$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: JQxInGlO0q/b8W+isxgQ9uVroE7Q5o0s8QczwiWpiPk= Subject key identifier: B9:2B:37:98:31:DD:BA:05:56:AB:6B:53:5D:84:27:97:89:BB:4A:2B Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 533D8D83F3F72C7FAA1D625ECEC18C62908239B3 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS14618.roa Signing time: Mon 18 Aug 2025 20:20:35 +0000 ROA not before: Mon 18 Aug 2025 20:15:35 +0000 ROA not after: Mon 17 Aug 2026 20:20:35 +0000 asID: 14618 IP address blocks: 2a05:dfc3:f740::/44 maxlen: 44 2a05:dfc3:f750::/44 maxlen: 48 2a09:54c6:dfff::/48 maxlen: 48 2a0f:6284:41fe::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Aug 2025 19:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:3d:8d:83:f3:f7:2c:7f:aa:1d:62:5e:ce:c1:8c:62:90:82:39:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 18 20:15:35 2025 GMT Not After : Aug 17 20:20:35 2026 GMT Subject: CN=B92B379831DDBA0556AB6B535D84279789BB4A2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6e:b0:4b:22:33:b7:90:4d:10:7f:39:32:c4: a5:54:d3:8d:b0:5e:5a:c3:36:60:76:f9:d6:1d:6d: 35:f4:df:37:ea:3b:59:ed:73:b7:6f:f1:df:0f:7f: dd:1e:31:d6:aa:73:ea:3d:81:9e:f6:e1:cd:27:51: 87:35:30:3c:56:e1:29:4d:da:08:3f:ed:94:cd:7b: 27:f2:60:51:89:89:7d:41:29:6b:ee:4d:d0:9e:4c: 33:3d:23:3d:60:53:18:56:1e:44:5f:34:95:3c:57: b6:cc:23:f6:ff:79:f5:d6:b1:cb:76:f5:bd:33:ab: e2:ae:ba:29:64:43:84:17:5a:15:ae:97:78:ff:9a: 34:a1:7a:d9:d7:0e:33:58:c3:5b:8f:6a:e0:d4:97: d9:c7:c9:ff:41:d0:11:4a:5a:51:ed:65:e9:37:e5: 6a:97:6a:3c:10:dd:ee:d1:d8:f0:be:ac:76:04:bb: 89:a3:80:1c:36:61:29:2f:f2:27:a4:c9:e0:3d:65: fd:61:d2:1c:a1:66:f6:fc:b0:22:af:f9:c4:b9:6e: 53:07:8b:5c:19:67:90:33:2f:1f:ba:4e:b9:ce:17: db:00:cb:19:50:4b:b5:0e:2c:58:d1:7d:e0:6d:2f: 3c:06:79:65:00:c4:0e:6a:eb:ac:d7:90:dd:ea:5f: 90:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:2B:37:98:31:DD:BA:05:56:AB:6B:53:5D:84:27:97:89:BB:4A:2B X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f740::/43 2a09:54c6:dfff::/48 2a0f:6284:41fe::/48 Signature Algorithm: sha256WithRSAEncryption 33:40:b2:d6:10:6d:99:7d:4a:23:89:1f:65:eb:03:94:61:29: 8a:1c:d7:51:53:69:2a:fb:46:ad:86:57:ef:36:90:7a:3c:e5: 6d:07:37:c9:da:64:83:b1:32:e7:97:96:23:67:ff:5c:f9:be: a2:1b:3a:54:59:9c:cd:0f:b7:e7:e1:d7:0b:8d:54:a5:fa:b0: b6:ff:5f:c4:8e:0b:6a:3e:c9:42:d9:29:cd:10:26:41:12:18: 1a:63:d6:67:be:4e:4e:13:32:cf:53:4a:65:4d:8d:bc:96:70: 4c:91:19:c2:43:95:c6:20:72:93:28:2f:9d:a7:0d:c1:27:f4: f5:b9:cb:11:f7:74:f6:8c:6c:90:87:b0:b3:ca:f8:af:91:c6: 49:88:e3:9b:03:1f:ec:f1:dd:9b:c1:00:b8:74:dc:c0:60:5f: 5d:ea:af:27:84:df:e6:59:ae:7f:dd:f0:64:ed:41:6c:88:13: f5:82:69:86:34:5e:11:c0:45:6d:f1:70:ad:45:ae:d9:10:83: b2:64:4c:c7:26:2a:37:6d:57:2f:fa:fa:87:68:bb:8b:70:6e: 0d:51:e6:00:e4:d6:32:2b:8f:54:c2:11:e5:d9:cf:af:12:c1: 09:0b:0f:c3:db:12:49:d8:17:b7:05:55:2e:de:64:38:f8:86: af:ee:75:15 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUUz2Ng/P3LH+qHWJezsGMYpCCObMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MTgyMDE1MzVaFw0yNjA4MTcyMDIwMzVaMDMxMTAvBgNV BAMTKEI5MkIzNzk4MzFEREJBMDU1NkFCNkI1MzVEODQyNzk3ODlCQjRBMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpbrBLIjO3kE0QfzkyxKVU042w XlrDNmB2+dYdbTX03zfqO1ntc7dv8d8Pf90eMdaqc+o9gZ724c0nUYc1MDxW4SlN 2gg/7ZTNeyfyYFGJiX1BKWvuTdCeTDM9Iz1gUxhWHkRfNJU8V7bMI/b/efXWsct2 9b0zq+KuuilkQ4QXWhWul3j/mjShetnXDjNYw1uPauDUl9nHyf9B0BFKWlHtZek3 5WqXajwQ3e7R2PC+rHYEu4mjgBw2YSkv8iekyeA9Zf1h0hyhZvb8sCKv+cS5blMH i1wZZ5AzLx+6TrnOF9sAyxlQS7UOLFjRfeBtLzwGeWUAxA5q66zXkN3qX5AVAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUuSs3mDHdugVWq2tTXYQnl4m7SiswHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMxNDYxOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMwIQQCAAIwGwMHBSoF 38P3QAMHACoJVMbf/wMHACoPYoRB/jANBgkqhkiG9w0BAQsFAAOCAQEAM0Cy1hBt mX1KI4kfZesDlGEpihzXUVNpKvtGrYZX7zaQejzlbQc3ydpkg7Ey55eWI2f/XPm+ ohs6VFmczQ+35+HXC41Upfqwtv9fxI4Laj7JQtkpzRAmQRIYGmPWZ75OThMyz1NK ZU2NvJZwTJEZwkOVxiBykygvnacNwSf09bnLEfd09oxskIews8r4r5HGSYjjmwMf 7PHdm8EAuHTcwGBfXeqvJ4Tf5lmuf93wZO1BbIgT9YJphjReEcBFbfFwrUWu2RCD smRMxyYqN21XL/r6h2i7i3BuDVHmAOTWMiuPVMIR5dnPrxLBCQsPw9sSSdgXtwVV Lt5kOPiGr+51FQ== -----END CERTIFICATE-----Generated at Sat Aug 23 06:51:27 2025 by rpki-client