$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS219412.roa File: AS219412.roa (raw, json) Hash identifier: EilVRqfhyyTd9sA/s5U+huXKzMflfbr5arsEqrpg/ns= Subject key identifier: 81:0D:41:CC:60:80:C4:2C:2C:47:49:5A:03:C3:DC:09:79:8D:91:A3 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 4A59233D93264CC5C0B3F9EAAC5BD9516462A392 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS219412.roa Signing time: Sat 27 Jun 2026 15:34:16 +0000 ROA not before: Sat 27 Jun 2026 15:29:16 +0000 ROA not after: Sat 26 Jun 2027 15:34:16 +0000 asID: 219412 IP address blocks: 2a05:dfc3:f900::/40 maxlen: 48 2a0f:6280:3000::/36 maxlen: 48 2a0f:6284:52::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Jun 2026 23:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:59:23:3d:93:26:4c:c5:c0:b3:f9:ea:ac:5b:d9:51:64:62:a3:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jun 27 15:29:16 2026 GMT Not After : Jun 26 15:34:16 2027 GMT Subject: CN=810D41CC6080C42C2C47495A03C3DC09798D91A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4f:78:ea:82:72:9a:a8:9d:69:80:3e:5c:29: da:17:86:af:6f:3f:fc:9b:5e:32:d2:b6:c5:7c:4d: b8:fb:14:a4:52:79:e4:03:cc:69:e8:a8:5f:41:28: 4b:83:34:41:96:37:a8:fb:48:e5:7c:81:45:14:72: 36:ee:5b:31:0f:dd:74:a6:85:7e:5c:1c:e5:17:3e: 97:ba:a0:8a:00:d6:b6:92:31:41:4c:6e:fb:39:49: f3:c0:e4:20:08:db:10:a0:c4:74:84:44:3b:51:52: 02:b9:f5:1e:d1:c4:a4:75:5d:b4:8e:fb:26:f5:ee: 94:04:16:34:10:72:28:fa:1d:2f:f0:dc:32:35:47: 8a:de:b9:4e:ce:6b:8c:63:fe:19:1c:a9:a2:04:f1: 00:e5:27:51:82:2a:ac:89:b9:8c:7f:d5:e4:2e:52: b6:12:ff:c8:78:0f:ee:9d:3c:da:f0:ec:68:1a:da: f8:44:bb:fa:09:02:68:48:31:25:47:0f:fe:34:2a: 36:07:2d:5c:dc:08:65:b3:f6:21:3e:26:06:05:65: 17:b7:0c:4d:ee:4a:df:56:52:d1:8d:17:c0:38:c8: d4:b0:fa:e7:54:7c:35:36:69:22:e9:44:1a:b5:c9: 85:73:28:fc:55:fc:7f:5f:e1:8e:94:f9:4b:43:d6: 9a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:0D:41:CC:60:80:C4:2C:2C:47:49:5A:03:C3:DC:09:79:8D:91:A3 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS219412.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f900::/40 2a0f:6280:3000::/36 2a0f:6284:52::/48 Signature Algorithm: sha256WithRSAEncryption 0c:68:a0:17:93:91:fb:9e:b3:39:9e:ba:f5:f0:ac:c1:8b:0d: 87:a7:cb:d0:84:3e:38:7c:78:46:d6:e3:06:f2:64:17:f8:3d: 38:14:9b:b4:70:49:cc:88:7d:fa:53:57:7c:43:02:49:a5:8f: a7:96:8c:2f:1e:d7:35:d4:c7:73:9d:c2:04:eb:27:2a:42:0d: 04:97:c5:49:4d:0e:e7:a3:30:6c:40:b4:a9:f6:d8:af:ba:eb: 06:75:59:06:7a:11:72:1b:f4:92:e3:02:81:b2:4f:66:ab:55: 0b:e6:fe:75:d7:19:49:bd:5c:60:db:fe:ad:90:e5:7e:c6:f0: 4a:1e:fb:fb:ce:25:b2:ee:3b:e3:02:38:bc:3a:fd:64:f4:4b: 00:5c:e2:e9:24:c4:78:f1:79:76:2d:74:48:ae:6e:cd:16:6e: 2e:63:86:79:40:45:82:ae:2e:da:a1:84:94:35:cc:92:0f:77: ac:ec:6b:c1:f6:23:04:5c:11:47:50:5e:de:c9:e5:56:81:ad: 2d:20:7c:53:67:a1:bf:bb:e5:4f:29:3b:8b:cc:48:20:d8:aa: 38:2f:3f:00:ea:ca:0b:56:1a:58:69:6e:e6:11:6a:27:7d:1b: cc:24:10:08:cc:a6:db:d2:77:2a:f3:cf:58:a5:e3:a1:08:30: 47:99:e1:de -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUSlkjPZMmTMXAs/nqrFvZUWRio5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA2MjcxNTI5MTZaFw0yNzA2MjYxNTM0MTZaMDMxMTAvBgNV BAMTKDgxMEQ0MUNDNjA4MEM0MkMyQzQ3NDk1QTAzQzNEQzA5Nzk4RDkxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9T3jqgnKaqJ1pgD5cKdoXhq9v P/ybXjLStsV8Tbj7FKRSeeQDzGnoqF9BKEuDNEGWN6j7SOV8gUUUcjbuWzEP3XSm hX5cHOUXPpe6oIoA1raSMUFMbvs5SfPA5CAI2xCgxHSERDtRUgK59R7RxKR1XbSO +yb17pQEFjQQcij6HS/w3DI1R4reuU7Oa4xj/hkcqaIE8QDlJ1GCKqyJuYx/1eQu UrYS/8h4D+6dPNrw7Gga2vhEu/oJAmhIMSVHD/40KjYHLVzcCGWz9iE+JgYFZRe3 DE3uSt9WUtGNF8A4yNSw+udUfDU2aSLpRBq1yYVzKPxV/H9f4Y6U+UtD1prHAgMB AAGjggHvMIIB6zAdBgNVHQ4EFgQUgQ1BzGCAxCwsR0laA8PcCXmNkaMwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTk0MTIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMgYIKwYBBQUHAQcBAf8EIzAhMB8EAgACMBkDBgAq Bd/D+QMGBCoPYoAwAwcAKg9ihABSMA0GCSqGSIb3DQEBCwUAA4IBAQAMaKAXk5H7 nrM5nrr18KzBiw2Hp8vQhD44fHhG1uMG8mQX+D04FJu0cEnMiH36U1d8QwJJpY+n lowvHtc11MdzncIE6ycqQg0El8VJTQ7nozBsQLSp9tivuusGdVkGehFyG/SS4wKB sk9mq1UL5v511xlJvVxg2/6tkOV+xvBKHvv7ziWy7jvjAji8Ov1k9EsAXOLpJMR4 8Xl2LXRIrm7NFm4uY4Z5QEWCri7aoYSUNcySD3es7GvB9iMEXBFHUF7eyeVWga0t IHxTZ6G/u+VPKTuLzEgg2Ko4Lz8A6soLVhpYaW7mEWonfRvMJBAIzKbb0ncq889Y peOhCDBHmeHe -----END CERTIFICATE-----Generated at Sun Jun 28 08:26:09 2026 by rpki-client