This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: ETABMxZ2o+o5RaOT9BQ82zc/X7q1CO2B8VX0hTu6+Pg= Subject key identifier: 63:BB:BE:B5:A2:07:E3:68:18:A8:51:6F:E8:8A:24:0A:7D:E3:B5:6E Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 35BA004B984CEE81926DE8315BE99BE60B1E8827 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS47272.roa Signing time: Fri 09 Jan 2026 10:49:05 +0000 ROA not before: Fri 09 Jan 2026 10:44:05 +0000 ROA not after: Fri 08 Jan 2027 10:49:05 +0000 asID: 47272 IP address blocks: 199.47.240.0/24 maxlen: 32 2a05:dfc3:f500::/40 maxlen: 48 2a05:dfc3:fd24::/48 maxlen: 48 2a06:1281:40::/44 maxlen: 44 2a06:1281:1000::/36 maxlen: 36 2a09:54c6::/36 maxlen: 36 2a0f:6280:a::/48 maxlen: 128 2a0f:6280:10::/48 maxlen: 128 2a0f:6280:11::/48 maxlen: 128 2a0f:6280:12::/48 maxlen: 128 2a0f:6280:13::/48 maxlen: 128 2a0f:6280:14::/48 maxlen: 48 2a0f:6280:15::/48 maxlen: 128 2a0f:6280:16::/48 maxlen: 128 2a0f:6280:17::/48 maxlen: 128 2a0f:6280:18::/48 maxlen: 128 2a0f:6280:1a::/48 maxlen: 128 2a0f:6280:1b::/48 maxlen: 128 2a0f:6280:1c::/48 maxlen: 48 2a0f:6280:1d::/48 maxlen: 128 2a0f:6280:1f::/48 maxlen: 128 2a0f:6283:1130::/44 maxlen: 44 2a0f:6283:1140::/44 maxlen: 44 2a0f:6283:1150::/44 maxlen: 44 2a0f:6283:6000::/36 maxlen: 36 2a0f:6284:20::/44 maxlen: 44 2a0f:6284:4700::/40 maxlen: 40 2a0f:6284:9000::/36 maxlen: 36 2a0f:6284:d000::/36 maxlen: 36 2a0f:6287:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 06:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ba:00:4b:98:4c:ee:81:92:6d:e8:31:5b:e9:9b:e6:0b:1e:88:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jan 9 10:44:05 2026 GMT Not After : Jan 8 10:49:05 2027 GMT Subject: CN=63BBBEB5A207E36818A8516FE88A240A7DE3B56E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e9:03:c1:69:fe:eb:f4:d7:28:00:86:22:a7: 22:74:5e:ff:64:f2:61:28:db:af:e1:a8:18:c9:7d: 05:d5:60:93:4a:0a:19:1a:d1:a5:5d:39:61:ca:b4: 4a:1a:bc:7b:18:b5:64:18:7b:57:3c:df:b8:73:bc: 3e:27:a9:e5:dd:ce:a1:13:1a:7f:ff:bb:42:dd:6f: 44:88:0e:38:50:60:71:1a:d1:60:e2:84:84:07:85: 4a:1b:ec:ac:88:ad:8d:c9:b3:cb:b3:67:3c:46:be: 37:ea:68:16:d9:b1:53:0c:d4:b7:8e:e3:69:d9:7f: 52:ba:9c:5b:14:44:a2:b0:00:51:bf:24:a8:d2:9f: 9d:dc:c8:b1:41:ab:21:61:a9:07:81:17:12:ad:76: 27:18:a7:56:df:f5:52:bc:66:4b:ee:83:9f:fb:fa: dd:f5:79:8e:63:a7:68:05:ab:a0:57:9c:1b:d0:74: 55:b4:30:f4:75:3e:39:a8:31:05:73:8f:aa:b8:5d: 3c:a2:61:79:4b:64:43:35:7c:43:0b:b8:67:d8:17: cf:f9:f0:05:5b:88:74:90:3a:24:db:ac:d0:cd:a6: c1:62:9b:8d:e9:20:2a:1d:cd:04:41:28:ab:a0:8f: 31:6b:77:74:4d:ef:b3:e3:0c:f7:f0:d5:3d:6e:31: 6a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:BB:BE:B5:A2:07:E3:68:18:A8:51:6F:E8:8A:24:0A:7D:E3:B5:6E X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.47.240.0/24 IPv6: 2a05:dfc3:f500::/40 2a05:dfc3:fd24::/48 2a06:1281:40::/44 2a06:1281:1000::/36 2a09:54c6::/36 2a0f:6280:a::/48 2a0f:6280:10::-2a0f:6280:18:ffff:ffff:ffff:ffff:ffff 2a0f:6280:1a::-2a0f:6280:1d:ffff:ffff:ffff:ffff:ffff 2a0f:6280:1f::/48 2a0f:6283:1130::-2a0f:6283:115f:ffff:ffff:ffff:ffff:ffff 2a0f:6283:6000::/36 2a0f:6284:20::/44 2a0f:6284:4700::/40 2a0f:6284:9000::/36 2a0f:6284:d000::/36 2a0f:6287:1000::/36 Signature Algorithm: sha256WithRSAEncryption 08:01:d9:3f:2f:89:ad:4b:d5:c9:3c:e0:81:bb:74:ad:39:d4: 2d:3e:0c:84:01:fb:7b:95:a4:2d:96:83:e0:cc:9b:0c:2d:7d: 66:1b:ee:b5:1b:0a:7c:8a:57:63:80:b3:2b:cb:0a:63:36:d0: b1:20:02:5e:71:37:be:e3:07:df:e6:64:3b:aa:9a:08:41:12: e6:16:65:3d:a8:0d:45:95:7e:da:d2:92:31:98:60:d0:7e:4a: d2:49:af:0b:54:3d:9f:84:00:d8:77:6d:a3:36:39:a9:2c:9f: da:6e:57:ef:2c:bd:d0:98:98:f2:16:22:57:7c:32:b3:5e:00: ce:13:4c:bb:1e:be:8f:49:be:6b:ae:8c:29:d3:0d:ee:d0:97: ed:d7:53:79:e8:91:bf:d1:f2:30:01:57:b6:65:a3:58:4c:25: 2c:e9:99:3e:04:c2:bc:18:a6:ca:5f:c3:5f:6d:17:81:99:0b: d8:69:f1:55:60:d7:1a:1d:54:57:08:64:69:88:aa:c4:40:6d: 2b:a4:7e:ce:b0:48:47:32:1a:61:5d:59:f7:63:30:a7:f0:0b: bd:61:c4:6c:d0:17:29:51:a9:c5:7b:53:57:1b:c0:ac:0c:44: 77:28:ef:e2:ab:6d:fc:3c:bf:6d:4c:19:6b:3b:cf:4b:ca:15: 07:e4:ca:2a -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIUNboAS5hM7oGSbegxW+mb5gseiCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAxMDkxMDQ0MDVaFw0yNzAxMDgxMDQ5MDVaMDMxMTAvBgNV BAMTKDYzQkJCRUI1QTIwN0UzNjgxOEE4NTE2RkU4OEEyNDBBN0RFM0I1NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq6QPBaf7r9NcoAIYipyJ0Xv9k 8mEo26/hqBjJfQXVYJNKChka0aVdOWHKtEoavHsYtWQYe1c837hzvD4nqeXdzqET Gn//u0Ldb0SIDjhQYHEa0WDihIQHhUob7KyIrY3Js8uzZzxGvjfqaBbZsVMM1LeO 42nZf1K6nFsURKKwAFG/JKjSn53cyLFBqyFhqQeBFxKtdicYp1bf9VK8Zkvug5/7 +t31eY5jp2gFq6BXnBvQdFW0MPR1PjmoMQVzj6q4XTyiYXlLZEM1fEMLuGfYF8/5 8AVbiHSQOiTbrNDNpsFim43pICodzQRBKKugjzFrd3RN77PjDPfw1T1uMWq5AgMB AAGjggKRMIICjTAdBgNVHQ4EFgQUY7u+taIH42gYqFFv6IokCn3jtW4wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVM0NzI3Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjCB1AYIKwYBBQUHAQcBAf8EgcQwgcEwDAQCAAEwBgME AMcv8DCBsAQCAAIwgakDBgAqBd/D9QMHACoF38P9JAMHBCoGEoEAQAMGBCoGEoEQ AwYEKglUxgADBwAqD2KAAAowEgMHBCoPYoAAEAMHACoPYoAAGDASAwcBKg9igAAa AwcBKg9igAAcAwcAKg9igAAfMBIDBwQqD2KDETADBwUqD2KDEUADBgQqD2KDYAMH BCoPYoQAIAMGACoPYoRHAwYEKg9ihJADBgQqD2KE0AMGBCoPYocQMA0GCSqGSIb3 DQEBCwUAA4IBAQAIAdk/L4mtS9XJPOCBu3StOdQtPgyEAft7laQtloPgzJsMLX1m G+61Gwp8ildjgLMrywpjNtCxIAJecTe+4wff5mQ7qpoIQRLmFmU9qA1FlX7a0pIx mGDQfkrSSa8LVD2fhADYd22jNjmpLJ/ablfvLL3QmJjyFiJXfDKzXgDOE0y7Hr6P Sb5rrowp0w3u0Jft11N56JG/0fIwAVe2ZaNYTCUs6Zk+BMK8GKbKX8NfbReBmQvY afFVYNcaHVRXCGRpiKrEQG0rpH7OsEhHMhphXVn3YzCn8Au9YcRs0BcpUanFe1NX G8CsDER3KO/iq238PL9tTBlrO89LyhUH5Moq -----END CERTIFICATE-----Generated at Sat Jan 10 14:24:13 2026 by rpki-client