$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214323.roa File: AS214323.roa (raw, json) Hash identifier: +kVszaAX+zUl0GByqJD5W+sUAo9A4vlSb7RwvY9M7z0= Subject key identifier: DD:56:45:56:AA:A0:19:09:4C:33:BB:86:F6:14:31:F0:AB:A0:FE:6B Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 674ED4A456BC947E9CF7112DEDD05B1636793E2D Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214323.roa Signing time: Thu 04 Jun 2026 16:51:48 +0000 ROA not before: Thu 04 Jun 2026 16:46:48 +0000 ROA not after: Thu 03 Jun 2027 16:51:48 +0000 asID: 214323 IP address blocks: 2a0a:6044:7900::/48 maxlen: 48 2a0a:6044:7901::/48 maxlen: 48 2a0a:6044:7902::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:4e:d4:a4:56:bc:94:7e:9c:f7:11:2d:ed:d0:5b:16:36:79:3e:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jun 4 16:46:48 2026 GMT Not After : Jun 3 16:51:48 2027 GMT Subject: CN=DD564556AAA019094C33BB86F61431F0ABA0FE6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a5:50:e9:c0:2a:93:9e:e4:ea:9c:92:08:86: 8a:3f:a0:50:48:0a:45:f8:c7:7a:d8:fa:a2:50:44: 5b:af:11:69:53:00:87:de:25:99:d5:2d:69:df:0f: 14:a3:c9:4e:38:68:70:de:a0:5e:48:19:1a:7e:18: 11:3b:ab:fa:20:5b:8e:fa:ff:12:70:48:68:8a:8c: 6f:08:bc:15:60:0f:52:95:2f:5e:c0:7a:41:55:e6: 51:a2:cd:d8:20:13:fc:2e:a0:29:9e:e4:91:fe:fc: d4:d1:23:77:97:8a:41:13:2c:08:81:03:d4:ae:5f: 38:dc:95:56:33:92:20:5e:a6:ad:c3:35:65:e8:96: ad:81:4c:b6:7a:a5:91:d5:cf:0e:14:15:60:59:d7: 6e:f6:79:9d:b2:61:ad:52:60:c6:2c:83:c1:03:8c: be:7c:59:2c:4f:70:37:d7:ff:0e:0c:37:4e:93:8e: 9b:12:9b:94:98:1f:86:8b:72:1e:78:6c:bd:33:56: 28:1a:c6:17:59:30:45:a0:58:ec:ec:87:e0:d4:f8: bf:27:15:d1:79:fb:8d:5f:9f:34:b6:fe:80:48:5a: 05:6e:66:c5:44:77:58:24:8d:a9:d8:fb:7c:d0:e3: 2f:f8:0e:ba:38:48:7d:aa:8a:47:d0:20:3b:04:e1: f4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:56:45:56:AA:A0:19:09:4C:33:BB:86:F6:14:31:F0:AB:A0:FE:6B X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214323.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7900::-2a0a:6044:7902:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 47:f5:39:47:ec:d2:80:3a:39:e9:22:cf:e8:fe:6d:f1:05:e2: 8d:69:30:be:9f:11:64:2c:e7:b2:1c:c6:b0:f4:32:17:dc:b4: 36:d4:af:07:e5:5f:4b:54:d1:6a:54:ff:0a:b9:a4:78:4a:da: 06:d4:97:14:ad:dd:f4:bf:b9:2b:92:38:38:0c:b8:bc:b4:33: 9c:95:d1:34:b1:e4:85:98:85:57:42:be:46:3c:39:c0:1a:6f: 31:13:a5:e4:d0:72:65:e9:5d:85:e8:63:46:27:9d:6d:14:17: 96:46:68:4d:30:15:b7:0b:7d:77:9e:b6:6a:d0:d6:f2:8e:dd: 01:6b:49:1e:b4:69:90:ea:39:e3:0f:58:a3:41:c4:d2:93:b9: 33:2f:5b:ca:93:14:29:cc:42:9a:d2:58:56:9d:a4:16:95:4c: 01:d3:56:9b:47:dc:3b:60:ca:cc:64:0d:a6:aa:f3:91:75:4f: af:e7:10:a9:69:87:b3:e0:f5:89:53:cc:e4:3c:e3:bc:b2:b7: 45:80:ba:1b:2f:27:76:37:70:18:4e:04:48:34:99:46:74:d8: ed:c4:f4:19:c7:1e:d8:30:6f:63:08:af:0e:4c:38:e9:c1:a9: 9b:47:48:f5:5f:45:f4:1b:67:31:3e:a1:c5:77:db:fc:d2:dd: c6:6b:ab:c0 -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUZ07UpFa8lH6c9xEt7dBbFjZ5Pi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA2MDQxNjQ2NDhaFw0yNzA2MDMxNjUxNDhaMDMxMTAvBgNV BAMTKERENTY0NTU2QUFBMDE5MDk0QzMzQkI4NkY2MTQzMUYwQUJBMEZFNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZpVDpwCqTnuTqnJIIhoo/oFBI CkX4x3rY+qJQRFuvEWlTAIfeJZnVLWnfDxSjyU44aHDeoF5IGRp+GBE7q/ogW476 /xJwSGiKjG8IvBVgD1KVL17AekFV5lGizdggE/wuoCme5JH+/NTRI3eXikETLAiB A9SuXzjclVYzkiBepq3DNWXolq2BTLZ6pZHVzw4UFWBZ1272eZ2yYa1SYMYsg8ED jL58WSxPcDfX/w4MN06TjpsSm5SYH4aLch54bL0zVigaxhdZMEWgWOzsh+DU+L8n FdF5+41fnzS2/oBIWgVuZsVEd1gkjanY+3zQ4y/4Dro4SH2qikfQIDsE4fQXAgMB AAGjggHpMIIB5TAdBgNVHQ4EFgQU3VZFVqqgGQlMM7uG9hQx8Kug/mswHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQzMjMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwLAYIKwYBBQUHAQcBAf8EHTAbMBkEAgACMBMwEQMG ACoKYER5AwcAKgpgRHkCMA0GCSqGSIb3DQEBCwUAA4IBAQBH9TlH7NKAOjnpIs/o /m3xBeKNaTC+nxFkLOeyHMaw9DIX3LQ21K8H5V9LVNFqVP8KuaR4StoG1JcUrd30 v7krkjg4DLi8tDOcldE0seSFmIVXQr5GPDnAGm8xE6Xk0HJl6V2F6GNGJ51tFBeW RmhNMBW3C313nrZq0Nbyjt0Ba0ketGmQ6jnjD1ijQcTSk7kzL1vKkxQpzEKa0lhW naQWlUwB01abR9w7YMrMZA2mqvORdU+v5xCpaYez4PWJU8zkPOO8srdFgLobLyd2 N3AYTgRINJlGdNjtxPQZxx7YMG9jCK8OTDjpwambR0j1X0X0G2cxPqHFd9v80t3G a6vA -----END CERTIFICATE-----Generated at Fri Jun 5 23:33:28 2026 by rpki-client