$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS57110.roa File: AS57110.roa (raw, json) Hash identifier: mByX0lM24Qk1Mc5Oe5m3hH4C4uFL5Gm5wnGb7Eqpiww= Subject key identifier: 90:48:86:0A:D8:39:64:09:BB:94:0F:5A:D9:46:D6:01:54:B3:AF:D5 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 685717A6FE982A661B5C45AF15695042BFF391C4 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS57110.roa Signing time: Thu 14 Aug 2025 18:32:14 +0000 ROA not before: Thu 14 Aug 2025 18:27:14 +0000 ROA not after: Thu 13 Aug 2026 18:32:14 +0000 asID: 57110 IP address blocks: 2a0a:6044:3000::/40 maxlen: 40 2a0a:6044:3001::/48 maxlen: 48 2a0f:6283:1101::/48 maxlen: 48 2a0f:6283:1120::/44 maxlen: 48 2a0f:6284:4001::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Aug 2025 20:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:57:17:a6:fe:98:2a:66:1b:5c:45:af:15:69:50:42:bf:f3:91:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 14 18:27:14 2025 GMT Not After : Aug 13 18:32:14 2026 GMT Subject: CN=9048860AD8396409BB940F5AD946D60154B3AFD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fb:fc:b7:4c:07:4d:2d:bf:f2:68:97:01:a7: 30:b2:49:f0:cb:63:9f:27:b5:65:d4:66:bb:42:bb: 1e:83:42:03:54:1b:b4:83:c0:b9:2d:e8:d0:b1:98: 68:7b:39:78:46:8b:21:49:56:bd:8c:7c:a9:59:d4: 08:48:b1:6b:04:50:a9:4b:86:37:f6:80:1d:f7:36: 90:91:a7:0c:bc:64:39:d0:d5:9d:24:9c:bf:21:09: 52:cb:9b:51:2d:b5:da:bc:f0:51:9f:7d:9b:4b:65: e8:32:ed:7f:d0:8e:7e:b1:ca:6d:41:f2:95:76:20: 26:13:ad:33:62:cb:1a:19:d6:63:8f:b0:c9:0a:61: 03:e9:ee:42:f7:ec:be:cd:63:48:b2:11:4c:9e:fb: 07:59:01:3b:d9:b1:3c:2c:02:74:3e:d1:7e:10:9f: 44:d1:52:8b:57:64:fa:c8:29:64:fa:36:46:9e:68: 81:2d:13:7a:80:77:46:08:aa:08:78:58:03:e2:a4: b7:32:f7:16:8f:c9:57:b6:91:f0:91:22:e8:bf:a7: ba:7c:95:50:92:b0:b7:db:a6:bd:3d:3d:67:f9:2b: 35:7d:d9:02:de:88:6c:6b:83:2e:8e:bc:ad:76:45: 7e:d5:d7:c8:b8:ff:80:c0:1f:04:c1:92:3f:ec:43: 81:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:48:86:0A:D8:39:64:09:BB:94:0F:5A:D9:46:D6:01:54:B3:AF:D5 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS57110.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:3000::/40 2a0f:6283:1101::/48 2a0f:6283:1120::/44 2a0f:6284:4001::/48 Signature Algorithm: sha256WithRSAEncryption 5d:17:7a:b3:20:9d:d3:0e:2e:5d:20:cf:a7:a7:a9:88:18:96: e3:27:ef:7a:7a:88:3e:c6:5e:94:46:31:07:f5:44:c2:f5:e2: 35:06:61:ba:d7:f1:fb:9a:1a:51:0f:14:e9:8a:70:7a:7d:38: be:e8:6b:a6:35:da:5e:da:77:17:9f:a7:1c:19:15:57:3d:26: 7b:f3:9d:c3:b9:a6:06:20:93:ed:48:40:8f:2f:eb:7d:8b:1e: c5:e7:28:0e:74:6a:5b:65:53:54:3c:e8:eb:76:62:f4:80:e6: 1a:02:fd:7c:38:03:37:65:1f:c5:09:23:40:93:df:75:08:58: 59:9f:b9:f1:22:e2:c6:aa:c8:8c:67:03:8b:5e:f5:f2:8b:74: 24:36:bb:79:6c:0b:c1:a7:e6:b5:7e:d0:a3:58:39:e5:55:07: b0:20:4c:d9:4b:c9:78:0b:2c:84:4a:cb:4b:6d:63:d9:20:1e: ee:73:40:6a:0d:db:6f:c2:a9:0a:1e:0d:e3:fb:81:1b:c4:23: 24:81:2c:af:f3:a1:21:43:5f:78:ac:f5:60:5b:c5:85:c2:89: 39:52:4d:57:75:ef:28:ea:d3:7e:22:06:76:83:a4:43:d7:26: 6d:80:01:f2:d1:5b:e1:86:5f:d6:d5:a7:24:2d:21:05:ee:70: 19:aa:8e:bf -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUaFcXpv6YKmYbXEWvFWlQQr/zkcQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MTQxODI3MTRaFw0yNjA4MTMxODMyMTRaMDMxMTAvBgNV BAMTKDkwNDg4NjBBRDgzOTY0MDlCQjk0MEY1QUQ5NDZENjAxNTRCM0FGRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ+/y3TAdNLb/yaJcBpzCySfDL Y58ntWXUZrtCux6DQgNUG7SDwLkt6NCxmGh7OXhGiyFJVr2MfKlZ1AhIsWsEUKlL hjf2gB33NpCRpwy8ZDnQ1Z0knL8hCVLLm1Ettdq88FGffZtLZegy7X/Qjn6xym1B 8pV2ICYTrTNiyxoZ1mOPsMkKYQPp7kL37L7NY0iyEUye+wdZATvZsTwsAnQ+0X4Q n0TRUotXZPrIKWT6NkaeaIEtE3qAd0YIqgh4WAPipLcy9xaPyVe2kfCRIui/p7p8 lVCSsLfbpr09PWf5KzV92QLeiGxrgy6OvK12RX7V18i4/4DAHwTBkj/sQ4HbAgMB AAGjggH4MIIB9DAdBgNVHQ4EFgQUkEiGCtg5ZAm7lA9a2UbWAVSzr9UwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVM1NzExMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjA8BggrBgEFBQcBBwEB/wQtMCswKQQCAAIwIwMGACoK YEQwAwcAKg9igxEBAwcEKg9igxEgAwcAKg9ihEABMA0GCSqGSIb3DQEBCwUAA4IB AQBdF3qzIJ3TDi5dIM+np6mIGJbjJ+96eog+xl6URjEH9UTC9eI1BmG61/H7mhpR DxTpinB6fTi+6GumNdpe2ncXn6ccGRVXPSZ7853DuaYGIJPtSECPL+t9ix7F5ygO dGpbZVNUPOjrdmL0gOYaAv18OAM3ZR/FCSNAk991CFhZn7nxIuLGqsiMZwOLXvXy i3QkNrt5bAvBp+a1ftCjWDnlVQewIEzZS8l4CyyESstLbWPZIB7uc0BqDdtvwqkK Hg3j+4EbxCMkgSyv86EhQ194rPVgW8WFwok5Uk1Xde8o6tN+IgZ2g6RD1yZtgAHy 0Vvhhl/W1ackLSEF7nAZqo6/ -----END CERTIFICATE-----Generated at Sat Aug 23 13:36:15 2025 by rpki-client