$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS31898.roa File: AS31898.roa (raw, json) Hash identifier: zFKMqImuw7zJjJPTkZmyjkYxcdfr+GW/uAYhR1iBz8k= Subject key identifier: E4:C2:76:D2:8F:0D:4C:79:90:9F:26:56:A2:23:5D:AF:98:20:BB:1A Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 65C4107671DAE1748DC02F560202BFF5B957BE61 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa Signing time: Sun 19 Oct 2025 09:37:33 +0000 ROA not before: Sun 19 Oct 2025 09:32:33 +0000 ROA not after: Sun 18 Oct 2026 09:37:33 +0000 asID: 31898 IP address blocks: 2a05:dfc3:f6ce::/48 maxlen: 48 2a05:dfc3:f760::/44 maxlen: 48 2a0a:6044:6d00::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c4:10:76:71:da:e1:74:8d:c0:2f:56:02:02:bf:f5:b9:57:be:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 19 09:32:33 2025 GMT Not After : Oct 18 09:37:33 2026 GMT Subject: CN=E4C276D28F0D4C79909F2656A2235DAF9820BB1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:53:dd:89:ed:d8:cd:5e:5a:ad:fc:64:00:80: e0:4f:c0:27:10:e5:b8:4e:5e:17:20:4b:b6:11:40: 6c:c9:c0:b6:74:af:4f:87:cc:2b:4e:c1:08:c7:13: 13:80:59:4e:47:27:6e:0e:cb:ff:b8:06:a3:d8:b9: da:06:1a:2d:ea:5a:5a:cf:29:89:2f:6f:e8:ae:07: df:c9:e8:44:6d:24:d4:c0:87:b5:f7:4e:5f:e9:87: 71:e4:26:b1:33:71:7f:47:85:af:09:42:0d:52:e2: f7:d2:08:76:73:c0:80:1c:b1:39:9d:84:13:31:cb: a4:f3:e8:97:7c:ff:8c:bd:3e:39:fb:e9:13:cc:be: 41:c4:2a:b3:e4:fe:90:4e:7b:c4:e6:a7:78:b5:b0: 9e:76:40:af:0b:e1:b9:8c:4b:a3:b0:6a:de:35:70: 36:bb:bb:5f:2c:2d:c0:15:56:90:b2:7d:52:b4:e3: c3:b7:c0:80:5f:f4:c6:87:67:2f:24:a3:2b:06:16: 03:74:ff:42:85:e3:7c:21:f0:ea:70:4c:2d:34:64: 1c:6e:3f:ec:47:46:44:c9:77:f7:4f:99:67:57:22: e8:33:51:85:d8:34:f3:0c:2c:71:66:51:04:64:cf: 84:5c:65:fd:48:e9:11:96:32:11:1c:26:21:9d:14: 4a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C2:76:D2:8F:0D:4C:79:90:9F:26:56:A2:23:5D:AF:98:20:BB:1A X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f6ce::/48 2a05:dfc3:f760::/44 2a0a:6044:6d00::/48 Signature Algorithm: sha256WithRSAEncryption 77:c8:c0:8a:00:22:c2:8f:f5:04:37:dc:dc:87:4b:8a:ac:3a: f0:e2:d6:12:b9:31:ae:5d:34:98:5d:12:96:f5:60:01:db:65: f8:22:eb:90:30:ba:69:8c:8e:f7:c1:e8:e3:86:7b:c8:4c:a7: 09:18:78:62:00:4f:e0:0b:28:79:cc:7c:71:da:41:de:4f:ea: 95:dc:36:6b:3d:63:cc:91:c9:2f:b7:b1:a2:7a:3e:e4:36:f0: d5:75:52:34:67:51:7d:8c:5d:b8:6e:fe:43:9b:64:3d:b0:b1: 11:10:84:fa:e2:bc:93:ef:29:f6:7e:63:28:11:39:dd:c7:8a: 69:57:ba:fb:f4:1e:d2:08:85:28:8d:32:57:6b:bb:0d:bb:84: 1f:bf:ad:ce:11:51:10:74:b1:b6:44:2b:34:81:ff:9c:55:bf: 4b:86:fc:c3:f4:e1:84:fb:24:36:4d:f6:32:9f:d1:da:82:a3: 19:01:c1:c6:70:56:76:83:fd:4b:8b:16:04:7b:c9:c9:64:ee: 4c:14:f4:f8:f3:3e:8d:84:fa:1f:45:d2:bf:26:bf:f4:dc:08: 87:78:e3:d2:1a:65:30:93:fb:b2:4b:a4:f2:33:46:0c:3d:a8: c0:5d:f6:8c:8f:43:c1:9d:eb:dd:97:19:ea:4d:b5:30:57:f4: eb:12:74:ca -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUZcQQdnHa4XSNwC9WAgK/9blXvmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMTkwOTMyMzNaFw0yNjEwMTgwOTM3MzNaMDMxMTAvBgNV BAMTKEU0QzI3NkQyOEYwRDRDNzk5MDlGMjY1NkEyMjM1REFGOTgyMEJCMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDU92J7djNXlqt/GQAgOBPwCcQ 5bhOXhcgS7YRQGzJwLZ0r0+HzCtOwQjHExOAWU5HJ24Oy/+4BqPYudoGGi3qWlrP KYkvb+iuB9/J6ERtJNTAh7X3Tl/ph3HkJrEzcX9Hha8JQg1S4vfSCHZzwIAcsTmd hBMxy6Tz6Jd8/4y9Pjn76RPMvkHEKrPk/pBOe8Tmp3i1sJ52QK8L4bmMS6Owat41 cDa7u18sLcAVVpCyfVK048O3wIBf9MaHZy8koysGFgN0/0KF43wh8OpwTC00ZBxu P+xHRkTJd/dPmWdXIugzUYXYNPMMLHFmUQRkz4RcZf1I6RGWMhEcJiGdFEqlAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQU5MJ20o8NTHmQnyZWoiNdr5gguxowHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMzMTg5OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMwIQQCAAIwGwMHACoF 38P2zgMHBCoF38P3YAMHACoKYERtADANBgkqhkiG9w0BAQsFAAOCAQEAd8jAigAi wo/1BDfc3IdLiqw68OLWErkxrl00mF0SlvVgAdtl+CLrkDC6aYyO98Ho44Z7yEyn CRh4YgBP4Asoecx8cdpB3k/qldw2az1jzJHJL7exono+5Dbw1XVSNGdRfYxduG7+ Q5tkPbCxERCE+uK8k+8p9n5jKBE53ceKaVe6+/Qe0giFKI0yV2u7DbuEH7+tzhFR EHSxtkQrNIH/nFW/S4b8w/ThhPskNk32Mp/R2oKjGQHBxnBWdoP9S4sWBHvJyWTu TBT0+PM+jYT6H0XSvya/9NwIh3jj0hplMJP7skuk8jNGDD2owF32jI9DwZ3r3ZcZ 6k21MFf06xJ0yg== -----END CERTIFICATE-----Generated at Sun Oct 19 20:16:22 2025 by rpki-client