$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215214.roa File: AS215214.roa (raw, json) Hash identifier: GmQ3OCI8tGZTUTMz4uYyEVv15J4oFPm+4V27wNftVBE= Subject key identifier: 50:D4:1B:72:B2:B7:C6:DE:87:07:2D:EA:37:DB:34:4B:D2:0B:6B:23 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 2CCD9452467605890438B9518522A1F4082D2994 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215214.roa Signing time: Thu 03 Jul 2025 15:53:08 +0000 ROA not before: Thu 03 Jul 2025 15:48:08 +0000 ROA not after: Thu 02 Jul 2026 15:53:08 +0000 asID: 215214 IP address blocks: 2a09:54c6:f000::/36 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 21:20:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:cd:94:52:46:76:05:89:04:38:b9:51:85:22:a1:f4:08:2d:29:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:08 2025 GMT Not After : Jul 2 15:53:08 2026 GMT Subject: CN=50D41B72B2B7C6DE87072DEA37DB344BD20B6B23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ac:3c:8a:1c:32:20:ea:da:d7:10:ba:8c:ea: bc:40:05:f3:fb:b6:0a:d5:60:ee:6b:d8:80:c1:cf: 1b:aa:b8:78:9f:e2:ed:94:3a:d9:c6:e8:89:7f:5d: b6:a7:49:f9:a3:e6:35:f9:56:5f:7a:a8:96:e9:17: e3:8c:47:2a:d9:64:c8:4e:7b:17:13:92:36:f9:dd: e6:64:a4:f5:04:6b:4f:6a:68:5a:c4:96:50:d2:dd: 35:b4:37:3e:03:ee:78:e0:f7:0c:18:b2:db:8c:37: c5:f6:88:e5:97:f6:18:2f:c3:15:5e:6e:96:46:f3: a1:62:6d:35:2f:1a:c7:5d:78:69:6c:3a:0b:05:29: 42:8d:8d:6d:95:c2:8a:1d:a4:7b:70:81:27:42:24: 5c:77:7a:1d:12:72:3b:3c:7b:a0:e8:d6:c9:d3:d2: 75:e9:01:20:de:a0:49:08:c8:ed:19:4d:90:59:47: 08:18:fa:1f:61:f9:1c:2d:17:a8:e2:98:ad:4b:d6: 49:79:53:36:c3:f9:d2:0c:6c:2a:80:76:6d:02:83: d6:f0:65:4b:59:41:f7:0a:71:eb:a0:91:89:85:63: e2:36:34:b4:da:f3:a1:d3:60:d8:27:3c:37:62:4d: 14:ee:77:9a:f3:f8:dd:d4:67:5d:bb:68:3a:01:ac: 40:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D4:1B:72:B2:B7:C6:DE:87:07:2D:EA:37:DB:34:4B:D2:0B:6B:23 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215214.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:f000::/36 Signature Algorithm: sha256WithRSAEncryption 8a:c6:59:0d:4b:fa:fe:ff:29:74:9a:2f:39:ee:02:a3:91:0e: 53:4b:9c:06:26:fc:ea:fe:e2:06:ca:12:bf:0e:9e:dd:4b:a4: 50:47:b8:ec:f5:fb:28:a2:94:76:7b:60:e4:7f:fd:c6:0c:20: 88:96:13:3e:e1:2f:58:66:f5:53:0f:ad:a6:d9:d5:a3:0c:f7: ed:0d:c8:99:7d:30:d4:f5:29:ca:62:6c:25:71:4b:30:8f:12: 49:a1:82:99:6f:20:de:b1:41:a7:78:2b:c5:24:d2:17:06:24: 6d:c3:a8:a4:69:a5:9d:8f:0a:2d:94:74:e1:28:10:9b:0c:13: 13:a5:46:4e:c7:97:de:4e:22:c0:90:f7:90:9d:31:f0:22:bc: b0:80:38:53:54:87:47:69:46:f0:c4:2c:d9:d1:83:13:1c:47: 4c:9e:f6:03:83:0d:ce:4f:22:2d:e9:92:d0:c5:d9:24:db:16: 23:5f:67:77:b3:d7:d1:98:74:b4:98:4b:8c:09:a9:bd:96:39: fd:67:9f:a0:5a:41:03:8c:2d:6f:47:99:22:35:41:e5:d2:65: 0e:cc:44:9b:6e:89:fa:0d:1c:8a:5f:6a:2a:6d:5c:27:0d:31: af:ce:3d:1b:33:b4:35:1a:7a:5d:48:0f:4c:57:64:f3:84:73: b4:4a:41:e4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIULM2UUkZ2BYkEOLlRhSKh9AgtKZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MDhaFw0yNjA3MDIxNTUzMDhaMDMxMTAvBgNV BAMTKDUwRDQxQjcyQjJCN0M2REU4NzA3MkRFQTM3REIzNDRCRDIwQjZCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyrDyKHDIg6trXELqM6rxABfP7 tgrVYO5r2IDBzxuquHif4u2UOtnG6Il/XbanSfmj5jX5Vl96qJbpF+OMRyrZZMhO excTkjb53eZkpPUEa09qaFrEllDS3TW0Nz4D7njg9wwYstuMN8X2iOWX9hgvwxVe bpZG86FibTUvGsddeGlsOgsFKUKNjW2VwoodpHtwgSdCJFx3eh0Scjs8e6Do1snT 0nXpASDeoEkIyO0ZTZBZRwgY+h9h+RwtF6jimK1L1kl5UzbD+dIMbCqAdm0Cg9bw ZUtZQfcKceugkYmFY+I2NLTa86HTYNgnPDdiTRTud5rz+N3UZ127aDoBrECVAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQUUNQbcrK3xt6HBy3qN9s0S9ILayMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTUyMTQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQq CVTG8DANBgkqhkiG9w0BAQsFAAOCAQEAisZZDUv6/v8pdJovOe4Co5EOU0ucBib8 6v7iBsoSvw6e3UukUEe47PX7KKKUdntg5H/9xgwgiJYTPuEvWGb1Uw+tptnVowz3 7Q3ImX0w1PUpymJsJXFLMI8SSaGCmW8g3rFBp3grxSTSFwYkbcOopGmlnY8KLZR0 4SgQmwwTE6VGTseX3k4iwJD3kJ0x8CK8sIA4U1SHR2lG8MQs2dGDExxHTJ72A4MN zk8iLemS0MXZJNsWI19nd7PX0Zh0tJhLjAmpvZY5/WefoFpBA4wtb0eZIjVB5dJl DsxEm26J+g0cil9qKm1cJw0xr849GzO0NRp6XUgPTFdk84RztEpB5A== -----END CERTIFICATE-----Generated at Sat Jul 5 05:07:11 2025 by rpki-client