$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213124.roa File: AS213124.roa (raw, json) Hash identifier: uYpPFFbspz//UPr6cDSGZEMtBNQPGqJ6SSVuOn64QZs= Subject key identifier: 93:C3:74:83:03:63:AF:0F:99:6C:28:B4:ED:4A:5F:C0:1A:00:47:E2 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 6C867AD6EEF5D2B8908541BFAA1F59319528217C Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213124.roa Signing time: Tue 12 Aug 2025 13:55:27 +0000 ROA not before: Tue 12 Aug 2025 13:50:27 +0000 ROA not after: Tue 11 Aug 2026 13:55:27 +0000 asID: 213124 IP address blocks: 2a0f:6283:2000::/48 maxlen: 48 2a0f:6283:2001::/48 maxlen: 48 2a0f:6283:2002::/48 maxlen: 48 2a0f:6283:2048::/45 maxlen: 45 2a0f:6284:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 20 Aug 2025 21:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:86:7a:d6:ee:f5:d2:b8:90:85:41:bf:aa:1f:59:31:95:28:21:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 12 13:50:27 2025 GMT Not After : Aug 11 13:55:27 2026 GMT Subject: CN=93C374830363AF0F996C28B4ED4A5FC01A0047E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:96:49:02:1d:17:73:09:b4:e1:cd:ca:d4:a7: 9b:9a:1f:6e:1a:18:1c:ba:37:c1:10:dd:80:3e:25: 00:97:09:37:c6:39:18:b1:df:fe:2b:e6:e2:55:c8: 5a:b5:97:f2:76:00:12:cf:6d:a2:1a:72:44:c6:6b: 8b:16:98:39:ad:1b:b1:3e:09:b6:c3:f2:45:62:45: a8:27:56:d8:b4:0a:0e:e8:6d:26:e5:f7:ad:2a:c2: 25:32:4c:d7:47:f7:d3:47:e1:ae:15:a6:57:42:d8: f5:75:59:4f:ef:e4:b9:65:d8:d6:52:58:e9:df:4d: 50:9a:ac:de:72:ea:71:62:eb:3e:a0:08:81:ed:0c: 73:16:b0:58:62:54:ca:71:eb:e9:33:8b:98:2e:d1: d6:b5:0f:43:a6:d5:7d:a3:86:c0:10:f4:5a:14:f7: b2:08:df:3d:2b:da:81:50:f7:54:4d:00:17:7b:22: e5:e5:b7:48:01:72:1a:59:de:0e:a0:e5:a3:70:2b: 37:b4:ba:eb:9c:c3:ff:6e:e5:5e:ab:d9:2b:4a:95: d4:df:1f:94:e9:27:6c:6c:db:ff:b4:1a:77:49:00: e6:03:6b:78:b9:c6:e1:a6:64:2d:0a:cf:50:38:40: 92:7b:18:5c:82:2d:0f:af:0d:0c:b6:2b:d7:e3:4e: 50:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:C3:74:83:03:63:AF:0F:99:6C:28:B4:ED:4A:5F:C0:1A:00:47:E2 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:2000::-2a0f:6283:2002:ffff:ffff:ffff:ffff:ffff 2a0f:6283:2048::/45 2a0f:6284:6000::/36 Signature Algorithm: sha256WithRSAEncryption 4d:85:95:3a:ec:41:12:38:61:d3:37:f3:69:af:32:de:d9:1d: eb:ca:00:fc:70:f7:c0:ec:9c:17:63:cc:63:f9:b7:99:f3:37: 34:6b:f7:8c:81:34:61:07:9b:b5:8c:3a:62:b5:b7:3d:cc:35: 2b:2d:fb:d1:7c:0f:3b:db:70:3b:50:0d:77:1a:04:46:e8:dc: 30:6d:57:71:6f:25:1d:88:64:50:a4:5c:4c:5b:68:ce:a2:1f: a7:77:0f:2a:42:36:2c:d8:da:c4:9a:9b:0e:4d:f5:b8:3b:15: 97:c3:99:cc:aa:11:44:34:d2:46:05:80:0a:53:5b:24:1a:fe: 36:e1:d4:f1:93:8f:bb:4c:6f:9b:9e:e0:67:21:a9:53:b9:7f: 1a:c2:1f:bb:f5:1b:29:78:af:52:28:44:bc:f8:a7:f9:a6:98: 23:21:88:08:92:fa:08:e2:66:49:5f:60:a3:fd:a1:f9:8c:60: ca:29:37:62:f4:8b:a5:c3:40:8f:d7:4f:e7:f7:77:46:ea:32: 92:ec:98:56:35:fa:e5:a3:81:86:b2:df:ec:0c:61:cb:2d:2f: 0b:26:d7:5b:dd:5e:be:1d:42:f0:10:bd:a6:31:44:7c:32:8c: ea:79:d2:66:cb:9f:f8:1a:5a:19:1a:66:6f:83:1d:a1:44:74: 6a:3b:62:99 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUbIZ61u710riQhUG/qh9ZMZUoIXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MTIxMzUwMjdaFw0yNjA4MTExMzU1MjdaMDMxMTAvBgNV BAMTKDkzQzM3NDgzMDM2M0FGMEY5OTZDMjhCNEVENEE1RkMwMUEwMDQ3RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWlkkCHRdzCbThzcrUp5uaH24a GBy6N8EQ3YA+JQCXCTfGORix3/4r5uJVyFq1l/J2ABLPbaIackTGa4sWmDmtG7E+ CbbD8kViRagnVti0Cg7obSbl960qwiUyTNdH99NH4a4VpldC2PV1WU/v5Lll2NZS WOnfTVCarN5y6nFi6z6gCIHtDHMWsFhiVMpx6+kzi5gu0da1D0Om1X2jhsAQ9FoU 97II3z0r2oFQ91RNABd7IuXlt0gBchpZ3g6g5aNwKze0uuucw/9u5V6r2StKldTf H5TpJ2xs2/+0GndJAOYDa3i5xuGmZC0Kz1A4QJJ7GFyCLQ+vDQy2K9fjTlCTAgMB AAGjggH6MIIB9jAdBgNVHQ4EFgQUk8N0gwNjrw+ZbCi07UpfwBoAR+IwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTMxMjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgACMCQwEQMG BSoPYoMgAwcAKg9igyACAwcDKg9igyBIAwYEKg9ihGAwDQYJKoZIhvcNAQELBQAD ggEBAE2FlTrsQRI4YdM382mvMt7ZHevKAPxw98DsnBdjzGP5t5nzNzRr94yBNGEH m7WMOmK1tz3MNSst+9F8DzvbcDtQDXcaBEbo3DBtV3FvJR2IZFCkXExbaM6iH6d3 DypCNizY2sSamw5N9bg7FZfDmcyqEUQ00kYFgApTWyQa/jbh1PGTj7tMb5ue4Gch qVO5fxrCH7v1Gyl4r1IoRLz4p/mmmCMhiAiS+gjiZklfYKP9ofmMYMopN2L0i6XD QI/XT+f3d0bqMpLsmFY1+uWjgYay3+wMYcstLwsm11vdXr4dQvAQvaYxRHwyjOp5 0mbLn/gaWhkaZm+DHaFEdGo7Ypk= -----END CERTIFICATE-----Generated at Wed Aug 20 14:29:06 2025 by rpki-client