$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214203.roa File: AS214203.roa (raw, json) Hash identifier: Ux5fBQn/ekFPOzJgvdw9ylaEVK8ZmfK98yi0cDLf0f4= Subject key identifier: 3D:A3:1F:31:5C:6C:A3:FB:3A:1C:07:DF:85:96:46:4D:09:F0:50:94 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 482791B885680B4268DE3FCEEB66B25A347AAF79 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214203.roa Signing time: Thu 03 Jul 2025 15:53:06 +0000 ROA not before: Thu 03 Jul 2025 15:48:06 +0000 ROA not after: Thu 02 Jul 2026 15:53:06 +0000 asID: 214203 IP address blocks: 2a05:dfc3:ff00::/40 maxlen: 48 2a0a:6044:6700::/40 maxlen: 48 2a0a:6044:7a00::/40 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:27:91:b8:85:68:0b:42:68:de:3f:ce:eb:66:b2:5a:34:7a:af:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:06 2025 GMT Not After : Jul 2 15:53:06 2026 GMT Subject: CN=3DA31F315C6CA3FB3A1C07DF8596464D09F05094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:39:8c:5e:f6:66:c5:ee:c3:05:ec:29:db:67: e5:a7:ee:ea:72:b3:82:91:e5:1e:0f:73:92:d6:3d: 9f:63:18:fa:61:af:47:5e:71:08:f9:c8:b4:77:e4: 35:d2:2c:54:eb:d0:d4:a0:a9:d2:ab:c2:8c:f0:5f: e4:ba:99:ad:4f:ef:41:82:5e:9f:03:b0:52:a0:ab: 78:62:59:6b:99:ac:85:6f:d7:09:d9:ae:b6:17:ac: 64:59:11:7d:b7:62:d2:4f:44:aa:f9:3d:f5:fc:54: 62:5e:d2:df:a1:b3:c3:93:74:d9:0d:9c:6e:9e:7f: 10:aa:f3:7c:cd:64:d2:c0:de:9f:89:e5:5a:44:10: a1:41:14:6c:46:61:d7:61:26:48:16:38:53:1d:e1: 10:ee:ec:4f:34:06:13:04:5c:ed:bf:ef:7b:45:e6: f2:b9:19:17:55:ff:81:7d:1b:2f:b6:d8:91:e5:0a: a7:4a:08:dd:5f:8a:a0:fc:3a:02:f7:83:e4:dd:44: 93:eb:e7:3e:ca:d7:c8:1a:47:eb:cb:06:c0:e2:4b: 25:1d:04:63:1a:07:ee:0f:fd:2a:47:c9:03:a4:1f: 49:80:7e:b6:56:fe:a6:ba:a2:f3:78:9a:e8:2e:d8: 73:74:53:f2:bf:bb:5d:ed:ac:77:7b:56:46:9f:d5: 80:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A3:1F:31:5C:6C:A3:FB:3A:1C:07:DF:85:96:46:4D:09:F0:50:94 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214203.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:ff00::/40 2a0a:6044:6700::/40 2a0a:6044:7a00::/40 Signature Algorithm: sha256WithRSAEncryption 05:e9:f3:8d:48:9e:c0:bb:cb:79:44:a9:59:0b:5b:64:a1:a8: 04:bc:d7:bd:93:a8:7b:01:66:99:af:f2:5f:68:34:1d:a3:23: a3:aa:1e:fd:fe:dc:b1:71:4b:06:33:21:1e:02:10:4d:75:46: 88:8c:2e:1d:ba:7e:8d:ae:0f:41:4e:b3:5c:0c:3e:b1:c7:0b: 48:0a:a8:71:7c:8a:ba:53:42:10:48:e9:ff:c1:37:a5:8b:ad: e3:27:17:a9:5a:f7:02:57:7c:03:8e:cb:65:84:af:16:ab:4b: 06:96:f2:93:7f:93:a1:09:9b:99:9a:30:5c:10:f0:3b:72:29: 42:93:e3:c9:1e:d2:44:b3:10:39:a3:f8:35:f5:cc:0b:7e:5a: cb:e8:e0:61:1e:80:52:08:0b:0e:a0:15:4e:60:5b:1b:89:ec: eb:3b:6a:44:81:f4:c9:11:7b:10:c4:58:18:2b:01:35:fc:a5: 4f:85:4f:d2:4c:7d:04:c7:f2:7c:c4:44:d7:a8:d7:82:cc:20: 08:70:0d:8c:58:b5:64:c3:85:44:98:9e:8b:6f:c9:23:62:24: df:fb:a3:6c:c8:5c:01:0c:77:ed:4f:9c:f1:77:9e:1a:9c:dc: 2f:44:02:61:53:d7:24:12:8c:28:35:37:75:00:74:23:ee:d5: 4f:38:54:51 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUSCeRuIVoC0Jo3j/O62ayWjR6r3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MDZaFw0yNjA3MDIxNTUzMDZaMDMxMTAvBgNV BAMTKDNEQTMxRjMxNUM2Q0EzRkIzQTFDMDdERjg1OTY0NjREMDlGMDUwOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuOYxe9mbF7sMF7CnbZ+Wn7upy s4KR5R4Pc5LWPZ9jGPphr0decQj5yLR35DXSLFTr0NSgqdKrwozwX+S6ma1P70GC Xp8DsFKgq3hiWWuZrIVv1wnZrrYXrGRZEX23YtJPRKr5PfX8VGJe0t+hs8OTdNkN nG6efxCq83zNZNLA3p+J5VpEEKFBFGxGYddhJkgWOFMd4RDu7E80BhMEXO2/73tF 5vK5GRdV/4F9Gy+22JHlCqdKCN1fiqD8OgL3g+TdRJPr5z7K18gaR+vLBsDiSyUd BGMaB+4P/SpHyQOkH0mAfrZW/qa6ovN4mugu2HN0U/K/u13trHd7Vkaf1YClAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUPaMfMVxso/s6HAffhZZGTQnwUJQwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyMDMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgACMBgDBgAq Bd/D/wMGACoKYERnAwYAKgpgRHowDQYJKoZIhvcNAQELBQADggEBAAXp841InsC7 y3lEqVkLW2ShqAS8172TqHsBZpmv8l9oNB2jI6OqHv3+3LFxSwYzIR4CEE11RoiM Lh26fo2uD0FOs1wMPrHHC0gKqHF8irpTQhBI6f/BN6WLreMnF6la9wJXfAOOy2WE rxarSwaW8pN/k6EJm5maMFwQ8DtyKUKT48ke0kSzEDmj+DX1zAt+Wsvo4GEegFII Cw6gFU5gWxuJ7Os7akSB9MkRexDEWBgrATX8pU+FT9JMfQTH8nzERNeo14LMIAhw DYxYtWTDhUSYnotvySNiJN/7o2zIXAEMd+1PnPF3nhqc3C9EAmFT1yQSjCg1N3UA dCPu1U84VFE= -----END CERTIFICATE-----Generated at Sat Jul 5 02:11:45 2025 by rpki-client