$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS206987.roa File: AS206987.roa (raw, json) Hash identifier: nI6KYh9zI01meOXPif3+SX6EsR+3E0oJS9r4LgxQqeg= Subject key identifier: 50:17:EC:6E:32:C4:D3:C7:FB:50:9D:66:77:24:B1:27:B8:9A:59:DE Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 20BE3523BCDBCA60F6DCF5F369466EE8C40FFFE7 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS206987.roa Signing time: Sun 24 Aug 2025 20:33:09 +0000 ROA not before: Sun 24 Aug 2025 20:28:09 +0000 ROA not after: Sun 23 Aug 2026 20:33:09 +0000 asID: 206987 IP address blocks: 2a0f:6283:1100::/48 maxlen: 48 2a0f:6284:4212::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 17:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:be:35:23:bc:db:ca:60:f6:dc:f5:f3:69:46:6e:e8:c4:0f:ff:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 24 20:28:09 2025 GMT Not After : Aug 23 20:33:09 2026 GMT Subject: CN=5017EC6E32C4D3C7FB509D667724B127B89A59DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5d:d4:e4:f8:d0:e5:41:e3:9d:6e:94:40:6e: 5c:23:48:96:1b:0a:59:a6:6f:71:89:d7:6e:3c:10: 77:4e:71:03:c0:b5:22:21:f1:63:b8:e5:76:e2:0b: 23:ca:1f:47:c6:cd:8f:d4:2d:1b:69:69:02:f6:37: 3e:c4:3a:9c:78:b1:ed:3f:52:14:93:cf:ba:e0:0d: 0c:59:2c:ec:4e:f6:95:4e:6f:21:aa:67:89:ad:2e: 49:fb:d6:3e:2f:6f:9b:c2:7d:e0:00:fb:27:86:02: 79:de:f5:df:57:4f:71:99:59:53:ca:1f:ce:f0:13: 0e:43:7d:c6:2b:ce:cc:29:28:4d:a6:0b:a2:b7:fb: a6:54:48:32:a2:b9:08:55:0c:c6:2d:71:2d:bc:6b: 70:89:9e:3f:b2:67:4f:c4:5d:2e:7b:b8:8b:11:07: 78:4a:5f:0b:58:b9:99:e6:36:12:6c:3f:4d:48:3a: d7:ac:ec:26:c8:b1:7d:f0:6e:41:70:7f:9e:09:ab: 1b:e7:21:bf:e9:58:bf:fa:cd:35:f2:e1:00:95:20: 6e:41:5f:ef:62:eb:68:5f:25:86:01:7d:81:bf:7e: f3:73:d8:d5:11:0b:91:99:f6:c7:b2:1b:6a:e9:e0: 61:56:4b:54:7a:f5:bb:eb:e9:fc:8c:b9:3b:0b:f0: 7c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:17:EC:6E:32:C4:D3:C7:FB:50:9D:66:77:24:B1:27:B8:9A:59:DE X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS206987.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:1100::/48 2a0f:6284:4212::/48 Signature Algorithm: sha256WithRSAEncryption 80:ab:fd:33:a1:9e:71:8e:15:b6:fe:0b:22:27:bb:dd:a1:49: 56:23:3c:88:83:ee:af:ae:fd:b5:b1:51:6d:89:c7:c1:49:5b: 8b:6d:5e:7b:f1:c9:6b:58:21:ae:3d:37:c8:9e:6e:e2:99:d1: e8:0e:6d:72:b9:b0:d7:8e:99:71:a8:cd:5e:da:e5:c7:84:1d: 63:98:c5:45:61:bf:e6:0f:f9:3b:00:6c:f8:68:6e:c1:46:0c: 6e:66:cb:3c:33:cb:e0:b3:52:26:91:fc:f6:5e:90:66:69:da: 09:90:d5:f8:ac:37:8b:d6:7c:51:42:4b:5e:55:9a:2a:82:37: 8e:6e:63:f9:eb:30:64:aa:a3:54:d0:89:a9:f2:3f:91:60:84: ed:a2:57:05:60:e2:81:f4:25:47:04:21:94:f8:f3:91:64:a4: 57:ef:7f:6f:f6:4e:5b:b4:5c:87:3a:cd:21:cc:aa:55:4d:80: ba:8e:74:4e:e4:ca:9c:da:22:63:88:17:69:70:27:1c:17:58: 25:6e:fd:2e:14:7f:73:97:ac:c3:5a:4e:94:f6:1f:fb:ba:6a: 34:f4:1b:a0:d0:c8:e1:f8:98:ff:d1:e8:a1:d9:f5:ac:93:cc: ed:cd:94:c5:b6:2f:30:41:e8:4e:9b:d0:d8:45:ba:d0:56:3c: ef:5f:17:d3 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUIL41I7zbymD23PXzaUZu6MQP/+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MjQyMDI4MDlaFw0yNjA4MjMyMDMzMDlaMDMxMTAvBgNV BAMTKDUwMTdFQzZFMzJDNEQzQzdGQjUwOUQ2Njc3MjRCMTI3Qjg5QTU5REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5XdTk+NDlQeOdbpRAblwjSJYb Clmmb3GJ1248EHdOcQPAtSIh8WO45XbiCyPKH0fGzY/ULRtpaQL2Nz7EOpx4se0/ UhSTz7rgDQxZLOxO9pVObyGqZ4mtLkn71j4vb5vCfeAA+yeGAnne9d9XT3GZWVPK H87wEw5DfcYrzswpKE2mC6K3+6ZUSDKiuQhVDMYtcS28a3CJnj+yZ0/EXS57uIsR B3hKXwtYuZnmNhJsP01IOtes7CbIsX3wbkFwf54JqxvnIb/pWL/6zTXy4QCVIG5B X+9i62hfJYYBfYG/fvNz2NURC5GZ9seyG2rp4GFWS1R69bvr6fyMuTsL8HwlAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUUBfsbjLE08f7UJ1mdySxJ7iaWd4wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDY5ODcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgACMBIDBwAq D2KDEQADBwAqD2KEQhIwDQYJKoZIhvcNAQELBQADggEBAICr/TOhnnGOFbb+CyIn u92hSVYjPIiD7q+u/bWxUW2Jx8FJW4ttXnvxyWtYIa49N8iebuKZ0egObXK5sNeO mXGozV7a5ceEHWOYxUVhv+YP+TsAbPhobsFGDG5myzwzy+CzUiaR/PZekGZp2gmQ 1fisN4vWfFFCS15VmiqCN45uY/nrMGSqo1TQianyP5FghO2iVwVg4oH0JUcEIZT4 85FkpFfvf2/2Tlu0XIc6zSHMqlVNgLqOdE7kypzaImOIF2lwJxwXWCVu/S4Uf3OX rMNaTpT2H/u6ajT0G6DQyOH4mP/R6KHZ9ayTzO3NlMW2LzBB6E6b0NhFutBWPO9f F9M= -----END CERTIFICATE-----Generated at Sat Sep 6 02:49:39 2025 by rpki-client