$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214299.roa File: AS214299.roa (raw, json) Hash identifier: Ylr3B6ICsW/g7fdf7wnPQ4t3UjtQFAtMCop4QVkay34= Subject key identifier: 94:E5:51:BA:A8:0A:C3:B4:76:ED:A9:98:C2:9D:A9:76:CD:38:56:49 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 3F6BE3DBB0B21F9F7C5D13BD0BEADF019855BD24 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214299.roa Signing time: Thu 03 Jul 2025 15:53:10 +0000 ROA not before: Thu 03 Jul 2025 15:48:10 +0000 ROA not after: Thu 02 Jul 2026 15:53:10 +0000 asID: 214299 IP address blocks: 2a05:dfc3:fd40::/44 maxlen: 52 2a05:dfc3:fd40::/48 maxlen: 48 2a09:54c7:1000::/36 maxlen: 48 2a09:54c7:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6b:e3:db:b0:b2:1f:9f:7c:5d:13:bd:0b:ea:df:01:98:55:bd:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:10 2025 GMT Not After : Jul 2 15:53:10 2026 GMT Subject: CN=94E551BAA80AC3B476EDA998C29DA976CD385649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b6:82:ee:87:61:59:40:5e:39:72:9b:fb:9d: 37:0a:1a:f9:9f:0a:b4:14:65:23:17:20:86:5d:c6: e6:61:01:58:f1:67:9f:47:73:b0:39:42:ad:9b:ef: 62:79:09:91:eb:3e:13:2f:29:c8:4a:1c:ea:01:06: 19:9a:b0:cf:f3:97:fe:5b:80:c1:01:87:f1:37:65: df:91:dd:51:4c:03:72:87:1a:3b:55:60:ed:ed:7e: 88:1a:9a:16:6a:ef:48:ba:87:bd:e5:77:73:a6:25: a3:81:a8:58:51:43:35:ad:f9:b1:cf:d0:b9:01:50: 1e:0e:7b:b8:16:ee:db:dd:10:1f:10:3a:0a:fd:4c: b4:74:a8:76:12:b2:a1:f6:3c:43:29:58:1a:71:7e: e5:8f:fe:96:cf:6c:46:ff:65:42:1e:06:5f:5d:22: f4:d2:5b:7c:5d:34:c8:12:b8:89:f1:87:50:fa:db: 55:7e:05:8d:16:3d:85:64:23:ea:8e:13:f3:1b:d3: 76:49:2e:4c:fb:0c:fa:42:4d:ee:f0:77:2c:a7:cd: 04:ae:5e:f5:a9:99:a9:df:09:b0:d0:0c:61:1b:43: 84:23:8e:84:92:cf:53:95:ea:ef:d7:c8:f3:59:05: 9d:3b:66:85:01:21:a4:2b:1d:dc:ec:4c:ac:f9:c5: 55:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E5:51:BA:A8:0A:C3:B4:76:ED:A9:98:C2:9D:A9:76:CD:38:56:49 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd40::/44 2a09:54c7:1000::/36 Signature Algorithm: sha256WithRSAEncryption 31:92:a8:49:3b:a3:1f:e4:9e:67:5f:95:dc:97:df:27:68:6f: 25:d1:6a:06:5d:8d:d9:e7:bc:f9:40:c2:1a:41:31:e1:d0:ff: 28:5e:fc:91:92:66:ce:5f:50:38:02:ec:a8:8d:e8:54:64:a1: 28:ee:40:51:a6:eb:57:b0:2b:49:0b:a5:30:12:c8:e8:33:a5: 62:7d:0d:81:64:25:8e:e0:f9:90:9a:16:5a:18:46:79:ec:5d: 5f:3b:13:74:e0:52:aa:68:59:c0:ac:1c:94:e9:93:3e:c5:ea: eb:4c:d7:13:28:90:2d:30:59:ea:75:4f:87:f8:3c:50:7f:c5: f8:35:17:62:fd:ec:eb:d6:7f:1c:58:6c:46:11:4b:26:24:1d: 37:00:01:af:31:60:b0:96:65:09:f2:08:c4:08:f8:31:6d:73: 7c:7f:07:b4:d2:e3:a7:b7:ad:d4:2f:55:1d:de:75:29:e0:f3: 88:1b:3d:7a:41:72:70:42:9c:a1:8e:c3:4f:4f:ab:55:f3:94: f5:5f:b1:49:69:be:11:dc:c7:a0:be:52:56:f4:fd:e4:c5:a7: 8a:3b:90:2e:14:27:75:b0:19:49:10:4f:16:8f:43:31:a3:3e: b2:03:b0:71:5f:e1:44:ec:ed:ef:e3:72:e8:27:a5:30:00:e0: 20:60:21:06 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUP2vj27CyH598XRO9C+rfAZhVvSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MTBaFw0yNjA3MDIxNTUzMTBaMDMxMTAvBgNV BAMTKDk0RTU1MUJBQTgwQUMzQjQ3NkVEQTk5OEMyOURBOTc2Q0QzODU2NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCptoLuh2FZQF45cpv7nTcKGvmf CrQUZSMXIIZdxuZhAVjxZ59Hc7A5Qq2b72J5CZHrPhMvKchKHOoBBhmasM/zl/5b gMEBh/E3Zd+R3VFMA3KHGjtVYO3tfogamhZq70i6h73ld3OmJaOBqFhRQzWt+bHP 0LkBUB4Oe7gW7tvdEB8QOgr9TLR0qHYSsqH2PEMpWBpxfuWP/pbPbEb/ZUIeBl9d IvTSW3xdNMgSuInxh1D621V+BY0WPYVkI+qOE/Mb03ZJLkz7DPpCTe7wdyynzQSu XvWpmanfCbDQDGEbQ4QjjoSSz1OV6u/XyPNZBZ07ZoUBIaQrHdzsTKz5xVWzAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUlOVRuqgKw7R27amYwp2pds04VkkwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQyOTkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBwQq Bd/D/UADBgQqCVTHEDANBgkqhkiG9w0BAQsFAAOCAQEAMZKoSTujH+SeZ1+V3Jff J2hvJdFqBl2N2ee8+UDCGkEx4dD/KF78kZJmzl9QOALsqI3oVGShKO5AUabrV7Ar SQulMBLI6DOlYn0NgWQljuD5kJoWWhhGeexdXzsTdOBSqmhZwKwclOmTPsXq60zX EyiQLTBZ6nVPh/g8UH/F+DUXYv3s69Z/HFhsRhFLJiQdNwABrzFgsJZlCfIIxAj4 MW1zfH8HtNLjp7et1C9VHd51KeDziBs9ekFycEKcoY7DT0+rVfOU9V+xSWm+EdzH oL5SVvT95MWnijuQLhQndbAZSRBPFo9DMaM+sgOwcV/hROzt7+Ny6CelMADgIGAh Bg== -----END CERTIFICATE-----Generated at Sat Jul 5 02:19:44 2025 by rpki-client