$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213798.roa File: AS213798.roa (raw, json) Hash identifier: 24n9mNCwjHJKW8Pvsn3PpV8EBrfiA7EawCKsPhs+IfE= Subject key identifier: 24:19:2D:49:5D:5E:8E:E1:21:34:5A:FA:B7:A7:2C:F9:11:09:DA:CC Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 1EE9F17DB633A16BD347242E32180623A272B1D0 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213798.roa Signing time: Wed 10 Jun 2026 02:08:54 +0000 ROA not before: Wed 10 Jun 2026 02:03:54 +0000 ROA not after: Wed 09 Jun 2027 02:08:54 +0000 asID: 213798 IP address blocks: 2a0f:6286:1::/48 maxlen: 48 2a0f:6286:2::/48 maxlen: 48 2a0f:6286:3::/48 maxlen: 48 2a0f:6286:4::/48 maxlen: 48 2a0f:6286:a::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e9:f1:7d:b6:33:a1:6b:d3:47:24:2e:32:18:06:23:a2:72:b1:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jun 10 02:03:54 2026 GMT Not After : Jun 9 02:08:54 2027 GMT Subject: CN=24192D495D5E8EE121345AFAB7A72CF91109DACC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3c:8f:e7:84:f1:58:e5:3a:b3:b1:10:7e:3b: 9b:b5:ad:db:19:30:72:51:52:02:50:b2:fa:23:0e: 5a:88:6a:26:bd:e0:9e:a1:12:5d:b9:ef:dd:2c:15: af:97:3a:3d:e3:2c:18:d7:bb:e3:90:99:64:63:7e: 81:b7:15:7f:df:b9:0a:46:99:ef:04:bf:89:31:d7: af:de:89:90:68:5b:1c:cb:1d:c3:7f:15:33:95:e5: 51:dc:f4:40:db:2f:8b:db:77:a6:5d:45:1f:5e:21: 3b:5f:b4:b6:b3:2c:fa:f0:72:3c:da:0b:2f:a5:48: 3c:ce:5f:06:20:06:4d:f9:33:66:ad:82:56:4f:49: 24:54:ab:a4:d9:e1:ed:b0:31:52:67:f2:69:6a:e7: a8:73:83:f6:32:9b:d7:fc:a0:83:be:32:fc:18:9e: 9b:36:6b:4d:e2:ba:33:21:18:9e:92:c5:59:da:23: 43:94:56:a3:eb:ae:d9:51:1d:b6:f1:fc:84:92:8a: 0c:b7:41:20:4c:e7:96:7f:8b:5b:a7:48:de:10:80: 09:df:0c:01:d3:0d:7a:38:2a:94:9c:50:96:a2:20: f4:ab:f9:98:4b:f7:38:bb:a7:e1:6d:b3:5b:09:7f: 3f:03:6c:f3:3e:e8:95:bf:67:c7:79:1b:0e:10:e6: 23:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:19:2D:49:5D:5E:8E:E1:21:34:5A:FA:B7:A7:2C:F9:11:09:DA:CC X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213798.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6286:1::-2a0f:6286:4:ffff:ffff:ffff:ffff:ffff 2a0f:6286:a::/48 Signature Algorithm: sha256WithRSAEncryption 02:d6:b6:f5:52:34:a6:3a:e8:a9:ea:e7:8b:c7:48:ab:35:ef: ad:40:eb:d1:83:97:b4:f1:fe:76:21:4f:a1:ab:5d:8e:a8:67: 2f:d3:9c:e6:51:47:f5:49:07:53:44:fe:50:3f:80:7d:8d:75: 3d:c0:16:b3:cb:1f:f1:02:0a:de:ec:cd:44:02:a9:87:9b:76: 63:86:6f:e4:7c:62:f1:65:e7:bc:e8:a3:ef:c8:fb:55:68:ac: 80:f8:96:e9:b8:e8:a7:0d:a8:73:b9:9a:7c:ff:62:f3:13:38: 61:74:7f:3d:c7:68:db:07:ee:b5:01:69:a1:ce:19:d5:73:9e: db:02:fd:78:3a:81:a1:74:cd:17:67:0c:39:45:b7:bb:a3:0c: 83:94:eb:22:bf:94:3c:03:cd:42:2a:45:8c:79:85:63:2f:b9: 53:2a:3f:9a:c2:e8:59:22:21:bd:a4:a6:f3:cd:b9:48:7f:09: b3:56:79:fe:58:b2:1a:35:5e:b6:78:cb:ee:ef:e0:47:f2:25: b7:ca:00:c6:87:d0:3c:79:b9:35:fe:da:c7:6d:06:77:5b:35: 74:3b:2e:cb:5c:49:bb:24:11:dd:4b:2d:cb:27:d0:88:7a:5e: f8:4a:a3:af:e2:fb:ce:4f:35:c9:47:71:eb:6b:67:6c:2d:99: 3f:66:c6:27 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUHunxfbYzoWvTRyQuMhgGI6JysdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA2MTAwMjAzNTRaFw0yNzA2MDkwMjA4NTRaMDMxMTAvBgNV BAMTKDI0MTkyRDQ5NUQ1RThFRTEyMTM0NUFGQUI3QTcyQ0Y5MTEwOURBQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKPI/nhPFY5TqzsRB+O5u1rdsZ MHJRUgJQsvojDlqIaia94J6hEl25790sFa+XOj3jLBjXu+OQmWRjfoG3FX/fuQpG me8Ev4kx16/eiZBoWxzLHcN/FTOV5VHc9EDbL4vbd6ZdRR9eITtftLazLPrwcjza Cy+lSDzOXwYgBk35M2atglZPSSRUq6TZ4e2wMVJn8mlq56hzg/Yym9f8oIO+MvwY nps2a03iujMhGJ6SxVnaI0OUVqPrrtlRHbbx/ISSigy3QSBM55Z/i1unSN4QgAnf DAHTDXo4KpScUJaiIPSr+ZhL9zi7p+Fts1sJfz8DbPM+6JW/Z8d5Gw4Q5iNpAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUJBktSV1ejuEhNFr6t6cs+REJ2swwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM3OTgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMCMEAgACMB0wEgMH ACoPYoYAAQMHACoPYoYABAMHACoPYoYACjANBgkqhkiG9w0BAQsFAAOCAQEAAta2 9VI0pjroqerni8dIqzXvrUDr0YOXtPH+diFPoatdjqhnL9Oc5lFH9UkHU0T+UD+A fY11PcAWs8sf8QIK3uzNRAKph5t2Y4Zv5Hxi8WXnvOij78j7VWisgPiW6bjopw2o c7mafP9i8xM4YXR/Pcdo2wfutQFpoc4Z1XOe2wL9eDqBoXTNF2cMOUW3u6MMg5Tr Ir+UPAPNQipFjHmFYy+5Uyo/msLoWSIhvaSm8825SH8Js1Z5/liyGjVetnjL7u/g R/Ilt8oAxofQPHm5Nf7ax20Gd1s1dDsuy1xJuyQR3UstyyfQiHpe+Eqjr+L7zk81 yUdx62tnbC2ZP2bGJw== -----END CERTIFICATE-----Generated at Thu Jun 11 20:25:59 2026 by rpki-client