This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214299.roa File: AS214299.roa (raw, json) Hash identifier: Ae7pAsQxMNO+8AIsorKgyZF/pqnxNWxL4OT62Jgl1BE= Subject key identifier: 2D:A7:31:E6:BF:4E:9F:7C:30:6F:6A:74:8C:8A:44:84:D7:3C:C3:3E Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 544CFC5E67D4927DF6618E1BA50DB50D3A9EB71D Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214299.roa Signing time: Tue 11 Nov 2025 23:48:34 +0000 ROA not before: Tue 11 Nov 2025 23:43:34 +0000 ROA not after: Tue 10 Nov 2026 23:48:34 +0000 asID: 214299 IP address blocks: 2a05:dfc3:fd40::/44 maxlen: 44 2a05:dfc3:fd40::/44 maxlen: 52 2a05:dfc3:fd40::/48 maxlen: 48 2a09:54c7:1000::/48 maxlen: 48 2a0f:6284:1000::/36 maxlen: 48 2a0f:6284:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 11:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:4c:fc:5e:67:d4:92:7d:f6:61:8e:1b:a5:0d:b5:0d:3a:9e:b7:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Nov 11 23:43:34 2025 GMT Not After : Nov 10 23:48:34 2026 GMT Subject: CN=2DA731E6BF4E9F7C306F6A748C8A4484D73CC33E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b6:2c:c3:42:d1:5b:2f:de:00:09:f1:ce:10: 83:33:5e:ab:a9:6f:4b:33:eb:b4:11:4d:9c:53:a5: 0c:e5:a0:8f:90:be:85:51:b1:81:ec:d1:d8:b2:23: d2:0c:0d:d0:6c:a9:30:ac:25:7d:11:f5:87:49:b1: 83:ad:1c:93:2f:9d:a4:33:60:d7:c5:f5:b6:8f:61: 5a:dc:07:8f:e2:8d:53:4a:47:0b:86:51:b6:d0:5c: 55:9a:c4:d2:18:de:36:9e:a3:ac:87:28:06:be:08: 86:d0:dd:0e:f5:12:14:eb:5d:13:22:ed:d0:7e:b8: 0f:1a:2b:0f:62:59:51:68:4b:01:b7:88:41:24:88: a0:88:52:f3:d2:1c:7e:62:f8:1d:94:b8:ad:4c:0b: d0:19:ab:a0:35:34:ff:a5:10:90:d1:18:38:02:d7: 1e:78:62:dc:42:a9:d0:20:03:9c:41:e1:57:1d:07: c0:eb:2b:62:b2:01:e6:23:50:54:fe:22:a7:b6:38: 2c:34:ec:e3:32:71:b8:4d:29:f2:e3:5b:f4:6b:a8: 2b:ce:6f:05:0d:e1:c8:b6:45:88:12:f1:26:0e:c2: 65:eb:23:d0:06:73:78:13:96:66:b1:59:6b:6e:c5: 74:35:fd:b8:e8:93:9b:e5:1f:9f:17:0d:50:a6:de: 91:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A7:31:E6:BF:4E:9F:7C:30:6F:6A:74:8C:8A:44:84:D7:3C:C3:3E X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd40::/44 2a09:54c7:1000::/48 2a0f:6284:1000::/36 Signature Algorithm: sha256WithRSAEncryption 0e:7a:db:54:b0:ff:50:f2:b0:44:0b:d2:93:7a:66:84:cb:d2: 82:fd:60:81:3b:c7:4c:a0:6f:dc:1f:ca:2f:74:f3:b8:5f:37: c5:df:2d:53:e3:21:d0:c4:1e:4a:5e:2f:7e:40:bc:3c:6b:5a: 6f:89:a2:9d:d4:91:55:f8:21:6c:cb:f6:d5:a2:b6:3b:91:a7: 11:5a:c3:5f:33:88:2c:e3:dd:4f:a6:84:aa:b5:d0:d1:87:a3: eb:47:bf:a1:65:e8:56:24:d5:f6:f7:ed:8a:da:7d:91:a6:97: e8:b1:78:2a:4a:db:30:fa:b6:67:06:92:8c:4d:ff:f8:34:d7: fe:a9:a2:66:53:06:f9:81:96:80:e3:b9:f0:84:c2:b1:d5:92: b3:3a:49:af:67:58:50:8f:95:c9:d7:b2:9c:c9:67:b0:3a:44: 68:5b:7e:c0:72:0b:6d:1d:f2:f8:9c:76:16:b5:38:c3:bd:ff: 27:89:75:90:02:8a:6e:11:e3:cb:19:26:d0:3d:fb:5c:17:86: 20:c9:1e:c8:55:79:a0:fb:4b:12:a1:13:27:46:9c:73:5f:8c: 3d:c4:b0:18:34:7e:d9:00:6b:25:70:35:db:91:78:17:91:80: 75:3a:55:84:19:32:4c:e7:78:4b:cd:c7:16:02:fa:95:5c:dc: fc:33:f6:95 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUVEz8XmfUkn32YY4bpQ21DTqetx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTExMTEyMzQzMzRaFw0yNjExMTAyMzQ4MzRaMDMxMTAvBgNV BAMTKDJEQTczMUU2QkY0RTlGN0MzMDZGNkE3NDhDOEE0NDg0RDczQ0MzM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdtizDQtFbL94ACfHOEIMzXqup b0sz67QRTZxTpQzloI+QvoVRsYHs0diyI9IMDdBsqTCsJX0R9YdJsYOtHJMvnaQz YNfF9baPYVrcB4/ijVNKRwuGUbbQXFWaxNIY3jaeo6yHKAa+CIbQ3Q71EhTrXRMi 7dB+uA8aKw9iWVFoSwG3iEEkiKCIUvPSHH5i+B2UuK1MC9AZq6A1NP+lEJDRGDgC 1x54YtxCqdAgA5xB4VcdB8DrK2KyAeYjUFT+Iqe2OCw07OMycbhNKfLjW/RrqCvO bwUN4ci2RYgS8SYOwmXrI9AGc3gTlmaxWWtuxXQ1/bjok5vlH58XDVCm3pEfAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQULacx5r9On3wwb2p0jIpEhNc8wz4wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyOTkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMwYIKwYBBQUHAQcBAf8EJDAiMCAEAgACMBoDBwQq Bd/D/UADBwAqCVTHEAADBgQqD2KEEDANBgkqhkiG9w0BAQsFAAOCAQEADnrbVLD/ UPKwRAvSk3pmhMvSgv1ggTvHTKBv3B/KL3TzuF83xd8tU+Mh0MQeSl4vfkC8PGta b4mindSRVfghbMv21aK2O5GnEVrDXzOILOPdT6aEqrXQ0Yej60e/oWXoViTV9vft itp9kaaX6LF4KkrbMPq2ZwaSjE3/+DTX/qmiZlMG+YGWgOO58ITCsdWSszpJr2dY UI+VydeynMlnsDpEaFt+wHILbR3y+Jx2FrU4w73/J4l1kAKKbhHjyxkm0D37XBeG IMkeyFV5oPtLEqETJ0acc1+MPcSwGDR+2QBrJXA125F4F5GAdTpVhBkyTOd4S83H FgL6lVzc/DP2lQ== -----END CERTIFICATE-----Generated at Sat Nov 22 21:56:59 2025 by rpki-client