$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215605.roa File: AS215605.roa (raw, json) Hash identifier: ZuKB0UVyMJqnOlX4CWQnPdhC6hkgnqTSeNMybK/fptg= Subject key identifier: 96:F3:E7:D1:5E:99:30:9A:AB:8B:92:F3:06:02:0D:3A:09:40:A3:C7 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 53F2E78D650D7636729A0C6E9DB549F46124E1D0 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215605.roa Signing time: Tue 12 Aug 2025 08:13:32 +0000 ROA not before: Tue 12 Aug 2025 08:08:32 +0000 ROA not after: Tue 11 Aug 2026 08:13:32 +0000 asID: 215605 IP address blocks: 2a0a:6044:7c00::/40 maxlen: 48 2a0a:6044:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Aug 2025 20:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f2:e7:8d:65:0d:76:36:72:9a:0c:6e:9d:b5:49:f4:61:24:e1:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 12 08:08:32 2025 GMT Not After : Aug 11 08:13:32 2026 GMT Subject: CN=96F3E7D15E99309AAB8B92F306020D3A0940A3C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:25:d6:e7:27:a2:41:35:ef:51:45:de:89:be: 57:05:4e:89:8e:1b:e3:b1:32:aa:86:33:d9:53:45: 59:86:61:39:54:7c:03:03:a6:f7:c1:15:e7:2a:7e: dd:ca:0f:76:5c:a7:2c:63:9a:b3:4f:46:50:98:0f: d1:87:4c:84:1e:c8:8b:d2:cd:13:66:3f:65:88:e5: 4a:d5:6d:cf:44:d9:cd:ef:f3:87:ad:d3:1e:c6:a9: 50:b4:41:39:06:47:1f:3a:f6:78:96:74:45:23:f7: a8:f7:4c:91:2f:09:fd:d7:df:85:50:e3:24:31:3e: 88:b4:fc:f8:f8:63:e0:08:c1:ea:43:60:0e:54:f7: 8a:a4:98:ec:ff:2c:5f:ba:3f:c2:a2:66:3b:5d:ad: 02:f0:a2:d1:f0:30:3d:54:e3:fb:55:b7:e7:a8:1a: cf:4c:a5:63:38:21:1e:df:50:f3:94:bc:6e:51:ac: 8f:04:21:d3:8e:77:41:02:18:33:2b:d6:80:30:90: 62:91:a9:a7:d2:be:8d:c6:3d:f9:75:e8:64:82:84: 3d:11:c1:ae:52:8f:56:99:58:2b:7a:a6:66:64:d6: 76:90:30:b5:22:4c:73:33:a2:0b:d7:0c:cc:b4:6d: 56:d1:35:15:1e:f3:12:2f:05:1a:0f:9e:db:83:e5: 68:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F3:E7:D1:5E:99:30:9A:AB:8B:92:F3:06:02:0D:3A:09:40:A3:C7 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7c00::/40 2a0a:6044:8000::/36 Signature Algorithm: sha256WithRSAEncryption 58:22:1f:53:99:e2:a7:76:59:09:f7:db:4e:90:a0:7d:fd:b4: 1a:5a:08:f1:b5:e6:1c:4d:31:4a:ba:41:95:ea:88:0e:2e:82: a9:a6:74:62:8e:06:90:3f:c3:56:93:e5:a6:02:e9:8f:5c:4e: cc:74:ab:47:15:a8:44:66:81:c3:6f:eb:c9:f5:f4:98:27:66: 84:86:63:3b:25:d7:6f:a2:32:d3:f9:1c:57:7d:34:fa:f4:dc: d6:b4:e8:56:43:ee:83:f0:6e:1d:e3:eb:a7:b8:52:39:f0:63: b0:67:45:a8:79:5b:df:6f:51:7d:03:ef:e6:21:6b:2b:19:5b: 98:7a:22:0a:0a:ae:2c:2c:77:a8:89:e6:ff:5d:71:b1:5d:d4: 59:c4:da:ed:1a:53:ac:b5:e2:ae:4f:fb:0b:8c:57:0d:84:d4: 17:d3:df:e4:57:bc:51:c7:b7:b7:9b:99:ef:da:f1:3a:68:5b: e2:9c:86:86:e4:5f:9b:c6:ab:51:e6:1d:6f:e1:4a:d0:b2:fb: a9:b2:31:80:9a:93:a3:b7:a4:47:50:dc:74:51:9d:7f:f3:02: a7:d8:f8:64:cb:40:17:1a:8e:59:52:5c:d6:52:7d:ae:98:15: ea:f5:e3:08:10:70:6f:78:16:2a:ae:56:4f:c2:11:50:44:0c: c5:5e:34:10 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUU/LnjWUNdjZymgxunbVJ9GEk4dAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MTIwODA4MzJaFw0yNjA4MTEwODEzMzJaMDMxMTAvBgNV BAMTKDk2RjNFN0QxNUU5OTMwOUFBQjhCOTJGMzA2MDIwRDNBMDk0MEEzQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpJdbnJ6JBNe9RRd6JvlcFTomO G+OxMqqGM9lTRVmGYTlUfAMDpvfBFecqft3KD3ZcpyxjmrNPRlCYD9GHTIQeyIvS zRNmP2WI5UrVbc9E2c3v84et0x7GqVC0QTkGRx869niWdEUj96j3TJEvCf3X34VQ 4yQxPoi0/Pj4Y+AIwepDYA5U94qkmOz/LF+6P8KiZjtdrQLwotHwMD1U4/tVt+eo Gs9MpWM4IR7fUPOUvG5RrI8EIdOOd0ECGDMr1oAwkGKRqafSvo3GPfl16GSChD0R wa5Sj1aZWCt6pmZk1naQMLUiTHMzogvXDMy0bVbRNRUe8xIvBRoPntuD5WjVAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUlvPn0V6ZMJqri5LzBgINOglAo8cwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTU2MDUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgAq CmBEfAMGBCoKYESAMA0GCSqGSIb3DQEBCwUAA4IBAQBYIh9TmeKndlkJ99tOkKB9 /bQaWgjxteYcTTFKukGV6ogOLoKppnRijgaQP8NWk+WmAumPXE7MdKtHFahEZoHD b+vJ9fSYJ2aEhmM7JddvojLT+RxXfTT69NzWtOhWQ+6D8G4d4+unuFI58GOwZ0Wo eVvfb1F9A+/mIWsrGVuYeiIKCq4sLHeoieb/XXGxXdRZxNrtGlOsteKuT/sLjFcN hNQX09/kV7xRx7e3m5nv2vE6aFvinIaG5F+bxqtR5h1v4UrQsvupsjGAmpOjt6RH UNx0UZ1/8wKn2Phky0AXGo5ZUlzWUn2umBXq9eMIEHBveBYqrlZPwhFQRAzFXjQQ -----END CERTIFICATE-----Generated at Sat Aug 23 14:22:01 2025 by rpki-client