$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS401818.roa File: AS401818.roa (raw, json) Hash identifier: jHyX+ZOMGFYAH4zzmgP71ISVjLBnqceldzWIfjYf+OU= Subject key identifier: 4A:C7:75:12:C6:3A:C0:CE:72:FB:E0:F1:54:C4:E3:DF:AB:B6:86:A2 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 48FDB1731E06B067F898806B5964D04562ADFB57 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS401818.roa Signing time: Thu 02 Oct 2025 09:50:53 +0000 ROA not before: Thu 02 Oct 2025 09:45:53 +0000 ROA not after: Thu 01 Oct 2026 09:50:53 +0000 asID: 401818 IP address blocks: 2a0f:6283:7000::/36 maxlen: 36 2a0f:6283:c000::/36 maxlen: 36 2a0f:6283:d000::/36 maxlen: 36 2a0f:6283:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 13:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:fd:b1:73:1e:06:b0:67:f8:98:80:6b:59:64:d0:45:62:ad:fb:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Oct 2 09:45:53 2025 GMT Not After : Oct 1 09:50:53 2026 GMT Subject: CN=4AC77512C63AC0CE72FBE0F154C4E3DFABB686A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9b:16:b4:51:72:4e:58:cd:22:65:9b:e7:a4: 5d:d1:5c:d3:5b:43:b6:a1:5b:48:ad:d4:0b:37:b6: e0:01:5b:25:55:50:86:ab:ab:5b:cc:54:49:87:4a: 28:58:5c:3c:fd:e0:77:5a:9a:25:25:ab:77:74:a6: 15:dc:81:25:8c:9c:ca:b1:8e:80:b0:7a:79:46:f1: b7:f8:c5:08:92:7b:51:44:7a:e8:2d:13:e0:55:77: f8:31:86:dc:75:d3:47:19:25:d7:ec:44:85:ce:b9: 34:df:f7:76:ce:1b:3f:9c:c5:9d:1c:fa:85:ca:db: c1:7d:d7:76:63:4d:bc:54:73:48:e2:1e:ea:56:b9: 17:6a:d8:51:f4:15:4f:76:f8:48:35:6a:a3:96:28: 3e:be:fe:96:31:04:c0:1b:31:14:56:cd:bc:08:62: 2b:79:05:28:88:2b:0f:49:e7:68:5e:39:ef:11:1b: 94:20:7a:6e:e9:f9:5b:27:6b:34:6f:73:30:ad:a2: a3:99:c8:a6:38:3a:f0:65:e8:db:8d:f5:01:f9:ea: 3d:09:85:1a:8c:29:52:cf:78:e5:f2:8d:63:23:ca: 6b:ac:04:30:d7:d5:4f:9f:09:db:7f:8e:15:43:11: 2c:3c:62:46:5d:2a:14:24:e3:95:e0:54:0e:74:55: 34:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C7:75:12:C6:3A:C0:CE:72:FB:E0:F1:54:C4:E3:DF:AB:B6:86:A2 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS401818.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:7000::/36 2a0f:6283:c000::-2a0f:6283:efff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 87:d2:0c:d4:35:00:e7:e9:5b:2e:1e:7f:55:85:94:0d:db:bb: 81:e9:e7:42:b3:ac:ef:52:94:26:0b:64:aa:f3:d7:cd:4b:55: 6e:d8:df:70:17:fb:e7:d4:02:ca:39:cf:7c:25:de:28:50:97: 6e:8e:e7:05:63:bf:bf:20:cd:b2:06:dc:3e:87:dc:e1:25:72: eb:8f:d0:b3:17:a1:bb:54:42:f2:8d:df:7c:25:57:c0:a7:6e: bb:de:6f:fc:a3:93:17:fe:60:3b:30:8f:60:fa:a1:ab:f4:5c: e9:60:c9:c4:25:9c:de:ff:d0:8d:6b:60:46:23:36:16:76:9c: a9:22:bc:96:2e:1f:af:5c:b2:d4:66:c5:ca:53:a8:d3:75:10: bb:80:ee:02:43:d8:1b:07:26:87:a9:9d:36:2f:82:4e:20:2a: 45:51:e1:af:4f:27:a7:61:78:1b:15:07:15:58:49:01:ec:5a: 58:66:a3:8c:c5:f5:68:cb:99:9b:44:28:d7:2b:84:96:bb:c0: 5e:44:88:22:19:dd:09:43:95:0e:dc:25:ca:5b:de:24:e3:fc: 84:6c:7c:3a:71:84:47:ec:20:6d:da:25:42:18:30:2a:d1:b7: d7:01:cb:e9:31:26:1d:77:0b:54:a0:d7:6f:b9:34:33:d9:ae: f4:0a:e5:b9 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUSP2xcx4GsGf4mIBrWWTQRWKt+1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTEwMDIwOTQ1NTNaFw0yNjEwMDEwOTUwNTNaMDMxMTAvBgNV BAMTKDRBQzc3NTEyQzYzQUMwQ0U3MkZCRTBGMTU0QzRFM0RGQUJCNjg2QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzmxa0UXJOWM0iZZvnpF3RXNNb Q7ahW0it1As3tuABWyVVUIarq1vMVEmHSihYXDz94HdamiUlq3d0phXcgSWMnMqx joCwenlG8bf4xQiSe1FEeugtE+BVd/gxhtx100cZJdfsRIXOuTTf93bOGz+cxZ0c +oXK28F913ZjTbxUc0jiHupWuRdq2FH0FU92+Eg1aqOWKD6+/pYxBMAbMRRWzbwI Yit5BSiIKw9J52heOe8RG5Qgem7p+VsnazRvczCtoqOZyKY4OvBl6NuN9QH56j0J hRqMKVLPeOXyjWMjymusBDDX1U+fCdt/jhVDESw8YkZdKhQk45XgVA50VTQFAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUSsd1EsY6wM5y++DxVMTj36u2hqIwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVM0MDE4MTgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwMwYIKwYBBQUHAQcBAf8EJDAiMCAEAgACMBoDBgQq D2KDcDAQAwYGKg9ig8ADBgQqD2KD4DANBgkqhkiG9w0BAQsFAAOCAQEAh9IM1DUA 5+lbLh5/VYWUDdu7gennQrOs71KUJgtkqvPXzUtVbtjfcBf759QCyjnPfCXeKFCX bo7nBWO/vyDNsgbcPofc4SVy64/Qsxehu1RC8o3ffCVXwKduu95v/KOTF/5gOzCP YPqhq/Rc6WDJxCWc3v/QjWtgRiM2FnacqSK8li4fr1yy1GbFylOo03UQu4DuAkPY Gwcmh6mdNi+CTiAqRVHhr08np2F4GxUHFVhJAexaWGajjMX1aMuZm0Qo1yuElrvA XkSIIhndCUOVDtwlylveJOP8hGx8OnGER+wgbdolQhgwKtG31wHL6TEmHXcLVKDX b7k0M9mu9ArluQ== -----END CERTIFICATE-----Generated at Wed Oct 8 17:40:37 2025 by rpki-client