$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215108.roa File: AS215108.roa (raw, json) Hash identifier: eqfVBisiJiLDkjQX46/RN5jErMdae7quVhLLT5LOA5c= Subject key identifier: A1:90:CD:A1:D6:9D:3F:44:1A:FC:C7:25:DD:F0:18:2F:15:D8:36:B1 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 417A0C90159747C8E8242CFEE8A5771CBA4D3275 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215108.roa Signing time: Thu 03 Jul 2025 15:53:09 +0000 ROA not before: Thu 03 Jul 2025 15:48:09 +0000 ROA not after: Thu 02 Jul 2026 15:53:09 +0000 asID: 215108 IP address blocks: 2a09:54c6:2000::/36 maxlen: 36 2a0a:6044:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7a:0c:90:15:97:47:c8:e8:24:2c:fe:e8:a5:77:1c:ba:4d:32:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 3 15:48:09 2025 GMT Not After : Jul 2 15:53:09 2026 GMT Subject: CN=A190CDA1D69D3F441AFCC725DDF0182F15D836B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7f:28:63:87:ff:80:db:c6:e8:51:e5:b5:d5: c8:03:85:1c:20:b7:87:a3:f8:54:01:2b:69:51:90: 44:7b:fe:86:ad:56:fc:74:fd:df:11:8f:42:1f:59: 40:aa:f7:78:46:fc:2d:3c:da:c6:60:bb:be:39:3f: 39:16:0a:f7:96:ba:bf:5a:3a:c7:01:0f:a6:d8:ab: dc:7b:c6:4a:20:1f:4b:2a:af:a2:da:05:ee:34:71: 8c:08:e1:3f:6a:43:00:38:15:7b:f4:7c:83:ab:af: 7c:25:e6:71:39:e6:92:b1:ff:1f:10:c1:25:bd:de: 3a:ba:0a:f6:64:64:d1:12:37:79:00:b6:7b:3a:df: 3a:8e:64:a4:90:93:6b:11:9e:b9:f2:e4:87:59:1e: 64:0e:f9:34:a6:20:57:a1:35:30:92:f8:4c:b9:bb: 75:b0:72:9a:1b:d5:3a:b4:c3:f0:5b:7b:e8:24:37: ab:a8:33:e7:7f:d6:55:98:8a:0d:2d:4c:66:3a:46: 45:df:88:72:7d:a9:61:f4:f3:60:19:26:77:c5:28: 97:7a:a4:93:c0:f2:34:d7:7e:4d:f3:c2:dd:ac:c3: b2:75:8c:e2:d8:f6:bb:24:73:be:79:d3:ff:2e:e7: a1:8a:c6:8e:94:5f:ff:79:c8:64:79:aa:0e:ac:7c: 6a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:90:CD:A1:D6:9D:3F:44:1A:FC:C7:25:DD:F0:18:2F:15:D8:36:B1 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215108.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:2000::/36 2a0a:6044:2000::/36 Signature Algorithm: sha256WithRSAEncryption 18:b5:a2:3d:65:08:db:bc:27:5b:3e:42:db:9a:dd:81:53:dc: ef:22:3d:77:a0:1c:2e:95:3c:04:7b:b5:16:b4:33:b6:f9:5b: a6:4c:9c:9a:a6:8d:b5:d7:fe:2a:d4:71:4c:35:cf:84:dc:94: 94:47:4e:9b:9b:43:eb:67:25:86:f1:e7:16:8c:9a:1a:e7:38: 2f:b1:2a:46:eb:9b:7a:c7:ad:e8:ff:25:9c:c3:d9:0f:5a:09: 87:ed:cc:59:96:29:e2:b9:a1:bc:47:9c:4f:3c:e6:da:dc:d5: e5:8e:bb:8e:f4:11:87:05:4c:3b:a6:65:92:ae:12:ef:9f:cf: da:da:cc:32:10:e6:90:bb:d2:81:a8:db:d3:b7:75:90:de:32: 65:8d:16:4c:7e:23:7f:46:c6:f5:f9:48:e0:9c:68:5d:d2:46: 8c:99:34:6e:24:97:58:5f:0c:f6:9f:d8:f2:2d:1f:b4:e3:8e: 52:33:ea:d9:b1:2f:da:88:f2:9a:1c:a3:6f:1d:f3:22:3d:8f: 93:07:29:af:ea:4c:06:c2:75:53:26:b4:6e:c3:8e:91:9e:6e: 75:4f:9c:45:c5:64:9a:f8:87:1f:83:9f:44:d1:1a:07:05:3a: 20:40:6d:10:66:c7:8d:c6:18:f2:9d:ac:4f:09:60:f0:27:c2: a2:34:67:33 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUQXoMkBWXR8joJCz+6KV3HLpNMnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MDMxNTQ4MDlaFw0yNjA3MDIxNTUzMDlaMDMxMTAvBgNV BAMTKEExOTBDREExRDY5RDNGNDQxQUZDQzcyNURERjAxODJGMTVEODM2QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOfyhjh/+A28boUeW11cgDhRwg t4ej+FQBK2lRkER7/oatVvx0/d8Rj0IfWUCq93hG/C082sZgu745PzkWCveWur9a OscBD6bYq9x7xkogH0sqr6LaBe40cYwI4T9qQwA4FXv0fIOrr3wl5nE55pKx/x8Q wSW93jq6CvZkZNESN3kAtns63zqOZKSQk2sRnrny5IdZHmQO+TSmIFehNTCS+Ey5 u3Wwcpob1Tq0w/Bbe+gkN6uoM+d/1lWYig0tTGY6RkXfiHJ9qWH082AZJnfFKJd6 pJPA8jTXfk3zwt2sw7J1jOLY9rskc7550/8u56GKxo6UX/95yGR5qg6sfGqPAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUoZDNodadP0Qa/Mcl3fAYLxXYNrEwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTUxMDgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgQq CVTGIAMGBCoKYEQgMA0GCSqGSIb3DQEBCwUAA4IBAQAYtaI9ZQjbvCdbPkLbmt2B U9zvIj13oBwulTwEe7UWtDO2+VumTJyapo211/4q1HFMNc+E3JSUR06bm0PrZyWG 8ecWjJoa5zgvsSpG65t6x63o/yWcw9kPWgmH7cxZliniuaG8R5xPPOba3NXljruO 9BGHBUw7pmWSrhLvn8/a2swyEOaQu9KBqNvTt3WQ3jJljRZMfiN/Rsb1+UjgnGhd 0kaMmTRuJJdYXwz2n9jyLR+0445SM+rZsS/aiPKaHKNvHfMiPY+TBymv6kwGwnVT JrRuw46Rnm51T5xFxWSa+Icfg59E0RoHBTogQG0QZseNxhjynaxPCWDwJ8KiNGcz -----END CERTIFICATE-----Generated at Sat Jul 5 02:08:51 2025 by rpki-client