$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS215108.roa File: AS215108.roa (raw, json) Hash identifier: 7CSeJz/MyXsx5O6RhhA+ux1g+MTPQk5VnZYEIlNBWUo= Subject key identifier: 0B:DE:A4:CB:95:00:FD:7C:B2:25:5A:5D:CB:79:0D:3E:8B:93:17:94 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 4698ACF3379EB0443BD6128A26EE4307A01DE285 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS215108.roa Signing time: Sat 30 Aug 2025 23:08:11 +0000 ROA not before: Sat 30 Aug 2025 23:03:11 +0000 ROA not after: Sat 29 Aug 2026 23:08:11 +0000 asID: 215108 IP address blocks: 2a09:54c6:2000::/36 maxlen: 36 2a0a:6044:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 03:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:98:ac:f3:37:9e:b0:44:3b:d6:12:8a:26:ee:43:07:a0:1d:e2:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 30 23:03:11 2025 GMT Not After : Aug 29 23:08:11 2026 GMT Subject: CN=0BDEA4CB9500FD7CB2255A5DCB790D3E8B931794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2a:b4:4d:5c:ea:2e:a9:ea:c6:68:39:df:81: 49:8c:f8:e4:55:13:f6:b0:6b:27:90:d9:db:f1:ab: ce:18:24:35:39:f7:91:39:9b:a8:03:a9:bf:72:a8: 47:b0:7b:14:c3:20:aa:20:42:19:dd:7d:ff:15:21: ab:6f:b7:ed:a0:b8:4f:6c:c8:b1:20:fc:16:f1:64: d5:f7:32:57:57:b4:38:8b:ad:4f:4f:58:2f:cf:70: 44:81:18:2f:c2:ee:c3:3c:ff:be:a0:b9:d8:e4:24: d6:cd:65:cb:0f:f0:78:4e:52:32:81:fb:4a:97:fb: 26:6a:40:e9:6b:ec:14:bc:b2:7e:c4:22:b0:e7:39: 5e:3d:66:b6:2b:ca:ad:f8:6d:73:69:c5:42:83:49: d2:a2:10:b4:69:25:76:15:44:35:6d:cc:74:08:7c: 14:e7:b5:00:fc:9c:46:20:a8:28:39:7e:9e:9c:2a: f6:4f:97:9f:92:6f:ee:8e:b3:6f:a7:19:8f:6a:69: f5:9b:0a:9b:bd:5f:30:57:16:98:9b:62:c0:2f:03: f1:6b:8e:b0:21:70:01:f0:ef:d0:7e:50:dd:d0:e6: 31:70:18:77:5e:df:87:d8:2b:5d:83:bb:33:6f:93: da:ee:d5:d1:38:7a:b1:d7:a1:19:29:0e:00:ed:11: 23:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:DE:A4:CB:95:00:FD:7C:B2:25:5A:5D:CB:79:0D:3E:8B:93:17:94 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS215108.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:2000::/36 2a0a:6044:2000::/36 Signature Algorithm: sha256WithRSAEncryption 40:af:83:a8:af:a0:33:c7:93:04:27:d4:d2:a3:bd:ec:49:21: 2c:e2:4f:0d:a7:32:22:55:78:c0:90:22:fd:5f:76:bc:cf:2e: 1b:6f:33:d7:32:0c:6f:5a:42:34:5b:18:7a:ec:04:5b:94:05: 5f:28:4c:8c:66:75:83:cf:eb:a8:33:9e:5a:61:f8:0a:75:88: 02:b6:9f:61:19:bf:9a:e6:56:86:08:8a:dc:7d:c0:3d:ca:9f: 9c:7e:d4:8d:6a:8b:95:1e:57:40:96:cf:10:ce:5b:5f:9b:b4: e2:3f:e6:74:36:d9:c7:9f:75:6c:69:e3:1e:4e:d5:1e:a2:0b: b2:b0:54:57:3c:d2:da:1f:6c:c2:a2:0a:e7:c5:19:48:29:07: a4:27:0d:a5:0a:51:23:60:4f:90:00:d1:38:12:d7:28:bc:dd: c9:26:05:5c:6a:3c:64:c1:95:87:3e:02:bc:2c:ce:02:3f:a8: e4:8a:70:ff:f7:60:9d:80:1d:dd:ce:93:2c:fe:04:e8:0c:cb: 99:b6:56:9a:a4:a3:6f:c1:27:08:3b:96:ac:2e:e3:42:91:ed: eb:73:63:19:ce:09:39:d1:59:9e:6f:ec:eb:c1:0c:ae:39:e3: 8d:bf:59:87:a1:c9:3e:03:1e:74:79:0a:28:a5:bf:1a:16:6c: d5:e5:b4:48 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIURpis8zeesEQ71hKKJu5DB6Ad4oUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MzAyMzAzMTFaFw0yNjA4MjkyMzA4MTFaMDMxMTAvBgNV BAMTKDBCREVBNENCOTUwMEZEN0NCMjI1NUE1RENCNzkwRDNFOEI5MzE3OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8KrRNXOouqerGaDnfgUmM+ORV E/awayeQ2dvxq84YJDU595E5m6gDqb9yqEewexTDIKogQhndff8VIatvt+2guE9s yLEg/BbxZNX3MldXtDiLrU9PWC/PcESBGC/C7sM8/76gudjkJNbNZcsP8HhOUjKB +0qX+yZqQOlr7BS8sn7EIrDnOV49ZrYryq34bXNpxUKDSdKiELRpJXYVRDVtzHQI fBTntQD8nEYgqCg5fp6cKvZPl5+Sb+6Os2+nGY9qafWbCpu9XzBXFpibYsAvA/Fr jrAhcAHw79B+UN3Q5jFwGHde34fYK12DuzNvk9ru1dE4erHXoRkpDgDtESOzAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUC96ky5UA/XyyJVpdy3kNPouTF5QwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMTUxMDgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUHAQcBAf8EGjAYMBYEAgACMBADBgQq CVTGIAMGBCoKYEQgMA0GCSqGSIb3DQEBCwUAA4IBAQBAr4Oor6Azx5MEJ9TSo73s SSEs4k8NpzIiVXjAkCL9X3a8zy4bbzPXMgxvWkI0Wxh67ARblAVfKEyMZnWDz+uo M55aYfgKdYgCtp9hGb+a5laGCIrcfcA9yp+cftSNaouVHldAls8Qzltfm7TiP+Z0 NtnHn3VsaeMeTtUeoguysFRXPNLaH2zCogrnxRlIKQekJw2lClEjYE+QANE4Etco vN3JJgVcajxkwZWHPgK8LM4CP6jkinD/92CdgB3dzpMs/gToDMuZtlaapKNvwScI O5asLuNCke3rc2MZzgk50Vmeb+zrwQyuOeONv1mHock+Ax50eQoopb8aFmzV5bRI -----END CERTIFICATE-----Generated at Wed Oct 8 17:35:54 2025 by rpki-client