$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS213864.roa File: AS213864.roa (raw, json) Hash identifier: 4kQNRZRNtsULjVRPXPdIo7NHLg3sOOl02WHSWeBN4/E= Subject key identifier: 2C:BC:3E:8D:22:D6:B3:F0:A4:63:0F:4E:FE:AB:BC:41:5F:3E:35:F1 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 4F756AABC9F59489EA5D833A50C1FA902B5BB442 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa Signing time: Wed 04 Mar 2026 01:31:45 +0000 ROA not before: Wed 04 Mar 2026 01:26:45 +0000 ROA not after: Wed 03 Mar 2027 01:31:45 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 2a09:54c4::/32 maxlen: 32 2a0f:6285::/32 maxlen: 32 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Mar 2026 06:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:75:6a:ab:c9:f5:94:89:ea:5d:83:3a:50:c1:fa:90:2b:5b:b4:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Mar 4 01:26:45 2026 GMT Not After : Mar 3 01:31:45 2027 GMT Subject: CN=2CBC3E8D22D6B3F0A4630F4EFEABBC415F3E35F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:df:2e:89:7d:49:c5:27:36:e9:6d:a7:e9:d1: 32:35:08:6e:23:04:64:5e:e8:6b:d7:8a:95:b8:99: 1e:39:f3:ec:16:c5:1b:ef:b5:e7:2f:dd:76:ea:2d: 3d:42:b6:c0:81:a8:85:89:a0:77:79:86:77:27:91: e1:6e:a1:97:19:78:20:8f:10:1f:d7:a3:da:cd:33: 6a:32:39:1b:56:cd:05:31:03:11:3e:df:86:34:f4: 22:6d:eb:24:b0:9a:41:8f:a9:8e:3b:45:64:84:9c: b0:49:e0:95:b4:3f:1e:a4:3f:cd:c5:6d:19:20:5a: 7f:06:17:25:0a:c2:89:d4:bd:c6:74:3d:c2:e2:31: 7f:13:7c:d2:00:77:92:8c:09:e4:42:80:10:3c:a9: ee:de:e3:52:36:65:61:55:9e:15:a4:ee:74:8e:eb: 88:8a:c2:f1:6e:a2:82:03:af:2d:36:45:b1:af:3e: ad:8d:94:65:a5:59:67:d3:41:df:88:ba:c1:89:f6: 0a:52:9c:20:64:3f:aa:3e:27:88:53:e7:57:78:75: 43:66:dc:f0:ff:2e:c7:a9:4e:c4:95:e9:84:57:ba: 4b:e9:70:d2:66:70:c4:cf:9e:9f:df:f1:47:c8:6c: a8:17:49:9f:22:17:e6:d8:cf:d3:d1:03:a7:38:e6: 3b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BC:3E:8D:22:D6:B3:F0:A4:63:0F:4E:FE:AB:BC:41:5F:3E:35:F1 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS213864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 2a09:54c4::/32 2a0f:6285::/32 Signature Algorithm: sha256WithRSAEncryption 07:e4:0e:59:90:18:ee:8f:c6:e3:eb:bc:2c:22:2a:5e:d7:5d: 91:c2:65:cd:7d:7e:fc:c0:6f:4e:57:f8:ad:73:17:75:ac:a8: 43:1a:bb:05:a8:86:6f:11:1f:5b:eb:9d:f5:ea:de:f4:f9:2a: 38:bc:cf:74:62:37:3f:77:ae:7a:71:63:20:30:c2:a3:52:d6: b9:51:c5:e2:a4:84:a8:ff:1f:01:12:0a:4c:0b:73:2c:45:a9: da:b7:ab:de:ca:09:95:d6:d9:91:d8:89:f8:1f:0c:ee:20:21: ba:f7:b2:a7:25:ef:fb:9b:6d:06:04:84:d6:76:a2:9b:64:14: e0:fd:3b:55:a8:88:a1:92:75:56:06:55:38:04:6d:d0:1d:1e: 40:6f:92:bf:2c:1f:0e:81:6c:e5:52:e9:03:63:87:a0:2b:c8: ea:d9:f7:6b:39:53:7a:a9:03:a4:6c:2c:9e:6d:fe:34:ad:ca: 0c:c8:eb:af:5d:4f:a9:c8:51:cd:0f:e5:7a:e6:d5:60:da:7a: 04:85:f7:fa:9b:c9:ca:7f:d9:b9:ab:25:0d:d5:55:6f:2a:1d: 0b:3b:5e:cc:be:c2:55:db:cd:d3:b6:22:80:aa:3e:90:4d:c8: 2b:7a:ce:78:52:3b:12:ee:25:19:db:63:71:95:6e:46:1e:06: a7:97:36:5b -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUT3Vqq8n1lInqXYM6UMH6kCtbtEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAzMDQwMTI2NDVaFw0yNzAzMDMwMTMxNDVaMDMxMTAvBgNV BAMTKDJDQkMzRThEMjJENkIzRjBBNDYzMEY0RUZFQUJCQzQxNUYzRTM1RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv3y6JfUnFJzbpbafp0TI1CG4j BGRe6GvXipW4mR458+wWxRvvtecv3XbqLT1CtsCBqIWJoHd5hncnkeFuoZcZeCCP EB/Xo9rNM2oyORtWzQUxAxE+34Y09CJt6ySwmkGPqY47RWSEnLBJ4JW0Px6kP83F bRkgWn8GFyUKwonUvcZ0PcLiMX8TfNIAd5KMCeRCgBA8qe7e41I2ZWFVnhWk7nSO 64iKwvFuooIDry02RbGvPq2NlGWlWWfTQd+IusGJ9gpSnCBkP6o+J4hT51d4dUNm 3PD/LsepTsSV6YRXukvpcNJmcMTPnp/f8UfIbKgXSZ8iF+bYz9PRA6c45jv9AgMB AAGjggHrMIIB5zAdBgNVHQ4EFgQULLw+jSLWs/CkYw9O/qu8QV8+NfEwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTM4NjQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMBsEAgACMBUDBQAq Bd/CAwUAKglUxAMFACoPYoUwDQYJKoZIhvcNAQELBQADggEBAAfkDlmQGO6PxuPr vCwiKl7XXZHCZc19fvzAb05X+K1zF3WsqEMauwWohm8RH1vrnfXq3vT5Kji8z3Ri Nz93rnpxYyAwwqNS1rlRxeKkhKj/HwESCkwLcyxFqdq3q97KCZXW2ZHYifgfDO4g Ibr3sqcl7/ubbQYEhNZ2optkFOD9O1WoiKGSdVYGVTgEbdAdHkBvkr8sHw6BbOVS 6QNjh6AryOrZ92s5U3qpA6RsLJ5t/jStygzI669dT6nIUc0P5Xrm1WDaegSF9/qb ycp/2bmrJQ3VVW8qHQs7Xsy+wlXbzdO2IoCqPpBNyCt6znhSOxLuJRnbY3GVbkYe BqeXNls= -----END CERTIFICATE-----Generated at Thu Mar 5 11:56:05 2026 by rpki-client