$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS399646.roa File: AS399646.roa (raw, json) Hash identifier: lHx0yBqShdIbJFV5wwJa125lgZXeltWSVnPh2pC2S4s= Subject key identifier: EE:32:FC:A9:0B:AC:00:18:4A:F4:D8:46:17:0F:72:87:E9:6E:7A:A8 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 53E0A6B1B0963DFA9908BCFD013E28D51ED7F703 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS399646.roa Signing time: Tue 03 Feb 2026 10:36:01 +0000 ROA not before: Tue 03 Feb 2026 10:31:01 +0000 ROA not after: Tue 02 Feb 2027 10:36:01 +0000 asID: 399646 IP address blocks: 2a0f:6284:8000::/40 maxlen: 48 2a0f:6284:8000::/46 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 19:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e0:a6:b1:b0:96:3d:fa:99:08:bc:fd:01:3e:28:d5:1e:d7:f7:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Feb 3 10:31:01 2026 GMT Not After : Feb 2 10:36:01 2027 GMT Subject: CN=EE32FCA90BAC00184AF4D846170F7287E96E7AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:75:8a:85:2d:65:a6:ff:c0:21:26:0a:48:e8: 89:a4:44:da:00:a9:76:96:5a:2b:6c:ea:42:b0:89: 16:f9:84:e4:d0:a9:46:1d:b7:ea:bc:ba:34:18:c4: 8f:5d:1b:f7:39:c0:44:78:25:d8:a0:3a:7c:ee:8c: f5:ef:1d:e6:60:02:bf:ca:b6:32:11:83:1b:8d:6b: c6:c6:f3:1f:b4:a3:5f:bb:8b:80:6a:44:44:f2:10: 2d:30:60:18:66:a9:a0:95:ed:f5:d5:48:24:10:98: 98:08:29:7f:37:06:d5:fc:b6:7e:7a:bf:b3:57:80: b8:22:c6:dd:4f:bc:62:38:12:fc:4e:28:62:b5:0a: c1:d2:e1:ac:f2:2b:d9:22:b0:b6:18:a4:d0:a1:ff: 65:de:6b:12:7b:43:d2:94:ec:d0:f1:68:25:a8:7a: 7c:47:06:37:c7:f2:9e:70:9a:8f:3b:fe:1f:1f:a0: f8:20:e1:62:06:ac:3b:40:2d:2e:c6:de:8f:ed:49: ff:9d:b2:bd:1b:b9:19:69:08:3a:f4:00:87:f7:4b: ee:03:d9:08:90:db:55:b3:89:a7:94:fe:03:06:93: 10:56:c6:c6:fb:18:00:92:f9:bd:88:a6:e0:3d:11: d1:28:96:66:16:cf:89:39:63:32:24:06:89:a3:8c: f1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:32:FC:A9:0B:AC:00:18:4A:F4:D8:46:17:0F:72:87:E9:6E:7A:A8 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS399646.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6284:8000::/40 Signature Algorithm: sha256WithRSAEncryption 09:2a:ae:f4:86:6e:3a:e1:2e:b1:8e:39:52:e3:ab:0a:f2:d8: 62:ed:7d:85:13:dd:4c:d7:dc:07:01:4f:c0:e0:37:4f:6d:21: 09:4c:5d:e3:41:aa:f1:80:fc:28:6f:d2:57:40:99:8b:14:6e: 63:fd:ef:05:93:93:5e:d6:ab:d6:5e:5f:c2:66:93:6b:37:82: 19:98:88:14:19:99:0a:6c:6b:32:0f:9f:ed:20:66:ee:22:4b: 3d:02:46:bd:fa:a8:c7:00:ae:e7:37:96:a6:4f:53:75:29:83: 28:65:9e:ff:d8:03:f8:e9:1a:5a:20:98:75:b7:74:47:7e:9a: ac:14:16:c7:f3:74:0c:aa:86:18:e0:fc:f9:51:ce:a1:ef:94: 3f:f3:72:89:ac:f4:3b:ee:1d:a3:47:6d:32:f0:e4:5c:22:a6: 7f:d9:ad:a9:09:4d:a6:36:c2:18:f6:13:af:db:24:19:12:f0: bb:04:9d:2d:c6:41:fb:c5:ef:0a:d4:8a:46:3a:d7:a7:cd:6c: e1:cf:d9:cb:96:8e:24:bc:cf:69:a1:9a:7a:06:85:eb:53:66: d9:66:e2:79:0c:82:3d:a0:f2:e7:ca:6f:e7:e6:b1:26:6a:10: 1c:41:fc:a7:b2:09:1e:7a:7f:e5:53:b4:3c:48:3d:fe:c7:2d: 93:4e:55:7d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUU+CmsbCWPfqZCLz9AT4o1R7X9wMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAyMDMxMDMxMDFaFw0yNzAyMDIxMDM2MDFaMDMxMTAvBgNV BAMTKEVFMzJGQ0E5MEJBQzAwMTg0QUY0RDg0NjE3MEY3Mjg3RTk2RTdBQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXdYqFLWWm/8AhJgpI6ImkRNoA qXaWWits6kKwiRb5hOTQqUYdt+q8ujQYxI9dG/c5wER4JdigOnzujPXvHeZgAr/K tjIRgxuNa8bG8x+0o1+7i4BqRETyEC0wYBhmqaCV7fXVSCQQmJgIKX83BtX8tn56 v7NXgLgixt1PvGI4EvxOKGK1CsHS4azyK9kisLYYpNCh/2XeaxJ7Q9KU7NDxaCWo enxHBjfH8p5wmo87/h8foPgg4WIGrDtALS7G3o/tSf+dsr0buRlpCDr0AIf3S+4D 2QiQ21WziaeU/gMGkxBWxsb7GACS+b2IpuA9EdEolmYWz4k5YzIkBomjjPGPAgMB AAGjggHeMIIB2jAdBgNVHQ4EFgQU7jL8qQusABhK9NhGFw9yh+lueqgwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMzOTk2NDYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAq D2KEgDANBgkqhkiG9w0BAQsFAAOCAQEACSqu9IZuOuEusY45UuOrCvLYYu19hRPd TNfcBwFPwOA3T20hCUxd40Gq8YD8KG/SV0CZixRuY/3vBZOTXtar1l5fwmaTazeC GZiIFBmZCmxrMg+f7SBm7iJLPQJGvfqoxwCu5zeWpk9TdSmDKGWe/9gD+OkaWiCY dbd0R36arBQWx/N0DKqGGOD8+VHOoe+UP/Nyiaz0O+4do0dtMvDkXCKmf9mtqQlN pjbCGPYTr9skGRLwuwSdLcZB+8XvCtSKRjrXp81s4c/Zy5aOJLzPaaGaegaF61Nm 2WbieQyCPaDy58pv5+axJmoQHEH8p7IJHnp/5VO0PEg9/sctk05VfQ== -----END CERTIFICATE-----Generated at Mon Feb 23 06:29:12 2026 by rpki-client