b:7a:0a:37:c2:67:fa:4a: 89:13:00:54:5e:fa:7c:92:75:7b:7a:0b:9c:08:27:19:1d:1f: 08:e9:a9:07:52:f0:f8:ca:07:60:ef:58:ff:e9:7e:bc:9b:46: 2e:cc:87:8f:4c:95:e3:6a:46:2e:8e:2a:dd:42:16:08:9f:37: 52:e0:75:0b:28:44:40:52:d3:53:6e:9e:4d:82:22:32:39:35: 3b:1f:af:b0:73:2c:c1:5d:ff:7b:02:31:95:f8:c9:66:28:7a: 73:3e:9c:29:0d:c7:3d:84:ec:1c:5e:e6:c3:89:88:05:b6:f2: 01:76:99:94:ab:56:24:db:95:f6:f6:86:49:7c:d5:df:0b:eb: 6d:81:32:18:08:f1:ca:2a:40:94:87:8f:74:b4:48:d4:f7:33: 2a:4b:fd:70 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUHXZcseMCXLZDOFWOjaOMM77mBIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA2MDkxMDUyMTVaFw0yNzA2MDgxMDU3MTVaMDMxMTAvBgNV BAMTKEIwNzkzMDhBNkVEOTAxRjM3QUQ1QThFRkNEN0E3OUQ3QzRBQkJGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMmLUGaMyaszXv16xObjYzq3sT 9hpkGKEbTg5yiAGb0eWBbyZ5iLoglkP/lDJ3uPyWX2wHFsjou53a8z1gqlTVNvk+ +WefGI8hPNjPSwMsW3rpToEBnjn3sZkjBKvTMYVT36clDeI4YsP5pJqu+6KLQ2hl fEY8rjiOZTRhQdXfQQiU6aWPLcI9KHgoV3qhXgNVQ0ec1nu5TbU/KCEA3CJSJh4H gy4HRR3Sj4A3juuEOSOie9Y3Ib6xX3ZYO7Oy0Fs/ycfbzkUqTF+/R4l+1c2k7W8A +I1eQGLv65EUaZqfOna/cQ/cQmZP53U90AW7tPL8M3S6ctfbmPDn8vsBaCP5AgMB AAGjggH4MIIB9DAdBgNVHQ4EFgQUsHkwim7ZAfN61ajvzXp518Srv2swHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDQ3My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjA8BggrBgEFBQcBBwEB/wQtMCswKQQCAAIwIwMHBCoG EoEAEAMGACoKYERmAwcEKgpgRKxgAwcAKg9ihABSMA0GCSqGSIb3DQEBCwUAA4IB AQBy676/nGUco3QoWycskBLJHBzQK0mezfSBO8COWO5qr3wC7X+gSNVpX/bLNmiq gtPJVgPRjo1Cn5tz+uEHmXpV7zx1Y0GEPU7KA1xoh30ukBpszlpshW69EHfhXGEl e3AfoAdIW3oKN8Jn+kqJEwBUXvp8knV7egucCCcZHR8I6akHUvD4ygdg71j/6X68 m0YuzIePTJXjakYujirdQhYInzdS4HULKERAUtNTbp5NgiIyOTU7H6+wcyzBXf97 AjGV+MlmKHpzPpwpDcc9hOwcXubDiYgFtvIBdpmUq1Yk25X29oZJfNXfC+ttgTIY CPHKKkCUh490tEjU9zMqS/1w -----END CERTIFICATE-----Generated at Thu Jun 11 14:38:21 2026 by rpki-client