$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: pud5CWN8T5q4pbZLE8kW5uV3gYWsAJYztTrIa0ehg94= Subject key identifier: A4:19:2D:93:59:98:F2:FD:F3:D4:B4:05:49:B6:A1:9F:55:D1:A6:AD Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 0448417D1C239629C7EE6040D8F5CC3D2AE82204 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS14618.roa Signing time: Sat 30 Aug 2025 23:08:13 +0000 ROA not before: Sat 30 Aug 2025 23:03:13 +0000 ROA not after: Sat 29 Aug 2026 23:08:13 +0000 asID: 14618 IP address blocks: 2a05:dfc3:f740::/44 maxlen: 44 2a05:dfc3:f750::/44 maxlen: 48 2a09:54c6:dfff::/48 maxlen: 48 2a0f:6284:41fe::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 03:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:48:41:7d:1c:23:96:29:c7:ee:60:40:d8:f5:cc:3d:2a:e8:22:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 30 23:03:13 2025 GMT Not After : Aug 29 23:08:13 2026 GMT Subject: CN=A4192D935998F2FDF3D4B40549B6A19F55D1A6AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6b:d8:be:11:0a:21:4e:b2:b2:38:d8:f6:ac: 3c:4d:01:74:c8:41:e8:3d:30:fc:38:e8:b4:a6:c5: 2a:a7:ed:37:fa:8b:47:d0:d8:4c:50:f7:39:4f:ed: 73:e9:8f:cc:31:17:0c:7a:07:20:29:eb:d5:04:15: 6d:34:05:79:22:56:7b:cf:65:13:04:9c:9b:8d:c0: 47:ea:37:4e:4c:38:6d:56:c1:ea:52:59:d7:d0:96: 92:62:38:55:38:99:a5:3e:c7:2f:07:85:b5:6e:5a: 9b:18:79:f6:d8:91:a7:68:9a:0c:0e:fc:cd:f4:7a: aa:d1:58:e1:00:f6:d2:1c:55:dd:db:b0:4a:19:55: d4:ff:22:11:e5:06:34:4a:14:22:0c:19:ee:8e:c9: 17:b2:a0:f9:56:6d:9d:ee:98:18:30:8b:1e:59:ee: 74:93:7a:19:e4:48:14:1c:78:a2:0d:04:71:13:fb: 98:7b:c9:1e:9c:05:48:6a:36:61:b3:90:91:a2:f3: 8f:27:c9:d9:59:81:9b:28:aa:9f:75:f8:29:5b:bd: 18:e3:d8:e7:17:3d:00:52:10:88:60:60:a8:b5:71: 2c:e6:1c:e5:3e:28:ba:38:8b:d8:3f:4b:3e:46:21: 33:02:ec:0d:eb:71:6b:13:95:4b:e4:c2:fc:7a:3e: 3c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:19:2D:93:59:98:F2:FD:F3:D4:B4:05:49:B6:A1:9F:55:D1:A6:AD X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f740::/43 2a09:54c6:dfff::/48 2a0f:6284:41fe::/48 Signature Algorithm: sha256WithRSAEncryption 82:c0:d5:6a:05:cc:a4:57:f4:94:cf:91:b8:c1:31:33:73:f7: 67:6d:40:7c:af:8e:ed:e7:ee:4d:20:27:79:c2:5e:4f:a4:5a: 74:a1:52:a7:93:b7:71:63:3a:f4:ec:0c:3b:dc:6b:e3:85:ae: d1:9e:c4:29:d5:d0:7e:88:c1:4c:40:73:6e:e0:84:1d:98:54: cc:d9:59:25:ea:95:3e:c7:4c:b6:a7:7f:8c:ae:cf:ed:26:f0: 75:8b:7f:34:ad:64:f5:1a:dd:44:c1:e8:6a:b1:e5:b6:ae:b3: 0c:51:7c:29:47:58:9e:03:50:8d:c8:c8:41:26:ed:2c:dd:68: 18:04:75:1d:2d:81:86:8f:d5:f4:ca:58:15:b3:7a:18:1b:62: 0d:b2:96:50:53:29:3f:89:74:ff:d7:b7:f2:f3:ee:6e:a2:07: 0d:bd:3c:f7:23:4f:b6:b5:99:46:61:b9:63:d8:59:cf:28:b2: f8:ae:a4:b1:f5:58:34:12:a4:b6:a7:f3:22:87:e7:5c:02:28: d5:2e:c9:0b:d0:bc:5b:90:81:29:c9:c9:0a:1e:41:95:e5:cc: e8:52:27:8a:ce:1b:c8:c4:8f:4d:bc:68:77:38:dd:f2:b2:60: 54:99:9c:56:28:41:8d:05:82:5c:aa:df:7e:5f:0e:11:6f:d9: 13:3d:1d:12 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUBEhBfRwjlinH7mBA2PXMPSroIgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MzAyMzAzMTNaFw0yNjA4MjkyMzA4MTNaMDMxMTAvBgNV BAMTKEE0MTkyRDkzNTk5OEYyRkRGM0Q0QjQwNTQ5QjZBMTlGNTVEMUE2QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCda9i+EQohTrKyONj2rDxNAXTI Qeg9MPw46LSmxSqn7Tf6i0fQ2ExQ9zlP7XPpj8wxFwx6ByAp69UEFW00BXkiVnvP ZRMEnJuNwEfqN05MOG1WwepSWdfQlpJiOFU4maU+xy8HhbVuWpsYefbYkadomgwO /M30eqrRWOEA9tIcVd3bsEoZVdT/IhHlBjRKFCIMGe6OyReyoPlWbZ3umBgwix5Z 7nSTehnkSBQceKINBHET+5h7yR6cBUhqNmGzkJGi848nydlZgZsoqp91+ClbvRjj 2OcXPQBSEIhgYKi1cSzmHOU+KLo4i9g/Sz5GITMC7A3rcWsTlUvkwvx6PjxPAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUpBktk1mY8v3z1LQFSbahn1XRpq0wHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMxNDYxOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMwIQQCAAIwGwMHBSoF 38P3QAMHACoJVMbf/wMHACoPYoRB/jANBgkqhkiG9w0BAQsFAAOCAQEAgsDVagXM pFf0lM+RuMExM3P3Z21AfK+O7efuTSAnecJeT6RadKFSp5O3cWM69OwMO9xr44Wu 0Z7EKdXQfojBTEBzbuCEHZhUzNlZJeqVPsdMtqd/jK7P7SbwdYt/NK1k9RrdRMHo arHltq6zDFF8KUdYngNQjcjIQSbtLN1oGAR1HS2Bho/V9MpYFbN6GBtiDbKWUFMp P4l0/9e38vPubqIHDb089yNPtrWZRmG5Y9hZzyiy+K6ksfVYNBKktqfzIofnXAIo 1S7JC9C8W5CBKcnJCh5BleXM6FInis4byMSPTbxodzjd8rJgVJmcVihBjQWCXKrf fl8OEW/ZEz0dEg== -----END CERTIFICATE-----Generated at Wed Oct 8 17:36:23 2025 by rpki-client