$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214203.roa File: AS214203.roa (raw, json) Hash identifier: LzpglCRweJ1wgLVB6cLhtG/tj50+pEaPYPzkTbreBps= Subject key identifier: F7:0A:A0:0B:E4:71:3D:6E:93:E1:CC:3A:AE:E5:81:62:EC:6F:2D:D0 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 729F23996E9E111CAF4ECB6B654AE5763E079463 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214203.roa Signing time: Thu 04 Jun 2026 16:51:49 +0000 ROA not before: Thu 04 Jun 2026 16:46:49 +0000 ROA not after: Thu 03 Jun 2027 16:51:49 +0000 asID: 214203 IP address blocks: 2a05:dfc3:ff00::/40 maxlen: 48 2a0a:6044:6700::/40 maxlen: 48 2a0a:6044:7a00::/40 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 19:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9f:23:99:6e:9e:11:1c:af:4e:cb:6b:65:4a:e5:76:3e:07:94:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jun 4 16:46:49 2026 GMT Not After : Jun 3 16:51:49 2027 GMT Subject: CN=F70AA00BE4713D6E93E1CC3AAEE58162EC6F2DD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:92:dd:9b:f3:16:ca:c4:93:ae:3e:a2:d2:19: aa:28:f2:38:e2:a0:0c:b1:59:e6:48:91:f5:a1:84: 6c:0a:13:65:5b:8a:84:f3:de:12:d2:33:51:0e:18: cb:6a:ca:44:e0:29:e9:2d:a2:6e:75:7d:21:05:52: d8:06:b6:f2:c9:43:14:02:a5:49:50:8b:23:94:36: 68:7f:58:58:43:8e:04:a0:60:05:10:60:57:6d:d1: ab:da:4b:69:b8:01:6c:35:d1:e2:05:b8:a7:22:d5: 55:9c:d8:7e:16:58:7b:72:04:83:fa:05:2d:a5:a9: 73:cb:93:67:38:4a:20:69:6d:df:89:f2:1c:97:cc: ed:5e:77:51:73:2a:9e:67:b6:d8:30:14:dd:11:22: 4c:97:f3:ba:f6:2d:ba:41:ba:3a:fa:50:c0:d1:ba: 36:b5:ce:8d:b1:74:e6:b0:18:59:30:cc:c8:a8:58: 28:e9:6c:aa:a7:ae:8a:99:7c:e4:bc:e8:a3:3b:1c: d9:1e:3d:55:80:a3:ff:c6:f7:af:d9:0f:94:7b:f3: 18:32:dd:70:b7:a4:29:cd:8d:1a:40:f7:a4:f8:4a: 0a:d9:2e:a1:7a:5f:84:75:20:5d:56:4a:64:21:bb: 4d:d7:c5:2b:b7:f7:f8:59:fe:dc:f8:be:1d:30:2b: 4b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:0A:A0:0B:E4:71:3D:6E:93:E1:CC:3A:AE:E5:81:62:EC:6F:2D:D0 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214203.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:ff00::/40 2a0a:6044:6700::/40 2a0a:6044:7a00::/40 Signature Algorithm: sha256WithRSAEncryption 26:dc:45:22:72:42:9e:dd:86:2c:da:ad:d6:0f:7d:b9:d3:45: a7:e7:2d:51:2d:e9:26:9a:7e:7d:2a:d7:87:f6:1f:63:44:bc: 4e:62:b1:9e:5e:95:7f:45:8a:ce:91:a8:83:f0:c4:9e:0f:47: 74:23:ed:e0:c4:c4:a7:0c:ff:39:29:22:07:13:10:c1:44:fd: 10:2c:3a:18:df:b4:58:77:95:6c:b2:9d:7d:b3:95:34:ca:67: 1d:fc:6d:7a:ae:e8:36:20:b1:eb:f7:c7:56:57:24:73:7f:0e: e8:4b:23:14:96:07:43:31:97:b8:ce:80:59:37:c0:27:df:65: c3:a5:d0:ee:2b:9a:2f:88:5d:bc:56:a4:a2:29:8c:22:67:16: 54:43:93:2e:d6:0b:71:7f:de:67:00:b9:b7:ac:f6:2a:3f:77: 5f:84:a0:68:fc:df:29:2c:c8:b7:b2:de:86:00:5c:99:62:6f: 55:06:05:79:cb:cf:5a:56:60:41:6c:4c:bc:7e:43:0a:e5:be: 25:15:a8:14:d9:a8:c2:1e:d1:58:7e:3a:fd:1e:f2:80:a1:55: c5:7f:e2:69:0e:75:71:96:b3:35:cc:75:17:e6:1f:3a:b8:0e: 06:d0:ca:a6:72:4e:e0:8e:31:93:fe:4c:f7:41:20:0f:be:54: b5:bc:05:de -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUcp8jmW6eERyvTstrZUrldj4HlGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA2MDQxNjQ2NDlaFw0yNzA2MDMxNjUxNDlaMDMxMTAvBgNV BAMTKEY3MEFBMDBCRTQ3MTNENkU5M0UxQ0MzQUFFRTU4MTYyRUM2RjJERDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCykt2b8xbKxJOuPqLSGaoo8jji oAyxWeZIkfWhhGwKE2VbioTz3hLSM1EOGMtqykTgKektom51fSEFUtgGtvLJQxQC pUlQiyOUNmh/WFhDjgSgYAUQYFdt0avaS2m4AWw10eIFuKci1VWc2H4WWHtyBIP6 BS2lqXPLk2c4SiBpbd+J8hyXzO1ed1FzKp5nttgwFN0RIkyX87r2LbpBujr6UMDR uja1zo2xdOawGFkwzMioWCjpbKqnroqZfOS86KM7HNkePVWAo//G96/ZD5R78xgy 3XC3pCnNjRpA96T4SgrZLqF6X4R1IF1WSmQhu03XxSu39/hZ/tz4vh0wK0u9AgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQU9wqgC+RxPW6T4cw6ruWBYuxvLdAwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyMDMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgACMBgDBgAq Bd/D/wMGACoKYERnAwYAKgpgRHowDQYJKoZIhvcNAQELBQADggEBACbcRSJyQp7d hizardYPfbnTRafnLVEt6Saafn0q14f2H2NEvE5isZ5elX9Fis6RqIPwxJ4PR3Qj 7eDExKcM/zkpIgcTEMFE/RAsOhjftFh3lWyynX2zlTTKZx38bXqu6DYgsev3x1ZX JHN/DuhLIxSWB0Mxl7jOgFk3wCffZcOl0O4rmi+IXbxWpKIpjCJnFlRDky7WC3F/ 3mcAubes9io/d1+EoGj83yksyLey3oYAXJlib1UGBXnLz1pWYEFsTLx+QwrlviUV qBTZqMIe0Vh+Ov0e8oChVcV/4mkOdXGWszXMdRfmHzq4DgbQyqZyTuCOMZP+TPdB IA++VLW8Bd4= -----END CERTIFICATE-----Generated at Sat Jun 6 05:22:48 2026 by rpki-client