$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: pYOlEqEPvtmiSag7YmwcljleG9zMiYgedi7fM71ZC/E= Subject key identifier: E0:D1:06:56:D1:16:E1:49:38:F1:53:B0:52:B7:77:26:17:A4:61:11 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 5D556C48109A532D50B8A041CA066B511FE36051 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Fri 03 Oct 2025 08:00:34 +0000 ROA not before: Fri 03 Oct 2025 07:55:34 +0000 ROA not after: Fri 02 Oct 2026 08:00:34 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a06:1284::/32 maxlen: 32 2a09:54c7::/32 maxlen: 32 2a0f:6287::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 03:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:55:6c:48:10:9a:53:2d:50:b8:a0:41:ca:06:6b:51:1f:e3:60:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 3 07:55:34 2025 GMT Not After : Oct 2 08:00:34 2026 GMT Subject: CN=E0D10656D116E14938F153B052B7772617A46111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:96:45:5f:61:98:52:f5:44:ce:a1:b6:6c:be: d8:99:07:ac:38:7a:7a:8d:50:84:39:79:16:27:7d: 5a:b1:02:b4:bf:a1:ad:d0:d7:06:52:55:57:51:c4: 02:0e:eb:83:73:73:6f:c0:8b:a7:d3:e3:6d:24:fb: b5:fe:26:2e:63:3a:ac:d7:cd:46:f4:22:cb:7e:be: a0:bf:f0:53:e9:50:0b:38:85:13:2c:00:d4:da:95: bd:c0:20:fe:17:7d:ff:1c:3d:3e:99:e1:be:72:35: 12:3c:86:d2:35:c1:75:5b:97:34:f6:5e:b6:84:03: 3d:1d:de:c0:74:8a:58:12:97:5c:4e:74:1a:c1:b8: 5d:95:cc:6e:19:23:ce:97:63:25:86:fd:8d:48:a3: 3a:a4:5d:0e:24:9c:e4:36:ec:71:6d:08:21:b1:88: cc:72:f1:ea:3c:79:e0:f7:10:5a:ad:4e:9d:1e:51: 15:41:4a:50:d5:a8:be:74:92:84:3a:bf:73:f2:c0: ff:6c:65:e7:55:0d:23:e6:6c:9a:7c:e9:b5:89:56: 21:da:0a:20:fd:ba:5d:e8:7a:e4:39:9b:72:0d:74: 43:16:db:37:f6:21:40:56:d2:2c:42:3d:68:ca:54: b6:c9:51:9b:cb:ab:df:55:ba:f7:dc:16:a0:79:ef: 71:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D1:06:56:D1:16:E1:49:38:F1:53:B0:52:B7:77:26:17:A4:61:11 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a06:1284::/32 2a09:54c7::/32 2a0f:6287::/36 Signature Algorithm: sha256WithRSAEncryption 6a:5c:73:a4:f6:ca:a2:a4:05:d2:6c:52:db:99:4b:ed:04:26: 8d:5c:db:5d:56:de:49:b6:44:36:01:9d:e6:c6:64:5f:ad:93: 51:cb:20:33:b8:19:ea:5f:0b:56:ec:bc:27:17:bd:c5:61:03: 12:5e:86:ae:83:a3:ca:f6:3a:0d:43:95:4c:ed:1b:e0:1d:64: 21:8c:37:dd:eb:10:31:89:3f:04:fa:ae:1f:ae:c3:75:14:a0: a3:86:88:21:2a:b6:f8:10:60:f0:d6:7f:02:06:40:69:2a:6e: 62:b0:5b:9b:4a:8c:62:6b:4b:d1:ad:fe:c6:40:08:64:9c:c1: 72:7a:70:3b:37:1f:5e:e4:ce:88:43:20:cb:b4:d0:37:1f:dc: bf:e8:47:a3:72:53:12:b5:22:bb:6c:d9:c8:5e:24:ac:bb:87: 23:a5:da:e1:69:70:d1:ab:6e:b3:e4:f5:ae:83:47:f8:7f:51: db:04:13:fd:45:8c:97:4a:f3:71:b6:b1:be:f5:ff:db:50:3f: 69:80:7e:04:32:f8:3b:72:85:9d:09:38:28:97:ad:51:25:96: b1:0f:9b:7e:8e:56:66:9e:43:6f:2f:2e:9c:bc:c4:92:7c:93: b7:3b:1c:ab:ba:fb:8a:5e:ce:e9:37:e7:04:7a:87:ff:ee:88: 09:b0:97:8d -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUXVVsSBCaUy1QuKBBygZrUR/jYFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMDMwNzU1MzRaFw0yNjEwMDIwODAwMzRaMDMxMTAvBgNV BAMTKEUwRDEwNjU2RDExNkUxNDkzOEYxNTNCMDUyQjc3NzI2MTdBNDYxMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7lkVfYZhS9UTOobZsvtiZB6w4 enqNUIQ5eRYnfVqxArS/oa3Q1wZSVVdRxAIO64Nzc2/Ai6fT420k+7X+Ji5jOqzX zUb0Ist+vqC/8FPpUAs4hRMsANTalb3AIP4Xff8cPT6Z4b5yNRI8htI1wXVblzT2 XraEAz0d3sB0ilgSl1xOdBrBuF2VzG4ZI86XYyWG/Y1IozqkXQ4knOQ27HFtCCGx iMxy8eo8eeD3EFqtTp0eURVBSlDVqL50koQ6v3PywP9sZedVDSPmbJp86bWJViHa CiD9ul3oeuQ5m3INdEMW2zf2IUBW0ixCPWjKVLbJUZvLq99VuvfcFqB573EtAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU4NEGVtEW4Uk48VOwUrd3JhekYREwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMCMEAgACMB0DBQAq Bd/CAwUAKgYShAMFACoJVMcDBgQqD2KHADANBgkqhkiG9w0BAQsFAAOCAQEAalxz pPbKoqQF0mxS25lL7QQmjVzbXVbeSbZENgGd5sZkX62TUcsgM7gZ6l8LVuy8Jxe9 xWEDEl6GroOjyvY6DUOVTO0b4B1kIYw33esQMYk/BPquH67DdRSgo4aIISq2+BBg 8NZ/AgZAaSpuYrBbm0qMYmtL0a3+xkAIZJzBcnpwOzcfXuTOiEMgy7TQNx/cv+hH o3JTErUiu2zZyF4krLuHI6Xa4Wlw0atus+T1roNH+H9R2wQT/UWMl0rzcbaxvvX/ 21A/aYB+BDL4O3KFnQk4KJetUSWWsQ+bfo5WZp5Dby8unLzEknyTtzscq7r7il7O 6TfnBHqH/+6ICbCXjQ== -----END CERTIFICATE-----Generated at Wed Oct 8 17:36:23 2025 by rpki-client