$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS31898.roa File: AS31898.roa (raw, json) Hash identifier: GHQjhmu2xT+8jXVb8ofiCmcqHwBE/QQ6rfBNUGES5BY= Subject key identifier: 55:7C:50:01:C6:5C:27:EA:BF:BE:BF:A4:6A:DB:ED:3A:B0:A6:09:E6 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 56F0A7FA117A88FD69DE5FDF816B379175740E31 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa Signing time: Mon 26 Jan 2026 19:05:39 +0000 ROA not before: Mon 26 Jan 2026 19:00:39 +0000 ROA not after: Mon 25 Jan 2027 19:05:39 +0000 asID: 31898 IP address blocks: 2a05:dfc3:f6ce::/48 maxlen: 48 2a05:dfc3:f760::/44 maxlen: 48 2a0a:6044:6d00::/48 maxlen: 48 2a0f:6284:30::/44 maxlen: 44 2a0f:6284:4c10::/44 maxlen: 48 2a0f:6284:4c20::/44 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Feb 2026 20:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f0:a7:fa:11:7a:88:fd:69:de:5f:df:81:6b:37:91:75:74:0e:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jan 26 19:00:39 2026 GMT Not After : Jan 25 19:05:39 2027 GMT Subject: CN=557C5001C65C27EABFBEBFA46ADBED3AB0A609E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:3b:14:54:de:b4:71:7e:af:dc:12:bf:91: f8:33:23:9c:44:d5:54:42:49:83:93:6a:f7:96:94: c1:0e:cd:35:84:98:1f:7f:a2:82:46:bf:42:3b:a9: 9f:4c:61:eb:74:b3:94:8f:1b:d4:f9:98:17:7a:39: 0d:25:da:f5:bd:69:ec:b6:aa:82:fd:e6:3d:25:71: 9a:0b:d6:50:a5:7f:8d:40:c4:81:8a:61:2a:35:97: 24:53:66:73:1f:19:8e:0f:6a:38:ed:54:46:9a:1e: 12:5e:ca:18:d6:fc:58:a0:de:4f:97:24:5a:41:e4: 21:ce:a1:ef:0e:3f:88:75:4b:51:5d:02:27:5d:a8: db:dd:00:6f:e7:7d:b6:f4:7d:c2:b8:4d:e6:2f:05: 6c:52:db:9d:02:f1:c7:49:09:4b:70:5d:16:b6:af: 6c:18:dc:a0:dd:e4:b2:e8:58:ac:59:2f:32:45:5b: cc:6f:90:da:ab:55:f8:b3:6d:a0:7a:bc:61:4c:e3: 19:79:25:4a:4d:cb:57:cd:fa:ca:5d:00:79:d1:ca: 43:12:23:79:0f:03:f5:55:b2:bb:c9:54:6b:91:3d: d7:de:48:f3:ce:6a:98:ca:79:b4:31:d8:10:45:43: 44:b6:23:93:aa:71:ba:6e:69:85:98:f0:ba:cf:bb: 1e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7C:50:01:C6:5C:27:EA:BF:BE:BF:A4:6A:DB:ED:3A:B0:A6:09:E6 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f6ce::/48 2a05:dfc3:f760::/44 2a0a:6044:6d00::/48 2a0f:6284:30::/44 2a0f:6284:4c10::-2a0f:6284:4c2f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 65:33:d5:6e:64:1d:f8:c9:6b:65:f2:c7:a8:af:bc:83:e9:c8: 3e:da:10:ea:54:3a:78:bb:a6:01:89:28:6b:ff:e2:40:f9:10: ce:91:16:94:64:6d:ec:de:a6:c6:b1:83:d7:1e:12:90:89:fb: 56:16:04:3d:74:5d:1f:ec:c3:64:57:16:f8:e0:7a:8f:8b:6c: 49:3c:f3:cf:c9:f6:48:24:af:9c:a1:38:6e:ae:1e:1d:64:5b: e0:2f:8f:6f:2f:1f:85:03:b5:64:28:cf:28:ba:ea:90:f9:28: 50:51:3e:c8:e1:88:31:4a:54:cf:03:66:8a:ff:55:bb:69:b0: bb:d9:ea:52:8c:5e:3d:8f:6d:76:ba:6c:59:74:d7:98:11:a9: 7d:1a:4e:0e:b8:c0:a3:70:1c:02:94:3a:1e:2e:06:f4:4f:ac: 8e:31:9a:87:75:d2:7c:ea:a1:ca:80:bd:2e:8f:b6:de:9b:7a: af:6e:b0:61:b3:6f:d5:5b:ec:b7:1f:00:26:c3:20:c1:f4:27: 63:8b:0f:eb:ae:4f:b4:d0:e1:82:92:28:3d:7c:8e:47:38:6d: 30:cf:12:bc:72:f1:4c:e4:66:5e:cd:14:7f:b6:33:82:b7:84: 3c:26:4c:ab:76:6e:33:a7:c5:c9:99:c2:4d:15:dd:9f:81:ce: 95:fa:2a:d9 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUVvCn+hF6iP1p3l/fgWs3kXV0DjEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjAxMjYxOTAwMzlaFw0yNzAxMjUxOTA1MzlaMDMxMTAvBgNV BAMTKDU1N0M1MDAxQzY1QzI3RUFCRkJFQkZBNDZBREJFRDNBQjBBNjA5RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB/jsUVN60cX6v3BK/kfgzI5xE 1VRCSYOTaveWlMEOzTWEmB9/ooJGv0I7qZ9MYet0s5SPG9T5mBd6OQ0l2vW9aey2 qoL95j0lcZoL1lClf41AxIGKYSo1lyRTZnMfGY4PajjtVEaaHhJeyhjW/Fig3k+X JFpB5CHOoe8OP4h1S1FdAiddqNvdAG/nfbb0fcK4TeYvBWxS250C8cdJCUtwXRa2 r2wY3KDd5LLoWKxZLzJFW8xvkNqrVfizbaB6vGFM4xl5JUpNy1fN+spdAHnRykMS I3kPA/VVsrvJVGuRPdfeSPPOapjKebQx2BBFQ0S2I5OqcbpuaYWY8LrPux5PAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUVXxQAcZcJ+q/vr+katvtOrCmCeYwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMzMTg5OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjBRBggrBgEFBQcBBwEB/wRCMEAwPgQCAAIwOAMHACoF 38P2zgMHBCoF38P3YAMHACoKYERtAAMHBCoPYoQAMDASAwcEKg9ihEwQAwcEKg9i hEwgMA0GCSqGSIb3DQEBCwUAA4IBAQBlM9VuZB34yWtl8seor7yD6cg+2hDqVDp4 u6YBiShr/+JA+RDOkRaUZG3s3qbGsYPXHhKQiftWFgQ9dF0f7MNkVxb44HqPi2xJ PPPPyfZIJK+coThurh4dZFvgL49vLx+FA7VkKM8ouuqQ+ShQUT7I4YgxSlTPA2aK /1W7abC72epSjF49j212umxZdNeYEal9Gk4OuMCjcBwClDoeLgb0T6yOMZqHddJ8 6qHKgL0uj7bem3qvbrBhs2/VW+y3HwAmwyDB9Cdjiw/rrk+00OGCkig9fI5HOG0w zxK8cvFM5GZezRR/tjOCt4Q8Jkyrdm4zp8XJmcJNFd2fgc6V+irZ -----END CERTIFICATE-----Generated at Thu Feb 26 03:26:00 2026 by rpki-client