$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213124.roa File: AS213124.roa (raw, json) Hash identifier: MD1B35UsjXtHqYOl9c+k7Qxj2q+R4O3hdEuXG7EhXAw= Subject key identifier: DC:03:AD:E6:37:A8:1F:0C:D2:36:9A:17:09:DE:7A:CD:0C:04:E0:AD Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 236218AC0130350E22AE9A6F59ABBD36808ED009 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213124.roa Signing time: Wed 24 Sep 2025 10:36:13 +0000 ROA not before: Wed 24 Sep 2025 10:31:13 +0000 ROA not after: Wed 23 Sep 2026 10:36:13 +0000 asID: 213124 IP address blocks: 2a0f:6283:2000::/48 maxlen: 48 2a0f:6284:6000::/36 maxlen: 36 2a0f:6284:8000::/36 maxlen: 36 2a0f:6284:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 03:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:62:18:ac:01:30:35:0e:22:ae:9a:6f:59:ab:bd:36:80:8e:d0:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Sep 24 10:31:13 2025 GMT Not After : Sep 23 10:36:13 2026 GMT Subject: CN=DC03ADE637A81F0CD2369A1709DE7ACD0C04E0AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:17:eb:90:69:91:ce:f5:df:cf:fe:24:4a:d1: 43:74:f2:24:ac:e0:9a:c2:95:a2:39:c3:a2:54:44: 4a:ff:5f:c6:1f:54:fa:0c:6b:ec:a9:6a:0b:d5:a6: 87:eb:10:6a:8a:f0:62:1e:ed:f8:dc:d0:7e:0b:48: b6:27:fa:5f:55:1a:93:fa:2e:7f:93:bb:89:ce:57: 3c:ad:6e:42:c4:fc:cc:7a:f5:00:11:17:3b:89:6a: 9a:fd:1a:75:6f:85:0b:61:fb:91:0b:08:21:cb:54: 22:ea:eb:86:f0:55:0d:74:f6:9a:1a:7c:a1:1b:b7: 3a:d2:ee:52:0a:fa:00:4a:00:9e:9b:09:9f:41:c5: 6e:6b:fe:4d:ec:de:fe:f0:63:9c:9a:37:6e:20:fc: a2:67:c4:89:f0:01:87:96:75:54:a5:44:55:43:5c: f0:aa:41:50:4f:8e:24:04:2d:3a:3a:fd:a5:22:6b: 69:6d:4d:a2:30:d8:d0:69:45:f9:e2:85:bd:08:5c: 08:08:92:18:6d:8e:ba:d0:a4:68:f5:f8:c8:f4:7d: 7c:9b:49:07:57:ea:26:00:45:ba:4d:42:b9:89:59: b0:33:f8:bd:cb:64:3c:4e:46:36:50:15:d7:bc:3e: 4a:36:b4:8a:32:e3:81:c4:15:a2:da:2c:d8:e0:73: 84:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:03:AD:E6:37:A8:1F:0C:D2:36:9A:17:09:DE:7A:CD:0C:04:E0:AD X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:2000::/48 2a0f:6284:6000::/36 2a0f:6284:8000::/35 Signature Algorithm: sha256WithRSAEncryption 2b:6a:f1:2d:de:f5:a8:43:5c:ed:ef:9c:a4:0a:89:06:f6:db: 05:4b:fe:c2:3f:96:2f:68:f0:fd:b8:4c:30:75:e4:e3:58:55: a6:29:a1:8c:8d:34:c8:1b:63:2c:46:92:4c:6e:9c:36:49:cd: 75:96:57:d7:8f:03:b5:c0:f7:0f:e7:f4:f8:a7:08:42:15:0e: f7:f0:22:ac:3e:a6:d4:da:58:c7:ab:f4:2e:1a:53:0c:a5:c3: 8f:e5:f3:fc:74:07:02:fd:6b:ba:7f:0c:31:9c:10:7e:3c:93: aa:c2:d4:ae:a4:52:f4:8b:34:98:25:a7:76:26:3d:36:d4:62: 57:e6:5e:e0:72:6d:d8:df:59:f5:49:90:16:67:f4:9d:d5:54: e3:27:34:95:e4:c8:ef:45:03:dd:99:10:c6:18:f3:ae:43:e5: 80:7c:9c:53:57:72:42:21:dd:e6:53:54:b4:69:a5:87:5b:51: 2e:29:cc:06:e4:2a:d2:40:50:31:f7:8d:f8:53:80:fd:05:b3: 65:de:6e:c2:2a:49:fb:1b:b7:2e:51:d2:d6:59:a3:e6:99:3e: f8:12:63:0d:87:97:a2:f3:89:2b:03:81:14:a8:57:e3:95:f5: 95:b5:d1:e8:72:6e:29:23:5e:f8:e8:e4:e5:0d:01:76:24:55: 2e:e3:c4:33 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUI2IYrAEwNQ4irppvWau9NoCO0AkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA5MjQxMDMxMTNaFw0yNjA5MjMxMDM2MTNaMDMxMTAvBgNV BAMTKERDMDNBREU2MzdBODFGMENEMjM2OUExNzA5REU3QUNEMEMwNEUwQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChF+uQaZHO9d/P/iRK0UN08iSs 4JrClaI5w6JUREr/X8YfVPoMa+ypagvVpofrEGqK8GIe7fjc0H4LSLYn+l9VGpP6 Ln+Tu4nOVzytbkLE/Mx69QARFzuJapr9GnVvhQth+5ELCCHLVCLq64bwVQ109poa fKEbtzrS7lIK+gBKAJ6bCZ9BxW5r/k3s3v7wY5yaN24g/KJnxInwAYeWdVSlRFVD XPCqQVBPjiQELTo6/aUia2ltTaIw2NBpRfnihb0IXAgIkhhtjrrQpGj1+Mj0fXyb SQdX6iYARbpNQrmJWbAz+L3LZDxORjZQFde8Pko2tIoy44HEFaLaLNjgc4RdAgMB AAGjggHvMIIB6zAdBgNVHQ4EFgQU3AOt5jeoHwzSNpoXCd56zQwE4K0wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTMxMjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMgYIKwYBBQUHAQcBAf8EIzAhMB8EAgACMBkDBwAq D2KDIAADBgQqD2KEYAMGBSoPYoSAMA0GCSqGSIb3DQEBCwUAA4IBAQAravEt3vWo Q1zt75ykCokG9tsFS/7CP5YvaPD9uEwwdeTjWFWmKaGMjTTIG2MsRpJMbpw2Sc11 llfXjwO1wPcP5/T4pwhCFQ738CKsPqbU2ljHq/QuGlMMpcOP5fP8dAcC/Wu6fwwx nBB+PJOqwtSupFL0izSYJad2Jj021GJX5l7gcm3Y31n1SZAWZ/Sd1VTjJzSV5Mjv RQPdmRDGGPOuQ+WAfJxTV3JCId3mU1S0aaWHW1EuKcwG5CrSQFAx9434U4D9BbNl 3m7CKkn7G7cuUdLWWaPmmT74EmMNh5ei84krA4EUqFfjlfWVtdHocm4pI1746OTl DQF2JFUu48Qz -----END CERTIFICATE-----Generated at Wed Oct 8 17:36:23 2025 by rpki-client