$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215692.roa File: AS215692.roa (raw, json) Hash identifier: KVnhqaPtVCKqy10mnE72pH3zjo3Jaz4Sd172I9IeMcU= Subject key identifier: 9B:BC:96:20:2A:E6:3B:9C:29:21:D0:6F:52:FA:6B:1C:AF:D4:F9:BF Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 2C1C13A16EB11BAD976A35E0A438AC547866B41B Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215692.roa Signing time: Fri 18 Jul 2025 03:38:34 +0000 ROA not before: Fri 18 Jul 2025 03:33:34 +0000 ROA not after: Fri 17 Jul 2026 03:38:34 +0000 asID: 215692 IP address blocks: 2a0a:6044:aa06::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 00:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:1c:13:a1:6e:b1:1b:ad:97:6a:35:e0:a4:38:ac:54:78:66:b4:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 18 03:33:34 2025 GMT Not After : Jul 17 03:38:34 2026 GMT Subject: CN=9BBC96202AE63B9C2921D06F52FA6B1CAFD4F9BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d6:0f:fb:c2:5d:e5:30:7c:af:16:39:cb:7a: 1e:97:29:65:e6:46:53:23:d4:09:60:e4:4c:c9:de: 22:82:a1:45:c9:99:cc:3f:ed:70:da:f0:25:57:cd: 39:1f:21:3f:23:01:d5:23:6f:d7:7d:c7:74:ca:0b: 07:18:0d:2c:f1:a2:bc:65:3d:dc:22:0a:5c:be:1e: 98:23:27:70:1e:32:08:52:7a:c3:87:14:76:ba:31: 4c:89:55:b5:7f:f6:7d:7b:a5:a8:6d:e0:6c:ee:88: bf:64:7a:52:45:15:1a:d1:a8:2f:b5:65:2e:c1:22: 28:d9:03:df:06:72:57:5e:9d:f2:ad:64:e6:8f:6f: 8e:c0:e8:68:57:e5:39:62:69:c4:e7:18:db:c1:0f: 0d:a0:59:56:6f:21:fe:73:97:25:dc:4b:11:79:ff: c9:6b:a6:2f:54:8d:6f:98:2b:61:14:12:7c:f7:ac: 20:c9:55:f9:b1:a9:37:1c:a3:45:d1:d6:2a:3a:a5: c8:d6:de:4e:08:91:3f:f8:54:0f:14:82:19:45:a0: d4:12:df:99:8c:eb:80:13:f7:eb:61:66:31:bc:2f: d7:08:8f:58:9a:a1:c8:80:64:37:f1:bf:ad:74:46: bd:f5:ba:85:5d:8b:ea:eb:00:6f:c5:cb:ae:2f:be: 4e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BC:96:20:2A:E6:3B:9C:29:21:D0:6F:52:FA:6B:1C:AF:D4:F9:BF X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215692.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:aa06::/48 Signature Algorithm: sha256WithRSAEncryption 37:7d:87:61:ae:6e:57:40:c4:f3:8d:53:0b:fd:72:6d:05:f9: 3a:cf:1a:b4:a3:64:2e:11:cf:1f:d3:b4:c2:d3:ca:28:9a:c9: b1:04:aa:03:80:5e:f1:45:8a:04:3b:79:39:5b:4a:cf:18:e8: a2:be:b5:35:53:dd:ec:35:1d:7b:9f:de:d8:5a:85:a1:76:d5: 51:5c:e0:ea:d0:90:65:e6:35:94:de:39:33:64:cb:e8:8e:b3: 3a:dc:17:f4:83:4f:99:a9:65:a2:11:53:59:e2:16:91:20:1d: 70:78:dd:4e:4e:ea:5e:c6:76:13:3f:fa:e8:c9:11:e5:26:f2: 7b:e6:2d:ce:01:69:be:01:e5:f2:72:52:3a:3b:2a:9d:3f:a2: f1:9f:02:b2:51:fc:c7:4b:57:c6:89:6b:38:72:24:ce:93:14: ef:09:d1:19:be:37:be:cc:74:b1:df:31:02:eb:41:be:f7:23: bc:85:c7:ad:3c:6d:80:14:8f:a2:7b:4f:f7:72:29:8d:fb:2f: c5:ed:ba:e9:21:87:57:4a:a4:de:25:b0:e6:9c:8f:d6:1e:4d: b3:d4:b2:b5:24:c8:e9:5e:60:81:1c:51:7e:4c:69:c2:df:37: 25:6d:c0:14:9e:02:2e:00:e0:1e:8d:fe:58:01:41:86:23:88: 89:c4:4e:ab -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIULBwToW6xG62XajXgpDisVHhmtBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MTgwMzMzMzRaFw0yNjA3MTcwMzM4MzRaMDMxMTAvBgNV BAMTKDlCQkM5NjIwMkFFNjNCOUMyOTIxRDA2RjUyRkE2QjFDQUZENEY5QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+1g/7wl3lMHyvFjnLeh6XKWXm RlMj1Alg5EzJ3iKCoUXJmcw/7XDa8CVXzTkfIT8jAdUjb9d9x3TKCwcYDSzxorxl PdwiCly+HpgjJ3AeMghSesOHFHa6MUyJVbV/9n17paht4GzuiL9kelJFFRrRqC+1 ZS7BIijZA98GcldenfKtZOaPb47A6GhX5TliacTnGNvBDw2gWVZvIf5zlyXcSxF5 /8lrpi9UjW+YK2EUEnz3rCDJVfmxqTcco0XR1io6pcjW3k4IkT/4VA8UghlFoNQS 35mM64AT9+thZjG8L9cIj1iaociAZDfxv610Rr31uoVdi+rrAG/Fy64vvk5VAgMB AAGjggHfMIIB2zAdBgNVHQ4EFgQUm7yWICrmO5wpIdBvUvprHK/U+b8wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTU2OTIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAq CmBEqgYwDQYJKoZIhvcNAQELBQADggEBADd9h2GubldAxPONUwv9cm0F+TrPGrSj ZC4Rzx/TtMLTyiiaybEEqgOAXvFFigQ7eTlbSs8Y6KK+tTVT3ew1HXuf3thahaF2 1VFc4OrQkGXmNZTeOTNky+iOszrcF/SDT5mpZaIRU1niFpEgHXB43U5O6l7GdhM/ +ujJEeUm8nvmLc4Bab4B5fJyUjo7Kp0/ovGfArJR/MdLV8aJazhyJM6TFO8J0Rm+ N77MdLHfMQLrQb73I7yFx608bYAUj6J7T/dyKY37L8Xtuukhh1dKpN4lsOacj9Ye TbPUsrUkyOleYIEcUX5MacLfNyVtwBSeAi4A4B6N/lgBQYYjiInETqs= -----END CERTIFICATE-----Generated at Wed Jul 23 12:16:08 2025 by rpki-client