$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS211780.roa File: AS211780.roa (raw, json) Hash identifier: Y65GyAZYjlfqjlSSRpwtvA9hd/hmWpWYGWrMmXzpkIg= Subject key identifier: 2C:62:65:AB:46:80:B3:1B:C2:18:56:9B:87:4B:94:CA:A1:BD:0D:71 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 50CFDAF0AC784905FC5868DD2ED4A90D974255D9 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS211780.roa Signing time: Thu 03 Jul 2025 15:53:07 +0000 ROA not before: Thu 03 Jul 2025 15:48:07 +0000 ROA not after: Thu 02 Jul 2026 15:53:07 +0000 asID: 211780 IP address blocks: 2a05:dfc3:fd20::/44 maxlen: 52 2a05:dfc3:fd20::/48 maxlen: 48 2a05:dfc3:fd24::/48 maxlen: 48 2a0f:6280:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:cf:da:f0:ac:78:49:05:fc:58:68:dd:2e:d4:a9:0d:97:42:55:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:07 2025 GMT Not After : Jul 2 15:53:07 2026 GMT Subject: CN=2C6265AB4680B31BC218569B874B94CAA1BD0D71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b9:72:b2:79:08:61:26:f5:31:6a:1d:a6:47: cb:37:aa:a8:6e:f8:77:c4:45:34:77:4f:fa:de:a9: fa:96:90:b9:bf:09:fa:e5:d1:01:ad:57:a6:8e:2e: e2:65:4b:3e:50:ac:72:7d:f4:cb:bd:bd:24:16:1b: ad:6e:6f:ff:54:bc:e4:2e:ad:d8:41:17:06:44:82: 2d:a8:f0:1c:cd:55:e9:48:e6:40:95:dd:3d:55:0b: de:a8:13:56:34:43:ce:26:a5:ec:c6:2b:89:c5:77: a0:0a:03:66:92:7c:13:93:5d:d2:ea:3f:ba:ae:51: 50:51:83:e7:50:8b:6b:06:44:3a:c8:8d:69:56:79: e7:5b:6a:a9:3d:4d:38:5c:63:af:4b:88:d2:4f:ca: a9:c4:36:11:32:fe:a3:3c:72:b2:61:f7:e9:b2:cb: 37:e0:c3:f3:b2:9b:f8:7f:5a:94:49:16:f2:fd:8f: 0f:5b:5f:f1:a4:4d:ca:60:ee:bf:c0:40:2b:7a:62: 7e:1f:88:4e:a8:b4:9b:c9:34:c5:c0:63:5b:d3:3b: 44:b2:6a:c0:20:aa:5e:86:fd:3e:df:0d:76:08:1f: 35:f8:c6:68:1e:ad:d0:07:d0:01:64:ab:ca:c3:f9: ad:e3:8f:60:30:25:83:5b:4f:7b:e0:25:1b:14:42: 6a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:62:65:AB:46:80:B3:1B:C2:18:56:9B:87:4B:94:CA:A1:BD:0D:71 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS211780.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd20::/44 2a0f:6280:1000::/40 Signature Algorithm: sha256WithRSAEncryption 2c:8a:ad:dc:c5:b9:3f:f3:4d:c9:87:a4:f2:45:a2:cf:61:d1: e6:f5:43:c7:ea:88:a2:ce:25:7b:d0:3a:91:65:a0:cc:11:4c: ba:55:63:2e:8d:ed:41:1a:f8:3e:27:9b:b7:27:1c:d3:c5:3d: 48:fc:9d:ef:56:74:06:e9:af:6a:70:d0:c0:b9:f1:b2:ab:6c: 0d:a6:d6:3d:92:21:99:d4:de:76:fe:b7:5f:f4:74:07:4a:e2: 42:11:b2:61:df:24:ce:af:f6:7e:b1:7d:c9:23:f9:d1:77:07: a4:03:b1:b3:36:6c:e0:0b:e7:6f:d9:9e:a2:01:5b:83:17:e7: 53:f2:cd:69:80:cb:0f:ad:e3:44:20:be:a7:e7:f9:d2:11:69: 57:73:09:f7:0d:03:a1:29:e1:7b:0b:b7:15:97:39:0f:64:92: a5:61:62:1b:47:84:39:fb:65:79:c7:ca:1c:0c:7e:5e:90:b0: ee:eb:8f:80:94:8d:09:3c:70:33:0f:f7:a7:21:96:a2:d3:d7: db:9c:17:ad:69:e2:62:ca:78:9a:a9:ef:51:7f:75:61:78:93: 05:1d:9b:1f:c4:ed:30:5b:22:05:8a:d3:6a:be:c8:43:9f:39: df:e4:41:97:7b:c5:57:b4:c3:48:7e:5e:80:6f:eb:0e:fb:38: c2:10:a3:ec -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUM/a8Kx4SQX8WGjdLtSpDZdCVdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MDdaFw0yNjA3MDIxNTUzMDdaMDMxMTAvBgNV BAMTKDJDNjI2NUFCNDY4MEIzMUJDMjE4NTY5Qjg3NEI5NENBQTFCRDBENzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNuXKyeQhhJvUxah2mR8s3qqhu +HfERTR3T/reqfqWkLm/Cfrl0QGtV6aOLuJlSz5QrHJ99Mu9vSQWG61ub/9UvOQu rdhBFwZEgi2o8BzNVelI5kCV3T1VC96oE1Y0Q84mpezGK4nFd6AKA2aSfBOTXdLq P7quUVBRg+dQi2sGRDrIjWlWeedbaqk9TThcY69LiNJPyqnENhEy/qM8crJh9+my yzfgw/Oym/h/WpRJFvL9jw9bX/GkTcpg7r/AQCt6Yn4fiE6otJvJNMXAY1vTO0Sy asAgql6G/T7fDXYIHzX4xmgerdAH0AFkq8rD+a3jj2AwJYNbT3vgJRsUQmpPAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQULGJlq0aAsxvCGFabh0uUyqG9DXEwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTE3ODAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBwQq Bd/D/SADBgAqD2KAEDANBgkqhkiG9w0BAQsFAAOCAQEALIqt3MW5P/NNyYek8kWi z2HR5vVDx+qIos4le9A6kWWgzBFMulVjLo3tQRr4Piebtycc08U9SPyd71Z0Bumv anDQwLnxsqtsDabWPZIhmdTedv63X/R0B0riQhGyYd8kzq/2frF9ySP50XcHpAOx szZs4Avnb9meogFbgxfnU/LNaYDLD63jRCC+p+f50hFpV3MJ9w0DoSnhewu3FZc5 D2SSpWFiG0eEOftlecfKHAx+XpCw7uuPgJSNCTxwMw/3pyGWotPX25wXrWniYsp4 mqnvUX91YXiTBR2bH8TtMFsiBYrTar7IQ5853+RBl3vFV7TDSH5egG/rDvs4whCj 7A== -----END CERTIFICATE-----Generated at Sat Jul 5 02:08:08 2025 by rpki-client