$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215522.roa File: AS215522.roa (raw, json) Hash identifier: aahNyMFWXjWNke3TAK/xI+yfZJejxt/hCfhDrtorv0Y= Subject key identifier: 06:20:BC:29:4D:91:21:60:78:A2:A0:0B:59:94:4A:B1:88:F1:F5:64 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 205CBB80782E07C371704614ACC700BFDAABA361 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215522.roa Signing time: Thu 10 Jul 2025 00:52:49 +0000 ROA not before: Thu 10 Jul 2025 00:47:49 +0000 ROA not after: Thu 09 Jul 2026 00:52:49 +0000 asID: 215522 IP address blocks: 2a0a:6044:c120::/44 maxlen: 44 2a0a:6044:c130::/44 maxlen: 44 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 07:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5c:bb:80:78:2e:07:c3:71:70:46:14:ac:c7:00:bf:da:ab:a3:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 10 00:47:49 2025 GMT Not After : Jul 9 00:52:49 2026 GMT Subject: CN=0620BC294D91216078A2A00B59944AB188F1F564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:72:e1:0e:82:e6:bc:ba:79:95:c0:0d:ad:33: 89:c8:cd:23:4f:29:00:58:a3:40:e3:62:5e:d8:80: f2:b2:97:b9:ad:70:ad:cd:5a:7b:63:ec:5d:b4:5f: 51:ed:cb:20:4d:34:e5:eb:8a:15:3b:82:4e:0d:b3: 91:c5:6e:0c:aa:a4:0d:4e:50:58:bc:ca:53:6c:59: 99:9d:29:75:c8:99:ea:04:67:64:38:b3:2f:3d:40: 7d:5a:d1:11:fb:8b:f1:f4:2b:78:c3:a3:fe:1f:ca: 5e:17:ea:bd:10:e6:c5:fd:f7:2f:bd:0c:e6:9b:f3: a1:ff:28:14:cf:6d:64:34:50:bb:ee:d0:07:32:ab: a3:c4:30:06:44:e8:01:2c:36:fd:d4:f8:07:25:10: 38:d5:06:f9:45:db:a4:26:88:f0:4c:27:28:f7:01: 9f:34:51:6d:a3:03:a0:fd:8a:a6:e5:36:ac:2c:35: d0:a1:b7:7a:41:fc:2c:77:e8:6d:38:93:5b:6f:0d: 53:60:c1:16:96:dc:8c:4f:e6:12:b9:eb:1f:b3:d0: 4a:2a:f1:7d:3c:18:89:41:bb:f3:51:45:90:41:5e: 5b:bc:21:04:85:3a:e2:53:75:f1:86:a5:10:27:54: e3:2a:ba:f6:49:65:8d:d1:90:76:6d:ab:05:b0:51: d5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:20:BC:29:4D:91:21:60:78:A2:A0:0B:59:94:4A:B1:88:F1:F5:64 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215522.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:c120::/43 Signature Algorithm: sha256WithRSAEncryption 15:c0:30:5b:bd:b0:66:d0:b8:45:1a:27:6b:31:8b:ac:b1:ab: 85:54:f7:2c:f6:86:51:eb:01:15:3d:be:24:fa:2f:25:4f:4c: 57:30:b2:af:fb:c1:1b:6e:10:10:b1:54:20:05:3f:9a:3f:6c: 78:40:0f:a7:e6:15:55:2f:04:b4:fd:5a:4f:a2:2f:7c:9c:55: 4d:df:bd:54:47:61:47:c6:05:c8:0d:19:b2:d8:89:63:c6:78: 41:fb:58:bd:b6:99:b6:93:99:06:30:06:30:94:40:37:95:1c: 82:da:26:19:a4:0d:f3:a8:30:bb:d9:49:d7:07:09:12:30:9e: 2d:10:40:73:88:89:3d:ad:c8:48:04:9e:19:da:57:0f:b6:c4: e9:4d:23:05:e8:58:21:9b:25:4e:6d:eb:92:7d:c0:28:e3:6c: 49:a1:e5:e0:1b:e5:98:c0:31:5e:8d:8f:70:20:ae:b6:5e:fe: 36:36:24:fd:66:5b:38:ce:be:23:1d:fe:d7:2f:b1:8e:89:f0: 88:3f:9d:ba:a2:3e:bf:f7:3b:e8:26:79:63:c1:06:39:ec:8f: a5:f8:cc:94:9d:f4:61:fb:75:ce:27:fb:d1:96:b9:46:b6:3a: b8:fd:7c:86:36:4c:ba:5b:fe:96:93:ea:bd:71:e1:16:b8:0c: b1:11:3e:ee -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIUIFy7gHguB8NxcEYUrMcAv9qro2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MTAwMDQ3NDlaFw0yNjA3MDkwMDUyNDlaMDMxMTAvBgNV BAMTKDA2MjBCQzI5NEQ5MTIxNjA3OEEyQTAwQjU5OTQ0QUIxODhGMUY1NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHcuEOgua8unmVwA2tM4nIzSNP KQBYo0DjYl7YgPKyl7mtcK3NWntj7F20X1HtyyBNNOXrihU7gk4Ns5HFbgyqpA1O UFi8ylNsWZmdKXXImeoEZ2Q4sy89QH1a0RH7i/H0K3jDo/4fyl4X6r0Q5sX99y+9 DOab86H/KBTPbWQ0ULvu0Acyq6PEMAZE6AEsNv3U+AclEDjVBvlF26QmiPBMJyj3 AZ80UW2jA6D9iqblNqwsNdCht3pB/Cx36G04k1tvDVNgwRaW3IxP5hK56x+z0Eoq 8X08GIlBu/NRRZBBXlu8IQSFOuJTdfGGpRAnVOMquvZJZY3RkHZtqwWwUdXRAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUBiC8KU2RIWB4oqALWZRKsYjx9WQwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTU1MjIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwUq CmBEwSAwDQYJKoZIhvcNAQELBQADggEBABXAMFu9sGbQuEUaJ2sxi6yxq4VU9yz2 hlHrARU9viT6LyVPTFcwsq/7wRtuEBCxVCAFP5o/bHhAD6fmFVUvBLT9Wk+iL3yc VU3fvVRHYUfGBcgNGbLYiWPGeEH7WL22mbaTmQYwBjCUQDeVHILaJhmkDfOoMLvZ SdcHCRIwni0QQHOIiT2tyEgEnhnaVw+2xOlNIwXoWCGbJU5t65J9wCjjbEmh5eAb 5ZjAMV6Nj3AgrrZe/jY2JP1mWzjOviMd/tcvsY6J8Ig/nbqiPr/3O+gmeWPBBjns j6X4zJSd9GH7dc4n+9GWuUa2Orj9fIY2TLpb/paT6r1x4Ra4DLERPu4= -----END CERTIFICATE-----Generated at Tue Jul 22 19:20:39 2025 by rpki-client