$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214016.roa File: AS214016.roa (raw, json) Hash identifier: AeSCIcM8E9FqcyrfBM8FL7El876sxe+xmxAA9ZcRVAQ= Subject key identifier: 2D:E7:26:45:9D:BE:59:66:E0:F7:4F:3F:54:2C:BC:B3:0D:5C:FC:1E Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 274A562DB352CE979E7000E910468602822C85F2 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214016.roa Signing time: Thu 03 Jul 2025 15:53:10 +0000 ROA not before: Thu 03 Jul 2025 15:48:10 +0000 ROA not after: Thu 02 Jul 2026 15:53:10 +0000 asID: 214016 IP address blocks: 2a06:1281:5000::/36 maxlen: 44 2a09:54c6:4000::/36 maxlen: 44 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4a:56:2d:b3:52:ce:97:9e:70:00:e9:10:46:86:02:82:2c:85:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:10 2025 GMT Not After : Jul 2 15:53:10 2026 GMT Subject: CN=2DE726459DBE5966E0F74F3F542CBCB30D5CFC1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8f:ec:ea:03:3b:c1:f1:c8:7e:5c:57:09:18: 46:a8:45:ed:96:c1:6b:bf:50:5e:53:06:68:c7:d9: d2:4e:e5:0d:44:0d:a7:c7:e6:a6:e7:90:d7:4c:f7: 61:e8:53:e2:ac:0f:a8:57:8b:40:96:68:c1:6f:7a: 31:66:c0:27:98:17:63:88:6c:61:51:e3:af:69:95: 3a:68:68:1b:77:01:91:34:b1:5a:9b:93:55:69:c8: e1:fa:1d:6b:56:f7:41:5b:46:76:4c:30:f8:f3:4b: 6f:a2:f9:84:a7:8f:87:47:5e:30:79:90:7c:55:2b: 11:b1:03:70:5f:c0:1f:13:94:03:c2:56:e5:e6:14: 53:b8:bb:8a:8c:a0:99:3a:43:52:ce:45:b2:64:b9: cd:33:ba:6f:07:1d:27:c0:80:b2:69:7c:b9:05:a5: 39:45:fe:3a:06:55:d7:22:f6:90:7c:da:0c:3a:88: 99:2f:e5:b2:40:fc:5c:46:89:f0:6f:5a:76:b8:2c: 4d:f2:07:86:d8:8b:6e:8c:03:ef:b9:dd:6d:79:00: 4f:20:4c:45:74:52:97:85:d7:14:b7:58:55:1b:bb: 96:9f:25:5d:8b:30:37:dd:15:96:a8:4d:7c:1a:e4: f4:bb:d9:fc:f1:99:9c:28:17:78:a4:38:b8:ec:4d: c5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E7:26:45:9D:BE:59:66:E0:F7:4F:3F:54:2C:BC:B3:0D:5C:FC:1E X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:5000::/36 2a09:54c6:4000::/36 Signature Algorithm: sha256WithRSAEncryption 8d:9e:6e:14:6d:76:b6:39:b9:20:0e:fb:70:3f:86:7c:33:35: 47:b2:14:d4:13:44:10:b4:5f:dc:e3:0b:d2:ad:48:ff:e0:ee: 4f:1a:b1:f0:23:39:14:d0:46:2d:35:84:fa:5d:17:b2:47:bd: 8f:ee:1d:7c:be:52:d5:2f:6d:a4:c1:df:e1:89:d6:23:12:f7: 8c:4c:f9:09:ac:af:1f:b3:4d:49:c1:a2:cd:62:dc:a1:dd:78: d9:48:0b:d0:53:ff:bc:7a:4d:d7:02:e8:76:bd:5b:dc:ef:e6: 30:5f:89:32:8e:1c:65:e4:ef:16:94:bc:83:30:d2:ad:ea:ed: c3:f6:30:91:7b:8b:5e:e6:9c:8d:3c:fa:3e:0d:28:6f:1c:48: 60:27:48:68:69:d8:55:58:fd:f5:bc:7b:1e:7d:24:72:66:6d: 06:c3:00:82:5b:38:cf:b9:95:d4:08:82:a2:14:33:4d:f7:7c: 31:7f:85:6b:c9:fd:f4:2a:26:36:37:4a:67:82:03:fd:76:35: f2:6d:2c:fc:c2:6b:3f:3a:bc:7a:bc:09:59:a4:67:aa:7e:67: 55:a2:78:cd:94:f7:76:7d:8c:a1:98:26:4b:ba:ac:14:d9:ff: d2:b7:8d:b1:ee:63:5e:bb:59:15:7e:0c:dd:59:07:90:8b:b8: b5:44:08:68 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUJ0pWLbNSzpeecADpEEaGAoIshfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MTBaFw0yNjA3MDIxNTUzMTBaMDMxMTAvBgNV BAMTKDJERTcyNjQ1OURCRTU5NjZFMEY3NEYzRjU0MkNCQ0IzMEQ1Q0ZDMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvj+zqAzvB8ch+XFcJGEaoRe2W wWu/UF5TBmjH2dJO5Q1EDafH5qbnkNdM92HoU+KsD6hXi0CWaMFvejFmwCeYF2OI bGFR469plTpoaBt3AZE0sVqbk1VpyOH6HWtW90FbRnZMMPjzS2+i+YSnj4dHXjB5 kHxVKxGxA3BfwB8TlAPCVuXmFFO4u4qMoJk6Q1LORbJkuc0zum8HHSfAgLJpfLkF pTlF/joGVdci9pB82gw6iJkv5bJA/FxGifBvWna4LE3yB4bYi26MA++53W15AE8g TEV0UpeF1xS3WFUbu5afJV2LMDfdFZaoTXwa5PS72fzxmZwoF3ikOLjsTcU1AgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQULecmRZ2+WWbg908/VCy8sw1c/B4wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQwMTYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgQq BhKBUAMGBCoJVMZAMA0GCSqGSIb3DQEBCwUAA4IBAQCNnm4UbXa2ObkgDvtwP4Z8 MzVHshTUE0QQtF/c4wvSrUj/4O5PGrHwIzkU0EYtNYT6XReyR72P7h18vlLVL22k wd/hidYjEveMTPkJrK8fs01JwaLNYtyh3XjZSAvQU/+8ek3XAuh2vVvc7+YwX4ky jhxl5O8WlLyDMNKt6u3D9jCRe4te5pyNPPo+DShvHEhgJ0hoadhVWP31vHsefSRy Zm0GwwCCWzjPuZXUCIKiFDNN93wxf4Vryf30KiY2N0pnggP9djXybSz8wms/Orx6 vAlZpGeqfmdVonjNlPd2fYyhmCZLuqwU2f/St42x7mNeu1kVfgzdWQeQi7i1RAho -----END CERTIFICATE-----Generated at Sat Jul 5 02:15:22 2025 by rpki-client