$ rpki-client -vvf krill.byhill.de/repo/byhill-ca/1/326131333a633863343a373130303a3a2f34302d3430203d3e20323032333538.roa File: 326131333a633863343a373130303a3a2f34302d3430203d3e20323032333538.roa (raw, json) Hash identifier: d+Wfk22NHdZ1Lc1JTtegQebaE82OrinSLcgeTPsLLUs= Subject key identifier: 04:01:34:B6:AD:45:6C:47:9C:29:01:E3:06:CE:9E:85:6B:CC:47:C3 Certificate issuer: /CN=F55C2745322CEC1805815DCD65BC6AFFD99168DA Certificate serial: 6879A8FAC900775EFF92C7FE28E84A23E53F6A51 Authority key identifier: F5:5C:27:45:32:2C:EC:18:05:81:5D:CD:65:BC:6A:FF:D9:91:68:DA Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/F55C2745322CEC1805815DCD65BC6AFFD99168DA.cer Subject info access: rsync://krill.byhill.de/repo/byhill-ca/1/326131333a633863343a373130303a3a2f34302d3430203d3e20323032333538.roa Signing time: Sat 02 May 2026 20:46:38 +0000 ROA not before: Sat 02 May 2026 20:41:38 +0000 ROA not after: Sat 01 May 2027 20:46:38 +0000 asID: 202358 IP address blocks: 2a13:c8c4:7100::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.byhill.de/repo/byhill-ca/1/F55C2745322CEC1805815DCD65BC6AFFD99168DA.crl rsync://krill.byhill.de/repo/byhill-ca/1/F55C2745322CEC1805815DCD65BC6AFFD99168DA.mft rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/F55C2745322CEC1805815DCD65BC6AFFD99168DA.cer rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/1E74494683D8D2A4E029AAD4573928D2A55FA411.crl rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/1E74494683D8D2A4E029AAD4573928D2A55FA411.mft rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/1E74494683D8D2A4E029AAD4573928D2A55FA411.cer rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/ACB5DFF8A45DF5CDAFA2A95C715F10C5FE5F91A3.crl rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/ACB5DFF8A45DF5CDAFA2A95C715F10C5FE5F91A3.mft rsync://rpki.ripe.net/repository/DEFAULT/rLXf-KRd9c2voqlccV8Qxf5fkaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 07:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:79:a8:fa:c9:00:77:5e:ff:92:c7:fe:28:e8:4a:23:e5:3f:6a:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F55C2745322CEC1805815DCD65BC6AFFD99168DA Validity Not Before: May 2 20:41:38 2026 GMT Not After : May 1 20:46:38 2027 GMT Subject: CN=040134B6AD456C479C2901E306CE9E856BCC47C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:47:0b:ec:34:fd:77:fe:c0:43:0c:10:75: fa:f7:79:f2:9e:ca:99:9d:ff:54:61:1e:9a:2c:92: 67:b4:84:91:0a:48:45:c5:d2:f6:89:ca:3a:3a:67: df:20:c1:d1:34:ec:09:17:ee:dd:43:dd:10:43:27: f5:7b:18:26:14:d8:a6:40:2a:57:e0:48:74:80:1b: fb:50:cc:47:5c:6e:c9:1d:bd:d7:13:5a:f3:27:bb: e8:f6:c3:43:4f:f6:fc:12:20:4c:1f:22:ed:4e:f4: ec:ac:79:b1:96:10:bd:2c:6c:03:be:81:89:05:55: c5:a7:8f:12:68:61:76:6f:f3:cd:7e:17:1d:f5:03: 89:72:13:1d:c2:c2:0a:12:3a:02:cf:d2:60:02:07: eb:9e:59:73:79:55:e3:17:50:b6:35:3b:88:4f:eb: 14:10:f9:28:44:93:6f:d4:a1:94:9a:f8:32:40:2e: 62:06:17:37:16:18:79:97:29:4a:25:e3:cc:17:39: 38:35:0c:3f:c2:6d:56:ee:4c:59:f2:03:62:de:47: 2a:40:a4:4e:4a:38:af:1e:71:d9:8a:07:7b:32:43: a8:52:93:61:f0:46:2d:e1:c2:45:2f:88:5f:15:9a: d1:7e:d7:77:7b:a5:76:20:b1:9e:c7:42:15:b3:5f: d3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:01:34:B6:AD:45:6C:47:9C:29:01:E3:06:CE:9E:85:6B:CC:47:C3 X509v3 Authority Key Identifier: keyid:F5:5C:27:45:32:2C:EC:18:05:81:5D:CD:65:BC:6A:FF:D9:91:68:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.byhill.de/repo/byhill-ca/1/F55C2745322CEC1805815DCD65BC6AFFD99168DA.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/F55C2745322CEC1805815DCD65BC6AFFD99168DA.cer Subject Information Access: Signed Object - URI:rsync://krill.byhill.de/repo/byhill-ca/1/326131333a633863343a373130303a3a2f34302d3430203d3e20323032333538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:c8c4:7100::/40 Signature Algorithm: sha256WithRSAEncryption 89:37:fd:0c:a2:c9:90:65:2e:21:86:ef:bd:1d:cc:76:0e:e8: db:6c:d2:b8:18:ed:9b:9e:90:a3:40:8d:97:bf:51:7b:97:c2: e6:3a:00:27:b3:aa:85:8d:10:0b:9e:d2:dd:a6:4f:bc:71:9a: d9:c3:a4:66:ed:ef:6d:28:e8:e8:8c:ea:1b:66:eb:f3:a2:b5: 50:18:51:c2:ea:cd:d1:1d:0c:6e:f3:31:68:8f:45:72:ec:58: 41:62:ad:8b:11:df:86:0f:bb:fe:71:94:f8:96:c5:0b:ab:f4: bd:6d:5e:da:71:c0:78:fd:61:31:ec:39:c4:bf:5e:00:11:c1: 15:2f:b0:67:7a:cd:22:d9:0a:47:7c:6d:fa:c6:3d:61:5d:46: a2:00:28:39:11:b4:e3:43:3b:52:70:8c:3e:d9:47:9a:a9:e5: 00:45:4e:7b:11:6a:1c:63:63:a6:6b:34:69:73:5a:b2:2f:4c: 65:f3:b9:c0:91:9e:66:92:a2:7b:59:80:4b:84:4d:01:fd:8a: 5b:50:b7:a1:71:9a:28:36:15:3f:be:04:64:31:dc:bb:9d:ea: 91:04:4c:d9:35:b5:b9:32:8b:20:df:32:03:27:9d:a6:61:4c: f5:22:60:28:42:54:6f:16:a7:4b:37:7c:cf:14:12:dd:3c:61: d3:47:8b:53 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUaHmo+skAd17/ksf+KOhKI+U/alEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1QzI3NDUzMjJDRUMxODA1ODE1RENENjVCQzZBRkZE OTkxNjhEQTAeFw0yNjA1MDIyMDQxMzhaFw0yNzA1MDEyMDQ2MzhaMDMxMTAvBgNV BAMTKDA0MDEzNEI2QUQ0NTZDNDc5QzI5MDFFMzA2Q0U5RTg1NkJDQzQ3QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5eEcL7DT9d/7AQwwQdfr3efKe ypmd/1RhHposkme0hJEKSEXF0vaJyjo6Z98gwdE07AkX7t1D3RBDJ/V7GCYU2KZA KlfgSHSAG/tQzEdcbskdvdcTWvMnu+j2w0NP9vwSIEwfIu1O9OysebGWEL0sbAO+ gYkFVcWnjxJoYXZv881+Fx31A4lyEx3CwgoSOgLP0mACB+ueWXN5VeMXULY1O4hP 6xQQ+ShEk2/UoZSa+DJALmIGFzcWGHmXKUol48wXOTg1DD/CbVbuTFnyA2LeRypA pE5KOK8ecdmKB3syQ6hSk2HwRi3hwkUviF8VmtF+13d7pXYgsZ7HQhWzX9OfAgMB AAGjggImMIICIjAdBgNVHQ4EFgQUBAE0tq1FbEecKQHjBs6ehWvMR8MwHwYDVR0j BBgwFoAU9VwnRTIs7BgFgV3NZbxq/9mRaNowDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8va3JpbGwuYnloaWxsLmRlL3JlcG8vYnloaWxs LWNhLzEvRjU1QzI3NDUzMjJDRUMxODA1ODE1RENENjVCQzZBRkZEOTkxNjhEQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJmOGVlNi1hYmU3LTRh ZTgtOTY0Yy03ODhiYjk4Yzk3NWMvMS9GNTVDMjc0NTMyMkNFQzE4MDU4MTVEQ0Q2 NUJDNkFGRkQ5OTE2OERBLmNlcjCBiQYIKwYBBQUHAQsEfTB7MHkGCCsGAQUFBzAL hm1yc3luYzovL2tyaWxsLmJ5aGlsbC5kZS9yZXBvL2J5aGlsbC1jYS8xLzMyNjEz MTMzM2E2MzM4NjMzNDNhMzczMTMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAz MjMwMzIzMzM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYB BQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqE8jEcTANBgkqhkiG9w0BAQsFAAOCAQEA iTf9DKLJkGUuIYbvvR3Mdg7o22zSuBjtm56Qo0CNl79Re5fC5joAJ7OqhY0QC57S 3aZPvHGa2cOkZu3vbSjo6IzqG2br86K1UBhRwurN0R0MbvMxaI9FcuxYQWKtixHf hg+7/nGU+JbFC6v0vW1e2nHAeP1hMew5xL9eABHBFS+wZ3rNItkKR3xt+sY9YV1G ogAoORG040M7UnCMPtlHmqnlAEVOexFqHGNjpms0aXNasi9MZfO5wJGeZpKie1mA S4RNAf2KW1C3oXGaKDYVP74EZDHcu53qkQRM2TW1uTKLIN8yAyedpmFM9SJgKEJU bxanSzd8zxQS3Txh00eLUw== -----END CERTIFICATE-----Generated at Tue May 12 21:53:08 2026 by rpki-client