This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS53667.roa File: AS53667.roa (raw, json) Hash identifier: sn9j6PYPPFHdqUtGdAJW7HW8CEVhuPqf9M9U1P44SEk= Subject key identifier: 23:EB:B5:5C:D5:A9:DE:A2:39:D9:3F:85:65:36:0C:3E:A8:AF:6A:65 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 7FFD8689A32B974F47E2E029DDCCD1611EB221E0 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS53667.roa Signing time: Wed 07 Jan 2026 15:05:59 +0000 ROA not before: Wed 07 Jan 2026 15:00:59 +0000 ROA not after: Wed 06 Jan 2027 15:05:59 +0000 asID: 53667 IP address blocks: 2a09:54c6:9000::/36 maxlen: 48 2a0f:6284:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 06:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:fd:86:89:a3:2b:97:4f:47:e2:e0:29:dd:cc:d1:61:1e:b2:21:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jan 7 15:00:59 2026 GMT Not After : Jan 6 15:05:59 2027 GMT Subject: CN=23EBB55CD5A9DEA239D93F8565360C3EA8AF6A65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:0f:c8:a2:af:24:47:50:b7:08:d6:70:6e: 7f:85:d0:a0:e3:a7:ab:e0:78:8f:fe:55:b1:d4:40: 46:d0:93:1f:b4:4a:18:79:92:d1:d7:b7:eb:f9:43: bf:c8:8b:01:0e:fa:e2:1a:fa:5a:61:b2:a9:a3:49: 86:59:4c:87:cb:25:76:f5:2b:10:c4:0d:32:39:84: 8f:c8:25:bf:bf:9e:65:1c:de:6b:cc:5f:6c:a8:5c: 56:41:00:57:a4:ff:7d:61:a0:14:7e:de:1c:03:3e: 2d:b0:89:15:fa:b2:68:fe:0e:e7:2d:ae:0c:38:d4: 83:9a:43:aa:78:d2:ff:92:5f:64:4f:8e:20:0e:cb: fb:e0:22:18:a6:d4:18:6a:25:ec:93:7d:28:43:09: 31:a3:75:43:80:77:b1:7e:af:d2:c1:d5:19:dc:94: fc:60:74:6f:c0:0f:2f:30:81:5e:8e:28:9c:89:b8: 74:68:cc:4a:b5:58:d1:fc:8a:4f:13:7a:74:6c:2f: f5:44:68:2c:dd:bb:87:b2:83:2f:7c:e1:e0:f5:cb: 16:af:78:19:42:dc:28:b7:bd:a8:fc:38:b6:95:66: 3f:d3:1b:af:f2:51:0f:ae:9a:09:af:6c:f1:e9:5c: f2:64:26:32:89:2b:79:4d:e9:8b:55:50:ea:50:d0: cd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:EB:B5:5C:D5:A9:DE:A2:39:D9:3F:85:65:36:0C:3E:A8:AF:6A:65 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS53667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:9000::/36 2a0f:6284:8000::/40 Signature Algorithm: sha256WithRSAEncryption 4a:59:03:2a:c1:3e:26:6d:4e:74:34:70:83:02:9d:fc:62:7c: 1f:43:06:5e:f7:92:91:c7:b7:20:e2:fb:17:4a:35:e4:e0:59: 3a:47:20:a6:2a:1f:6c:43:32:d4:bf:89:12:1b:27:c9:21:7b: 07:dc:55:b0:ec:bd:52:dc:4b:c4:d9:c4:18:b9:cf:18:33:b6: e4:f6:f9:fe:fa:81:ed:ff:e2:9c:e6:27:b4:d2:fb:ea:ca:1b: d1:8f:38:2d:ce:6c:06:8a:2a:7f:4a:e5:b9:29:12:aa:cb:b2: 76:fb:37:6f:34:d4:f1:2e:08:f4:55:77:e5:95:25:05:7b:fe: 6e:8c:0e:b1:e8:af:b9:95:b4:2f:4d:77:44:86:ce:ae:77:1f: 5b:bb:f1:a8:96:7f:eb:cb:e6:ec:bb:6d:1f:df:59:fc:88:68: 93:8e:41:bb:29:76:17:9d:53:46:7a:f6:a5:e7:39:69:1d:4f: 26:52:04:35:84:b4:b7:e8:69:79:91:5b:54:32:c2:e2:31:f7: 5f:c1:58:1a:bd:6c:c6:9f:4f:34:84:5e:1e:f5:c4:67:93:b6: 53:fc:9c:c7:22:03:e2:05:6d:a6:af:b2:92:3e:66:e0:fc:1a: 70:09:6b:b2:ce:02:93:39:65:5c:16:89:20:25:6f:72:b9:50: 2d:3f:a8:45 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIUf/2GiaMrl09H4uAp3czRYR6yIeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAxMDcxNTAwNTlaFw0yNzAxMDYxNTA1NTlaMDMxMTAvBgNV BAMTKDIzRUJCNTVDRDVBOURFQTIzOUQ5M0Y4NTY1MzYwQzNFQThBRjZBNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Kw/Ioq8kR1C3CNZwbn+F0KDj p6vgeI/+VbHUQEbQkx+0Shh5ktHXt+v5Q7/IiwEO+uIa+lphsqmjSYZZTIfLJXb1 KxDEDTI5hI/IJb+/nmUc3mvMX2yoXFZBAFek/31hoBR+3hwDPi2wiRX6smj+Duct rgw41IOaQ6p40v+SX2RPjiAOy/vgIhim1BhqJeyTfShDCTGjdUOAd7F+r9LB1Rnc lPxgdG/ADy8wgV6OKJyJuHRozEq1WNH8ik8TenRsL/VEaCzdu4eygy984eD1yxav eBlC3Ci3vaj8OLaVZj/TG6/yUQ+umgmvbPHpXPJkJjKJK3lN6YtVUOpQ0M3zAgMB AAGjggHlMIIB4TAdBgNVHQ4EFgQUI+u1XNWp3qI52T+FZTYMPqivamUwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVM1MzY2Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjApBggrBgEFBQcBBwEB/wQaMBgwFgQCAAIwEAMGBCoJ VMaQAwYAKg9ihIAwDQYJKoZIhvcNAQELBQADggEBAEpZAyrBPiZtTnQ0cIMCnfxi fB9DBl73kpHHtyDi+xdKNeTgWTpHIKYqH2xDMtS/iRIbJ8khewfcVbDsvVLcS8TZ xBi5zxgztuT2+f76ge3/4pzmJ7TS++rKG9GPOC3ObAaKKn9K5bkpEqrLsnb7N280 1PEuCPRVd+WVJQV7/m6MDrHor7mVtC9Nd0SGzq53H1u78aiWf+vL5uy7bR/fWfyI aJOOQbspdhedU0Z69qXnOWkdTyZSBDWEtLfoaXmRW1QywuIx91/BWBq9bMafTzSE Xh71xGeTtlP8nMciA+IFbaavspI+ZuD8GnAJa7LOApM5ZVwWiSAlb3K5UC0/qEU= -----END CERTIFICATE-----Generated at Sat Jan 10 14:24:11 2026 by rpki-client