$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214323.roa File: AS214323.roa (raw, json) Hash identifier: m45C4Zq+qkz0E7OTkfR39//7uHcBk/O3LIf/+H5lByM= Subject key identifier: C9:74:05:6E:6D:63:44:AD:3F:0A:8A:75:FD:E8:5F:B1:5D:DB:4A:C3 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 0D0CD03564E679C8C3AD9871E3F516EFF8E58341 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214323.roa Signing time: Thu 03 Jul 2025 15:53:07 +0000 ROA not before: Thu 03 Jul 2025 15:48:07 +0000 ROA not after: Thu 02 Jul 2026 15:53:07 +0000 asID: 214323 IP address blocks: 2a0a:6044:7900::/48 maxlen: 48 2a0a:6044:7901::/48 maxlen: 48 2a0a:6044:7902::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0c:d0:35:64:e6:79:c8:c3:ad:98:71:e3:f5:16:ef:f8:e5:83:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:07 2025 GMT Not After : Jul 2 15:53:07 2026 GMT Subject: CN=C974056E6D6344AD3F0A8A75FDE85FB15DDB4AC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ea:dc:70:fe:63:ef:38:aa:cc:27:a6:56:35: 5f:15:ec:51:73:5b:a9:ea:d0:33:e8:2b:65:37:af: dd:64:aa:84:5b:f6:14:db:56:74:20:7a:e1:65:35: 87:79:24:4d:25:74:48:eb:08:4c:6f:66:a2:0c:6a: bd:53:be:e3:9a:e8:e9:73:32:42:19:01:43:37:81: 30:39:a5:4c:c4:dc:52:46:ea:2b:a5:3b:ee:a5:50: 3c:3f:09:68:bd:84:d1:45:60:74:65:6c:3b:9e:c0: da:93:68:e3:9a:08:5b:e1:79:60:68:29:d0:8a:23: c9:7b:45:ca:9b:d3:20:33:67:da:ad:91:0c:7c:68: b4:ae:94:3c:6b:ed:f2:47:d3:b7:56:1d:57:16:71: 93:1a:d8:d2:64:c0:17:99:e5:1c:ab:9d:d9:b7:a6: 88:25:f9:e1:36:59:d3:31:80:8b:be:1a:af:9d:aa: 9a:fb:6a:69:65:bf:01:f2:64:b4:b7:35:94:16:ea: a6:18:82:27:61:55:88:ef:e2:b8:94:58:b7:7b:8a: 13:7e:e0:4a:c0:7e:0d:cf:52:db:e6:67:33:2a:31: 19:ab:a5:cb:9c:7f:31:77:96:53:17:d4:8f:ee:e9: 23:22:5a:86:55:c9:0d:7d:2e:ea:6b:2c:6d:d7:41: 65:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:74:05:6E:6D:63:44:AD:3F:0A:8A:75:FD:E8:5F:B1:5D:DB:4A:C3 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214323.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7900::-2a0a:6044:7902:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 84:f4:11:88:54:e2:23:d9:12:5c:17:5b:a0:34:98:0e:a2:53: bb:42:05:20:ab:1e:73:3d:0e:40:37:42:39:ab:14:ac:1b:ed: c3:a6:28:93:b7:cb:7c:9e:58:cd:b2:2f:de:19:1f:0b:34:41: df:e2:37:01:ce:8c:81:33:fb:ef:60:58:43:11:38:a6:2f:09: b5:61:a6:56:b0:f9:26:c6:49:09:52:66:92:11:f2:86:0f:d3: 10:e5:a8:92:c1:b3:20:8f:18:44:cf:3d:00:37:5a:86:53:6d: 72:f8:99:bc:87:2c:b9:43:5c:bd:b4:8a:b8:68:75:8d:c8:39: 79:b4:c2:2d:7f:5f:06:d2:91:91:51:5c:33:fe:9f:db:3a:a0: 46:51:74:7d:bf:a9:8f:3b:d5:fc:fb:62:68:d1:c8:cc:7e:1c: d8:97:e1:c0:20:d4:1e:93:62:a3:d7:df:d3:f6:07:27:ed:54: e6:41:f5:cc:fa:10:de:25:02:bd:62:9c:ed:1a:43:32:7f:d1: 69:4b:4e:80:df:81:31:0c:f7:ac:db:59:35:2d:c6:0a:3d:34: d6:b4:bd:29:f1:84:d8:42:84:2e:aa:28:a2:8c:56:b3:98:e2: 0a:91:c3:33:4c:14:3f:6f:95:db:a8:6a:62:5b:91:28:5d:bb: 21:c9:96:0a -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUDQzQNWTmecjDrZhx4/UW7/jlg0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MDdaFw0yNjA3MDIxNTUzMDdaMDMxMTAvBgNV BAMTKEM5NzQwNTZFNkQ2MzQ0QUQzRjBBOEE3NUZERTg1RkIxNUREQjRBQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx6txw/mPvOKrMJ6ZWNV8V7FFz W6nq0DPoK2U3r91kqoRb9hTbVnQgeuFlNYd5JE0ldEjrCExvZqIMar1TvuOa6Olz MkIZAUM3gTA5pUzE3FJG6iulO+6lUDw/CWi9hNFFYHRlbDuewNqTaOOaCFvheWBo KdCKI8l7Rcqb0yAzZ9qtkQx8aLSulDxr7fJH07dWHVcWcZMa2NJkwBeZ5Ryrndm3 pogl+eE2WdMxgIu+Gq+dqpr7amllvwHyZLS3NZQW6qYYgidhVYjv4riUWLd7ihN+ 4ErAfg3PUtvmZzMqMRmrpcucfzF3llMX1I/u6SMiWoZVyQ19LuprLG3XQWXtAgMB AAGjggHpMIIB5TAdBgNVHQ4EFgQUyXQFbm1jRK0/Cop1/ehfsV3bSsMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQzMjMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwLAYIKwYBBQUHAQcBAf8EHTAbMBkEAgACMBMwEQMG ACoKYER5AwcAKgpgRHkCMA0GCSqGSIb3DQEBCwUAA4IBAQCE9BGIVOIj2RJcF1ug NJgOolO7QgUgqx5zPQ5AN0I5qxSsG+3DpiiTt8t8nljNsi/eGR8LNEHf4jcBzoyB M/vvYFhDETimLwm1YaZWsPkmxkkJUmaSEfKGD9MQ5aiSwbMgjxhEzz0AN1qGU21y +Jm8hyy5Q1y9tIq4aHWNyDl5tMItf18G0pGRUVwz/p/bOqBGUXR9v6mPO9X8+2Jo 0cjMfhzYl+HAINQek2Kj19/T9gcn7VTmQfXM+hDeJQK9YpztGkMyf9FpS06A34Ex DPes21k1LcYKPTTWtL0p8YTYQoQuqiiijFazmOIKkcMzTBQ/b5XbqGpiW5EoXbsh yZYK -----END CERTIFICATE-----Generated at Sat Jul 5 01:55:08 2025 by rpki-client