$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS206715.roa File: AS206715.roa (raw, json) Hash identifier: nwrLE3Hf0PlMVOL0T9eKjQZcaW5GnlUEhbtGk4m13XI= Subject key identifier: 00:15:B8:3A:CA:8E:84:EB:A3:58:9E:21:9A:CE:FE:63:D3:B5:55:55 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 6C610A50045541D8D372CF60E060F9B2767432EA Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS206715.roa Signing time: Mon 25 Aug 2025 20:20:24 +0000 ROA not before: Mon 25 Aug 2025 20:15:24 +0000 ROA not after: Mon 24 Aug 2026 20:20:24 +0000 asID: 206715 IP address blocks: 2a09:54c6:5001::/48 maxlen: 48 2a09:54c6:5002::/48 maxlen: 48 2a09:54c6:5003::/48 maxlen: 48 2a09:54c6:5004::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 27 Aug 2025 14:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:61:0a:50:04:55:41:d8:d3:72:cf:60:e0:60:f9:b2:76:74:32:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 25 20:15:24 2025 GMT Not After : Aug 24 20:20:24 2026 GMT Subject: CN=0015B83ACA8E84EBA3589E219ACEFE63D3B55555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:06:7b:47:8c:d7:1b:ab:c2:02:09:5f:45:e2: 20:1e:c0:59:bd:12:81:a7:aa:73:96:dc:64:c3:5e: 02:1e:c3:f7:c9:df:65:c1:10:4c:97:41:3f:0f:9d: 34:69:16:04:a5:26:c8:4b:d2:f2:15:ae:12:c3:3a: 10:d0:4e:17:4d:8e:80:3f:f0:d2:ef:66:cc:66:ae: 90:67:39:52:99:a8:12:45:66:17:70:7f:40:69:ad: 05:59:b9:aa:d1:9e:ed:a3:71:f9:0a:61:a5:7b:bb: dd:c6:dc:ae:24:ea:18:b6:2c:82:68:c1:6d:04:ec: c6:d1:62:c4:b6:04:a1:e3:8c:41:a4:fd:66:1e:f4: 1f:0a:1e:ee:80:14:b6:ef:bb:da:5e:df:6c:41:5f: a0:f0:80:aa:88:8d:94:31:00:87:25:97:4d:04:e4: 49:03:5d:88:20:f4:fd:8f:d5:0e:59:38:91:9e:2d: e4:61:c0:af:59:51:0e:6e:58:3d:4a:07:4b:1b:71: 26:2a:6f:62:5e:83:fd:b3:17:00:46:92:50:5c:b0: 40:24:90:63:2f:6d:3b:13:9f:4d:e1:be:84:b0:ae: 03:31:5b:63:cc:2e:67:56:62:7c:14:25:e9:4b:41: 96:e4:8e:9f:d8:90:4d:c0:19:28:05:bc:ed:9f:6a: ef:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:15:B8:3A:CA:8E:84:EB:A3:58:9E:21:9A:CE:FE:63:D3:B5:55:55 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS206715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:5001::-2a09:54c6:5004:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 14:63:c0:b6:35:71:71:de:b3:85:4b:aa:8c:c9:bb:85:2d:b2: 73:cb:df:cc:80:48:52:62:e5:83:2e:16:00:19:12:e0:e6:1a: 29:ec:70:cb:95:41:34:3f:6e:a4:0a:ec:e8:b3:35:2c:14:74: 8f:5d:a9:40:a9:90:f1:eb:8b:84:18:65:21:88:22:04:a7:4b: 46:b5:f6:b1:4c:20:15:dc:73:97:83:22:1b:71:76:78:68:80: 35:26:e3:1b:93:b6:c7:4b:75:0c:fb:d7:91:82:02:47:07:f3: f8:f2:a5:52:bc:9a:2d:83:eb:5a:db:7f:01:97:e3:d6:44:a8: 50:22:65:a6:e3:64:99:16:dd:01:48:29:d7:94:83:e9:01:9e: 2b:d5:32:3a:d4:4a:0d:4d:06:46:4e:2e:c1:72:51:ce:37:2f: 35:f9:c9:70:44:ea:b1:43:27:e6:b9:4c:e9:d3:8f:65:03:a0: f8:7d:ee:58:11:16:3d:68:03:88:0b:69:f1:49:12:a8:4a:ea: bc:35:36:e1:bc:18:d9:cd:c4:31:ad:ec:e6:d2:a4:f6:3a:c9: 2c:01:d8:4a:d9:4b:e7:3d:9a:0e:ab:d8:99:38:3c:6e:73:39: 5c:35:14:aa:14:1b:c0:b2:e6:04:04:93:53:66:31:d1:7e:b8: cc:eb:e4:68 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUbGEKUARVQdjTcs9g4GD5snZ0MuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MjUyMDE1MjRaFw0yNjA4MjQyMDIwMjRaMDMxMTAvBgNV BAMTKDAwMTVCODNBQ0E4RTg0RUJBMzU4OUUyMTlBQ0VGRTYzRDNCNTU1NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPBntHjNcbq8ICCV9F4iAewFm9 EoGnqnOW3GTDXgIew/fJ32XBEEyXQT8PnTRpFgSlJshL0vIVrhLDOhDQThdNjoA/ 8NLvZsxmrpBnOVKZqBJFZhdwf0BprQVZuarRnu2jcfkKYaV7u93G3K4k6hi2LIJo wW0E7MbRYsS2BKHjjEGk/WYe9B8KHu6AFLbvu9pe32xBX6DwgKqIjZQxAIcll00E 5EkDXYgg9P2P1Q5ZOJGeLeRhwK9ZUQ5uWD1KB0sbcSYqb2Jeg/2zFwBGklBcsEAk kGMvbTsTn03hvoSwrgMxW2PMLmdWYnwUJelLQZbkjp/YkE3AGSgFvO2fau/xAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUABW4OsqOhOujWJ4hms7+Y9O1VVUwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDY3MTUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgACMBQwEgMH ACoJVMZQAQMHACoJVMZQBDANBgkqhkiG9w0BAQsFAAOCAQEAFGPAtjVxcd6zhUuq jMm7hS2yc8vfzIBIUmLlgy4WABkS4OYaKexwy5VBND9upArs6LM1LBR0j12pQKmQ 8euLhBhlIYgiBKdLRrX2sUwgFdxzl4MiG3F2eGiANSbjG5O2x0t1DPvXkYICRwfz +PKlUryaLYPrWtt/AZfj1kSoUCJlpuNkmRbdAUgp15SD6QGeK9UyOtRKDU0GRk4u wXJRzjcvNfnJcETqsUMn5rlM6dOPZQOg+H3uWBEWPWgDiAtp8UkSqErqvDU24bwY 2c3EMa3s5tKk9jrJLAHYStlL5z2aDqvYmTg8bnM5XDUUqhQbwLLmBASTU2Yx0X64 zOvkaA== -----END CERTIFICATE-----Generated at Tue Aug 26 23:29:56 2025 by rpki-client