$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214206.roa File: AS214206.roa (raw, json) Hash identifier: spl5ErUx1dwYLFrg5i+Agpjl24Bj1OHHOlSZagZUenk= Subject key identifier: B5:AA:40:4B:5B:2C:AF:9C:B7:69:C3:92:0F:71:15:D0:A5:12:38:D3 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 2245AA40BECDD808355545EB615EEBF59D376E99 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214206.roa Signing time: Thu 03 Jul 2025 15:53:00 +0000 ROA not before: Thu 03 Jul 2025 15:48:00 +0000 ROA not after: Thu 02 Jul 2026 15:53:00 +0000 asID: 214206 IP address blocks: 2a05:dfc3:fd70::/44 maxlen: 52 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:45:aa:40:be:cd:d8:08:35:55:45:eb:61:5e:eb:f5:9d:37:6e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:00 2025 GMT Not After : Jul 2 15:53:00 2026 GMT Subject: CN=B5AA404B5B2CAF9CB769C3920F7115D0A51238D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:da:f5:76:91:51:e6:76:65:c3:ef:64:6a: 98:e1:21:d5:29:f1:5d:0a:70:60:a9:89:b2:dc:fa: 92:ec:a7:e8:73:5e:96:74:e6:4f:0f:91:71:11:08: ca:1b:8d:de:2b:02:67:6d:7e:1a:ed:ba:3a:33:4c: a0:8a:8b:4c:50:ff:60:89:06:9e:6c:9a:8c:4a:f5: ca:d9:ae:b4:59:32:18:0f:c0:e7:dd:c0:eb:3b:cd: 2a:e3:70:ba:9c:57:e6:f0:c5:bc:1c:c8:e1:b1:8d: 40:d6:d6:55:b2:d3:ed:ac:17:3f:64:be:06:4b:c2: 5e:9d:99:73:a0:69:01:f0:cb:16:6a:8d:fe:a2:be: 4a:f4:b8:08:3f:dc:35:ba:86:15:7b:ba:7a:41:67: 81:22:59:77:b7:3c:cd:55:50:9e:c7:d2:4d:80:5e: 8b:96:d6:72:1c:58:ae:b2:a7:e7:f1:a5:93:70:55: 7c:a7:37:ee:20:fe:ef:ec:fa:45:8d:80:25:f0:4a: 35:0a:9f:40:67:68:3f:cd:7a:57:69:fc:27:05:77: 12:38:87:0a:ef:ff:85:e0:de:04:ec:21:3f:26:ae: 24:0f:3e:a7:26:b2:09:37:69:e5:ba:65:67:d5:be: 74:da:d9:f3:9b:82:53:38:2e:1d:2d:5f:7f:94:ce: 34:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AA:40:4B:5B:2C:AF:9C:B7:69:C3:92:0F:71:15:D0:A5:12:38:D3 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214206.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd70::/44 Signature Algorithm: sha256WithRSAEncryption 1c:9a:1c:b4:13:06:71:ea:61:ff:54:6b:63:cd:78:bb:5d:f2: d7:2b:38:61:c7:2f:d2:ab:df:22:30:a1:b8:2a:4e:79:1c:48: 1d:67:60:88:b5:9a:b8:61:3f:4b:ad:2e:fb:b3:44:56:e4:19: 45:a4:61:f6:d1:f6:1f:95:3a:c9:a1:2e:47:a9:35:08:4e:d0: 63:aa:89:1a:47:8c:76:ca:1e:ad:cd:9a:9e:ac:48:89:48:4f: b2:00:77:f4:cd:8f:1c:8d:56:96:72:b2:d3:52:96:58:04:f9: 7e:91:db:5f:ff:81:2d:08:16:4c:38:31:ca:61:49:09:06:60: ec:39:2d:b7:e1:67:81:ef:77:38:ac:b4:d1:f5:3d:35:e7:d1: 61:27:6f:60:26:dd:50:9c:3d:55:75:36:ef:a7:0a:01:5a:a9: 07:3e:af:44:49:90:43:14:d9:18:e3:dc:97:3b:08:f6:0c:de: fa:b6:58:d6:3b:a6:37:d7:6f:b3:c8:58:3b:85:56:60:d6:bd: b4:69:65:9c:fc:bf:97:2a:ed:07:d6:fb:bf:fe:68:ec:2c:4b: 97:e2:bb:d5:6d:13:f9:62:d2:f6:ab:d2:2e:5b:40:ed:1c:4f: 5d:06:3d:99:50:49:9c:c3:63:40:7c:65:0f:0a:21:fe:9b:3a: 07:66:56:d1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUIkWqQL7N2Ag1VUXrYV7r9Z03bpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MDBaFw0yNjA3MDIxNTUzMDBaMDMxMTAvBgNV BAMTKEI1QUE0MDRCNUIyQ0FGOUNCNzY5QzM5MjBGNzExNUQwQTUxMjM4RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/VNr1dpFR5nZlw+9kapjhIdUp 8V0KcGCpibLc+pLsp+hzXpZ05k8PkXERCMobjd4rAmdtfhrtujozTKCKi0xQ/2CJ Bp5smoxK9crZrrRZMhgPwOfdwOs7zSrjcLqcV+bwxbwcyOGxjUDW1lWy0+2sFz9k vgZLwl6dmXOgaQHwyxZqjf6ivkr0uAg/3DW6hhV7unpBZ4EiWXe3PM1VUJ7H0k2A XouW1nIcWK6yp+fxpZNwVXynN+4g/u/s+kWNgCXwSjUKn0BnaD/Neldp/CcFdxI4 hwrv/4Xg3gTsIT8mriQPPqcmsgk3aeW6ZWfVvnTa2fObglM4Lh0tX3+UzjQ9AgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUtapAS1ssr5y3acOSD3EV0KUSONMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyMDYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQq Bd/D/XAwDQYJKoZIhvcNAQELBQADggEBAByaHLQTBnHqYf9Ua2PNeLtd8tcrOGHH L9Kr3yIwobgqTnkcSB1nYIi1mrhhP0utLvuzRFbkGUWkYfbR9h+VOsmhLkepNQhO 0GOqiRpHjHbKHq3Nmp6sSIlIT7IAd/TNjxyNVpZystNSllgE+X6R21//gS0IFkw4 McphSQkGYOw5LbfhZ4HvdzistNH1PTXn0WEnb2Am3VCcPVV1Nu+nCgFaqQc+r0RJ kEMU2Rjj3Jc7CPYM3vq2WNY7pjfXb7PIWDuFVmDWvbRpZZz8v5cq7QfW+7/+aOws S5fiu9VtE/li0var0i5bQO0cT10GPZlQSZzDY0B8ZQ8KIf6bOgdmVtE= -----END CERTIFICATE-----Generated at Sat Jul 5 02:16:41 2025 by rpki-client