$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215605.roa File: AS215605.roa (raw, json) Hash identifier: uEDokaZ2bzaD+D3Xil4OyoQy7qwwDQmsiS3hOSPioCk= Subject key identifier: 84:66:23:C7:4D:37:C9:15:24:A7:09:88:FF:7D:A3:4A:A5:4F:30:D7 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 518A53558B025A0C5B150DBF2186BF6D60442340 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215605.roa Signing time: Tue 14 Oct 2025 15:56:38 +0000 ROA not before: Tue 14 Oct 2025 15:51:38 +0000 ROA not after: Tue 13 Oct 2026 15:56:38 +0000 asID: 215605 IP address blocks: 2a0a:6044:7c00::/40 maxlen: 48 2a0a:6044:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:8a:53:55:8b:02:5a:0c:5b:15:0d:bf:21:86:bf:6d:60:44:23:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 14 15:51:38 2025 GMT Not After : Oct 13 15:56:38 2026 GMT Subject: CN=846623C74D37C91524A70988FF7DA34AA54F30D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:93:1f:fb:7b:b9:6d:6f:a0:2c:79:bc:d6:21: 9a:07:89:e8:01:9e:28:98:82:90:0e:58:3c:41:a0: 34:16:6d:57:24:42:b5:96:ff:f8:c5:69:87:89:62: cc:aa:a9:5e:30:05:a8:a6:33:6d:e0:1e:08:c6:35: 05:49:ee:26:8b:3f:ef:58:99:c3:e7:77:21:e4:49: f1:ac:8c:52:9a:ee:a5:38:3e:39:86:67:11:92:f8: 96:e4:ee:11:08:f0:66:23:a2:3a:79:1e:3d:d4:ef: 9d:a2:ac:75:d2:d5:e2:f1:b5:a7:66:a5:fa:13:69: 43:02:f2:37:3e:9b:7c:3c:2d:d5:9d:0d:6a:85:db: cf:b5:67:92:36:d1:a9:eb:8b:2c:7e:00:c8:7d:5e: 55:7b:b3:31:3f:7e:10:83:9f:c4:0f:40:f5:44:04: 5d:d8:ba:4e:07:2f:7f:1c:9f:99:ea:f9:cf:38:6f: 5f:3d:e1:b6:e0:32:c8:1f:62:83:45:0b:2b:8c:b4: 96:03:b1:68:d5:2d:2d:b9:09:f8:ab:46:8a:32:1a: d0:22:3c:32:9a:18:07:84:c3:a5:ae:37:85:b3:4b: 06:60:be:50:46:6b:2c:d6:4b:5f:8c:f5:03:07:02: 31:fe:f3:fd:37:29:b2:74:a0:93:e6:d0:87:47:1a: 05:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:66:23:C7:4D:37:C9:15:24:A7:09:88:FF:7D:A3:4A:A5:4F:30:D7 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7c00::/40 2a0a:6044:8000::/36 Signature Algorithm: sha256WithRSAEncryption 2c:84:6d:9f:7b:87:7e:0b:e5:e8:88:6c:1a:63:9f:77:5a:72: a2:03:3a:6a:f8:6c:15:55:64:00:2f:31:ae:74:dd:77:7c:05: 6d:44:27:0a:97:20:1e:63:a8:a9:b8:ea:5f:7b:9c:32:48:a0: c2:83:03:1b:28:c3:42:d2:d8:24:0f:6b:7f:cb:f0:9e:ef:ca: 14:f8:3e:f4:f9:e2:48:02:60:bd:3c:af:c6:72:77:13:4a:ca: ee:88:c1:e7:a6:2f:bf:f2:31:83:3b:98:97:3a:16:b9:24:f9: d3:83:59:3e:d1:6e:b6:d4:13:be:a0:27:fb:b2:8b:08:4b:da: 85:17:20:b1:b1:2d:8f:d8:d6:2e:37:b7:1a:db:0c:e4:56:b5: c3:c7:a1:3c:09:7f:ef:85:17:14:a5:38:3d:d3:06:84:4b:4b: 46:8c:29:f8:fe:c3:91:c0:95:f8:9b:a2:4e:e9:4c:83:7f:97: 34:da:96:c3:ba:1f:b6:7f:d1:79:74:b3:84:65:91:a7:9c:fa: b0:04:5c:ac:3b:b4:ff:fe:51:61:1e:b3:84:b6:87:0c:0b:80: 6a:8a:52:77:61:5f:be:94:85:ab:9f:b1:73:99:68:8b:ba:91: 9b:81:48:d8:ee:66:0a:6b:4e:f5:f2:49:41:e0:58:c5:3b:95: 67:ff:a0:04 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUUYpTVYsCWgxbFQ2/IYa/bWBEI0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMTQxNTUxMzhaFw0yNjEwMTMxNTU2MzhaMDMxMTAvBgNV BAMTKDg0NjYyM0M3NEQzN0M5MTUyNEE3MDk4OEZGN0RBMzRBQTU0RjMwRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCykx/7e7ltb6AsebzWIZoHiegB niiYgpAOWDxBoDQWbVckQrWW//jFaYeJYsyqqV4wBaimM23gHgjGNQVJ7iaLP+9Y mcPndyHkSfGsjFKa7qU4PjmGZxGS+Jbk7hEI8GYjojp5Hj3U752irHXS1eLxtadm pfoTaUMC8jc+m3w8LdWdDWqF28+1Z5I20anriyx+AMh9XlV7szE/fhCDn8QPQPVE BF3Yuk4HL38cn5nq+c84b1894bbgMsgfYoNFCyuMtJYDsWjVLS25CfirRooyGtAi PDKaGAeEw6WuN4WzSwZgvlBGayzWS1+M9QMHAjH+8/03KbJ0oJPm0IdHGgUxAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUhGYjx003yRUkpwmI/32jSqVPMNcwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTU2MDUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgAq CmBEfAMGBCoKYESAMA0GCSqGSIb3DQEBCwUAA4IBAQAshG2fe4d+C+XoiGwaY593 WnKiAzpq+GwVVWQALzGudN13fAVtRCcKlyAeY6ipuOpfe5wySKDCgwMbKMNC0tgk D2t/y/Ce78oU+D70+eJIAmC9PK/GcncTSsruiMHnpi+/8jGDO5iXOha5JPnTg1k+ 0W621BO+oCf7sosIS9qFFyCxsS2P2NYuN7ca2wzkVrXDx6E8CX/vhRcUpTg90waE S0tGjCn4/sORwJX4m6JO6UyDf5c02pbDuh+2f9F5dLOEZZGnnPqwBFysO7T//lFh HrOEtocMC4BqilJ3YV++lIWrn7FzmWiLupGbgUjY7mYKa0718klB4FjFO5Vn/6AE -----END CERTIFICATE-----Generated at Sun Oct 19 20:20:03 2025 by rpki-client