$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS214757.roa File: AS214757.roa (raw, json) Hash identifier: 2g7CjcXcMiukis6NdJRZz4Zn7ZsLm9VCejHXxISK1ZU= Subject key identifier: A9:2E:FC:8F:BE:CC:65:F9:FF:30:66:54:4E:B7:ED:FC:6E:CE:E3:E6 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 7EA2B81978163B3C3C00C0FCC4C0233C646761AB Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS214757.roa Signing time: Thu 03 Jul 2025 15:52:58 +0000 ROA not before: Thu 03 Jul 2025 15:47:58 +0000 ROA not after: Thu 02 Jul 2026 15:52:58 +0000 asID: 214757 IP address blocks: 2a05:dfc3:f800::/40 maxlen: 48 2a0a:6044:a100::/40 maxlen: 48 2a0a:6044:ac70::/44 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:a2:b8:19:78:16:3b:3c:3c:00:c0:fc:c4:c0:23:3c:64:67:61:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:47:58 2025 GMT Not After : Jul 2 15:52:58 2026 GMT Subject: CN=A92EFC8FBECC65F9FF3066544EB7EDFC6ECEE3E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:12:3a:ec:27:75:77:33:36:4c:a1:73:9c:38: 93:da:cd:16:2a:82:69:82:73:44:eb:29:32:9b:76: 53:74:ca:f6:82:53:e4:c2:50:98:fc:56:1a:67:b7: a4:23:40:29:15:50:83:c4:59:5b:19:70:17:49:dd: 23:44:3f:53:c9:54:b3:60:21:0b:7a:37:2e:91:33: b6:78:f5:e1:74:80:6a:2e:ac:fd:64:c6:ab:c5:af: 1f:0b:df:f0:e0:a9:eb:40:3a:46:49:a5:15:c3:a0: 3e:8a:d3:f4:f4:30:50:fd:3d:ed:41:2c:7f:92:b4: 37:5b:ad:8a:a3:91:22:c0:b3:45:d5:5a:ef:a2:5e: 23:95:31:76:d0:74:46:ef:c3:7f:c2:e1:46:cd:59: c0:b9:2e:d5:dd:ba:a9:5b:f2:b2:11:13:a1:97:55: b1:3c:d6:86:91:39:e9:d5:9b:d1:de:70:31:b2:05: 9d:6c:60:3d:a1:3b:f8:d0:6f:4a:70:f0:83:62:2e: d1:4f:62:4a:cf:2e:27:f1:ce:9f:a2:85:28:05:5f: a2:97:88:0e:c8:03:84:b7:cd:68:8a:f6:d7:69:5c: 35:83:de:f9:9e:e8:cf:21:11:7c:f1:37:6a:ed:f6: 2f:c4:d2:ab:b1:96:6d:d3:52:f4:16:bd:a2:f0:5c: 27:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:2E:FC:8F:BE:CC:65:F9:FF:30:66:54:4E:B7:ED:FC:6E:CE:E3:E6 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS214757.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f800::/40 2a0a:6044:a100::/40 2a0a:6044:ac70::/44 Signature Algorithm: sha256WithRSAEncryption 60:4a:cf:4e:da:e7:6c:14:8d:c1:96:5c:e8:31:f3:e5:a2:31: 72:4c:20:b2:32:43:c7:b7:15:34:51:82:d4:8f:37:38:13:ed: d3:d2:58:e1:bc:12:aa:2b:07:80:06:25:26:5b:cd:5a:10:e2: b1:86:c7:e6:66:02:53:8d:5f:63:b3:3a:09:f5:22:c3:d6:fc: 6b:4b:61:54:fb:06:33:5f:f9:dd:7e:ea:c8:ac:bd:01:a2:79: 48:80:99:58:83:1e:ab:37:f5:cf:6e:dd:ee:fd:20:c5:9c:1c: 0b:6f:75:8c:06:0f:a6:98:7f:22:87:47:de:a3:b4:85:b1:0d: 2e:4b:00:84:df:ec:57:4f:da:52:5e:b5:d7:9f:6d:2b:6e:47: 55:ed:e1:cf:93:c9:29:b6:6c:8d:95:8b:96:2a:a5:86:13:e0: f8:e0:79:bf:14:db:a8:7a:69:ae:be:5e:61:2f:07:c1:3e:85: fb:ad:66:ba:48:ba:27:f1:71:30:09:55:b0:8e:a7:17:ca:b0: e0:14:63:c1:2a:f5:c7:27:91:0d:b4:1c:4b:7c:07:c0:dc:65: 39:9a:17:10:76:83:f5:46:8e:2d:82:31:fa:38:6c:16:70:41: 89:7f:ba:2a:ce:33:17:c2:d6:83:12:9b:84:a6:fe:54:ac:14: b5:24:73:20 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUfqK4GXgWOzw8AMD8xMAjPGRnYaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ3NThaFw0yNjA3MDIxNTUyNThaMDMxMTAvBgNV BAMTKEE5MkVGQzhGQkVDQzY1RjlGRjMwNjY1NDRFQjdFREZDNkVDRUUzRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0EjrsJ3V3MzZMoXOcOJPazRYq gmmCc0TrKTKbdlN0yvaCU+TCUJj8Vhpnt6QjQCkVUIPEWVsZcBdJ3SNEP1PJVLNg IQt6Ny6RM7Z49eF0gGourP1kxqvFrx8L3/DgqetAOkZJpRXDoD6K0/T0MFD9Pe1B LH+StDdbrYqjkSLAs0XVWu+iXiOVMXbQdEbvw3/C4UbNWcC5LtXduqlb8rIRE6GX VbE81oaROenVm9HecDGyBZ1sYD2hO/jQb0pw8INiLtFPYkrPLifxzp+ihSgFX6KX iA7IA4S3zWiK9tdpXDWD3vme6M8hEXzxN2rt9i/E0quxlm3TUvQWvaLwXCfrAgMB AAGjggHvMIIB6zAdBgNVHQ4EFgQUqS78j77MZfn/MGZUTrft/G7O4+YwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTQ3NTcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMgYIKwYBBQUHAQcBAf8EIzAhMB8EAgACMBkDBgAq Bd/D+AMGACoKYEShAwcEKgpgRKxwMA0GCSqGSIb3DQEBCwUAA4IBAQBgSs9O2uds FI3BllzoMfPlojFyTCCyMkPHtxU0UYLUjzc4E+3T0ljhvBKqKweABiUmW81aEOKx hsfmZgJTjV9jszoJ9SLD1vxrS2FU+wYzX/ndfurIrL0BonlIgJlYgx6rN/XPbt3u /SDFnBwLb3WMBg+mmH8ih0feo7SFsQ0uSwCE3+xXT9pSXrXXn20rbkdV7eHPk8kp tmyNlYuWKqWGE+D44Hm/FNuoemmuvl5hLwfBPoX7rWa6SLon8XEwCVWwjqcXyrDg FGPBKvXHJ5ENtBxLfAfA3GU5mhcQdoP1Ro4tgjH6OGwWcEGJf7oqzjMXwtaDEpuE pv5UrBS1JHMg -----END CERTIFICATE-----Generated at Sat Jul 5 02:19:44 2025 by rpki-client