$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214223.roa File: AS214223.roa (raw, json) Hash identifier: kd72lL7g2uo6siRDB+WPNMwpUfjhEgU/hG/VcfnN5TQ= Subject key identifier: CF:0E:87:87:41:D7:68:9F:E2:71:65:B0:C7:FB:17:42:06:35:C1:F5 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 3C39E3FBC75E412554D2BD3440F508F32D65AB5C Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa Signing time: Sat 04 Oct 2025 08:09:45 +0000 ROA not before: Sat 04 Oct 2025 08:04:45 +0000 ROA not after: Sat 03 Oct 2026 08:09:45 +0000 asID: 214223 IP address blocks: 2a05:dfc3:fa00::/40 maxlen: 48 2a0a:6044:6400::/40 maxlen: 48 2a0a:6044:aa10::/48 maxlen: 48 2a0f:6283:1000::/40 maxlen: 40 2a0f:6283:1300::/40 maxlen: 40 2a0f:6286::/32 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 03:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:39:e3:fb:c7:5e:41:25:54:d2:bd:34:40:f5:08:f3:2d:65:ab:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 4 08:04:45 2025 GMT Not After : Oct 3 08:09:45 2026 GMT Subject: CN=CF0E878741D7689FE27165B0C7FB17420635C1F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d1:48:a6:07:42:f9:c0:53:0e:31:6b:32:2b: 20:ef:0b:e9:db:da:53:55:6e:6c:67:b3:0d:a0:9d: 05:90:86:de:4c:7c:ee:9f:f2:cf:9b:6a:c4:4b:7c: 13:c9:e8:07:8b:19:a9:42:b4:f5:75:16:cf:5f:c1: db:f3:11:60:83:c8:74:64:7c:c5:0a:6c:b6:d2:68: ff:f2:42:33:4f:cd:ef:3f:61:7b:98:d1:45:91:d9: 11:5e:35:3e:0f:17:55:db:a2:b6:9a:b8:43:48:06: df:e7:ed:9b:d9:3d:8a:c4:52:3b:be:47:61:74:3f: fa:82:2f:b0:a9:a5:c1:76:fb:af:5a:2a:0d:f0:35: 75:77:22:79:98:94:2f:f9:3c:0c:69:1f:14:77:d3: 6f:a9:80:a9:20:32:06:74:e7:a5:4e:d5:cc:24:72: 6d:63:49:e2:12:66:6f:35:87:ad:37:2e:f4:d3:81: 58:d7:e1:67:e4:dd:cc:08:aa:8e:b1:0c:4a:01:c7: 57:cd:4d:01:b3:66:c3:9c:1c:d6:2a:d9:72:8a:fc: 65:a6:57:98:27:49:a6:f1:18:89:be:ae:22:a8:58: 90:c7:3e:75:75:3b:b2:ba:57:f2:f1:ef:94:50:de: df:79:67:a0:4f:78:c9:c7:71:55:81:33:70:b3:6d: 35:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:0E:87:87:41:D7:68:9F:E2:71:65:B0:C7:FB:17:42:06:35:C1:F5 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214223.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fa00::/40 2a0a:6044:6400::/40 2a0a:6044:aa10::/48 2a0f:6283:1000::/40 2a0f:6283:1300::/40 2a0f:6286::/32 Signature Algorithm: sha256WithRSAEncryption 0a:e6:bf:c8:ce:f3:2a:c2:37:34:67:07:d1:7b:e2:b0:79:1e: d8:bd:ad:8e:3c:29:c6:3b:f3:11:bf:8c:2b:70:11:a2:95:ad: 20:39:bc:b4:79:54:06:1e:e7:81:7a:ee:b6:18:92:76:ad:9d: 45:58:79:cc:81:71:02:dc:68:67:32:e1:94:ad:e4:2b:60:81: 43:1d:e6:ad:9c:86:13:ad:c2:59:b1:28:eb:05:1d:d1:d2:50: 14:4c:53:91:df:04:c1:5f:fd:bb:67:04:b6:b6:84:31:3c:3c: 46:22:2f:c2:17:cc:05:10:fc:63:cc:15:c0:b4:31:42:53:36: 79:a0:82:a2:a8:61:2a:11:8a:53:87:bf:34:12:4a:a0:e1:f7: d7:92:b9:92:d6:0a:2a:24:3e:d0:cf:a8:20:44:34:75:08:ce: 6b:62:21:42:78:eb:a8:a7:ec:c3:9b:9b:d9:47:c2:cd:d1:dc: 40:4b:23:95:49:60:74:14:4f:0b:db:5b:88:02:7f:56:44:7d: 26:a7:07:2a:a4:f0:d3:76:65:c4:63:48:51:f2:be:fa:03:9e: 71:2d:41:39:76:d3:c6:21:a5:59:5c:61:8c:93:6d:b5:ec:09: 65:0c:95:60:3f:97:7c:e9:ee:8c:7f:66:c7:94:02:70:cc:f0: e5:04:e5:cd -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUPDnj+8deQSVU0r00QPUI8y1lq1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMDQwODA0NDVaFw0yNjEwMDMwODA5NDVaMDMxMTAvBgNV BAMTKENGMEU4Nzg3NDFENzY4OUZFMjcxNjVCMEM3RkIxNzQyMDYzNUMxRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE0UimB0L5wFMOMWsyKyDvC+nb 2lNVbmxnsw2gnQWQht5MfO6f8s+basRLfBPJ6AeLGalCtPV1Fs9fwdvzEWCDyHRk fMUKbLbSaP/yQjNPze8/YXuY0UWR2RFeNT4PF1XboraauENIBt/n7ZvZPYrEUju+ R2F0P/qCL7CppcF2+69aKg3wNXV3InmYlC/5PAxpHxR302+pgKkgMgZ056VO1cwk cm1jSeISZm81h603LvTTgVjX4Wfk3cwIqo6xDEoBx1fNTQGzZsOcHNYq2XKK/GWm V5gnSabxGIm+riKoWJDHPnV1O7K6V/Lx75RQ3t95Z6BPeMnHcVWBM3CzbTWnAgMB AAGjggIGMIICAjAdBgNVHQ4EFgQUzw6Hh0HXaJ/icWWwx/sXQgY1wfUwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyMjMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwSQYIKwYBBQUHAQcBAf8EOjA4MDYEAgACMDADBgAq Bd/D+gMGACoKYERkAwcAKgpgRKoQAwYAKg9igxADBgAqD2KDEwMFACoPYoYwDQYJ KoZIhvcNAQELBQADggEBAArmv8jO8yrCNzRnB9F74rB5Hti9rY48KcY78xG/jCtw EaKVrSA5vLR5VAYe54F67rYYknatnUVYecyBcQLcaGcy4ZSt5CtggUMd5q2chhOt wlmxKOsFHdHSUBRMU5HfBMFf/btnBLa2hDE8PEYiL8IXzAUQ/GPMFcC0MUJTNnmg gqKoYSoRilOHvzQSSqDh99eSuZLWCiokPtDPqCBENHUIzmtiIUJ466in7MObm9lH ws3R3EBLI5VJYHQUTwvbW4gCf1ZEfSanByqk8NN2ZcRjSFHyvvoDnnEtQTl208Yh pVlcYYyTbbXsCWUMlWA/l3zp7ox/ZseUAnDM8OUE5c0= -----END CERTIFICATE-----Generated at Wed Oct 8 17:35:53 2025 by rpki-client