$ rpki-client -vvf krill.cxy.hk/repo/Xinyu/4/326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa File: 326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa (raw, json) Hash identifier: +AYzvxTOdmaj71wPUnYNAWebe4QXVmX6EA2aQO2VSuQ= Subject key identifier: 98:5F:7B:84:88:3D:3B:4F:F0:A6:5B:87:4F:1B:8F:F8:5D:C0:31:AC Certificate issuer: /CN=321FBFE5FB2042FF2BB2EE8F5E325D963C17C997 Certificate serial: 07495D22E62575BE84591AA0AEB2279DBF6B8E76 Authority key identifier: 32:1F:BF:E5:FB:20:42:FF:2B:B2:EE:8F:5E:32:5D:96:3C:17:C9:97 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/321FBFE5FB2042FF2BB2EE8F5E325D963C17C997.cer Subject info access: rsync://krill.cxy.hk/repo/Xinyu/4/326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa Signing time: Sun 31 May 2026 17:34:30 +0000 ROA not before: Sun 31 May 2026 17:29:30 +0000 ROA not after: Sun 30 May 2027 17:34:30 +0000 asID: 206069 IP address blocks: 2a0f:1cc5:2411::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.cxy.hk/repo/Xinyu/4/321FBFE5FB2042FF2BB2EE8F5E325D963C17C997.crl rsync://krill.cxy.hk/repo/Xinyu/4/321FBFE5FB2042FF2BB2EE8F5E325D963C17C997.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/321FBFE5FB2042FF2BB2EE8F5E325D963C17C997.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/1BE240021A287F298973D9EA28DFC80735FD5800.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/1BE240021A287F298973D9EA28DFC80735FD5800.mft rsync://rpki.ripe.net/repository/DEFAULT/G-JAAhoofymJc9nqKN_IBzX9WAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jun 2026 08:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:49:5d:22:e6:25:75:be:84:59:1a:a0:ae:b2:27:9d:bf:6b:8e:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=321FBFE5FB2042FF2BB2EE8F5E325D963C17C997 Validity Not Before: May 31 17:29:30 2026 GMT Not After : May 30 17:34:30 2027 GMT Subject: CN=985F7B84883D3B4FF0A65B874F1B8FF85DC031AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b1:64:7e:8f:4b:3b:66:27:f8:51:17:dd:0f: fe:b4:eb:c8:5a:55:a4:aa:77:5a:56:e3:7e:82:22: 4d:66:d3:9c:2e:e2:c3:8c:83:83:d3:46:c9:ad:1d: 0f:b1:5a:4a:31:b1:8a:ac:ed:8d:ca:7f:d0:1d:7b: c2:a3:d1:d6:c6:26:c8:57:df:60:e2:e6:09:dd:d6: 72:09:35:45:08:de:a2:bc:1c:57:33:d0:d3:88:80: 53:39:dd:6e:22:fe:5b:45:fc:9b:9b:99:9c:c6:80: 11:76:f0:c4:9c:23:65:23:c8:e0:fe:ae:34:04:6d: da:e7:1d:9d:d8:a7:4e:d1:4c:1a:f6:f2:98:37:e4: e7:d7:d3:74:9e:7b:4d:9a:34:e5:29:20:84:3d:e9: dd:21:02:ee:a7:65:0d:08:d5:ee:10:f7:49:b7:ee: fb:5b:f4:7e:ef:94:bf:8e:f8:36:3d:60:0e:4e:c1: 1c:68:6a:00:13:e4:d0:1c:7f:9b:b0:d9:c2:8f:91: fb:8a:d2:b3:5c:7b:bd:b4:7d:de:b2:bb:4c:55:e4: 0e:99:df:61:be:e6:89:0d:56:7b:c0:c9:13:68:80: 36:40:c5:b4:80:ea:9c:ab:12:2f:ab:4f:0d:53:46: ee:62:60:40:4a:55:41:65:61:a1:5c:2d:04:5e:3a: 85:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:5F:7B:84:88:3D:3B:4F:F0:A6:5B:87:4F:1B:8F:F8:5D:C0:31:AC X509v3 Authority Key Identifier: keyid:32:1F:BF:E5:FB:20:42:FF:2B:B2:EE:8F:5E:32:5D:96:3C:17:C9:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.cxy.hk/repo/Xinyu/4/321FBFE5FB2042FF2BB2EE8F5E325D963C17C997.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/321FBFE5FB2042FF2BB2EE8F5E325D963C17C997.cer Subject Information Access: Signed Object - URI:rsync://krill.cxy.hk/repo/Xinyu/4/326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:2411::/48 Signature Algorithm: sha256WithRSAEncryption 09:17:4f:01:4a:2e:fe:f7:8f:c9:98:9a:10:85:5a:5f:e3:49: a1:17:3d:cb:62:44:a7:6c:ac:ae:f1:84:09:e2:3b:1c:63:bb: 14:eb:9b:fe:cf:a4:ef:5d:1b:76:7e:45:86:82:13:b0:5a:32: b6:36:fa:7f:cb:3b:e3:53:e2:ee:fc:24:f6:16:23:ad:84:40: 04:a3:89:13:db:70:4a:e0:37:08:f7:a8:ee:83:f8:39:4c:80: 42:f8:ae:5c:e2:f9:95:cd:2b:0d:d2:9f:1c:f3:1a:8b:a5:8c: 3c:61:50:cb:fc:15:80:7c:ac:99:6a:9c:08:d1:d7:82:26:51: 5c:22:1a:4f:da:fd:1a:43:78:73:b0:83:b0:bd:c4:a6:5e:1e: 59:4d:ee:71:54:02:6e:da:46:8a:b4:94:da:35:f3:b0:60:89: a2:65:76:e2:18:32:18:7a:f3:14:0b:82:cd:a0:28:6b:0b:e3: 5d:f8:34:7e:9c:e9:51:69:41:a6:dd:53:31:b5:36:3a:af:aa: f5:4a:e2:90:dc:a1:1d:d4:56:76:d3:98:c6:71:48:db:40:ee: 84:41:ab:e9:dd:ab:e0:67:80:e4:8c:91:de:8a:87:dc:3a:66: 2c:61:d8:05:2f:e7:21:e7:ac:5d:a0:e0:73:dd:3e:0b:64:17: 26:63:4d:5a -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUB0ldIuYldb6EWRqgrrInnb9rjnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzIxRkJGRTVGQjIwNDJGRjJCQjJFRThGNUUzMjVEOTYz QzE3Qzk5NzAeFw0yNjA1MzExNzI5MzBaFw0yNzA1MzAxNzM0MzBaMDMxMTAvBgNV BAMTKDk4NUY3Qjg0ODgzRDNCNEZGMEE2NUI4NzRGMUI4RkY4NURDMDMxQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCosWR+j0s7Zif4URfdD/6068ha VaSqd1pW436CIk1m05wu4sOMg4PTRsmtHQ+xWkoxsYqs7Y3Kf9Ade8Kj0dbGJshX 32Di5gnd1nIJNUUI3qK8HFcz0NOIgFM53W4i/ltF/JubmZzGgBF28MScI2UjyOD+ rjQEbdrnHZ3Yp07RTBr28pg35OfX03See02aNOUpIIQ96d0hAu6nZQ0I1e4Q90m3 7vtb9H7vlL+O+DY9YA5OwRxoagAT5NAcf5uw2cKPkfuK0rNce720fd6yu0xV5A6Z 32G+5okNVnvAyRNogDZAxbSA6pyrEi+rTw1TRu5iYEBKVUFlYaFcLQReOoXRAgMB AAGjggIZMIICFTAdBgNVHQ4EFgQUmF97hIg9O0/wpluHTxuP+F3AMawwHwYDVR0j BBgwFoAUMh+/5fsgQv8rsu6PXjJdljwXyZcwDgYDVR0PAQH/BAQDAgeAMF8GA1Ud HwRYMFYwVKBSoFCGTnJzeW5jOi8va3JpbGwuY3h5LmhrL3JlcG8vWGlueXUvNC8z MjFGQkZFNUZCMjA0MkZGMkJCMkVFOEY1RTMyNUQ5NjNDMTdDOTk3LmNybDCBngYI KwYBBQUHAQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzhhZmI1ZmUyLTNjMmEtNDkzOS05NWU5 LTAwNzdiODBiNGYwZS8wLzMyMUZCRkU1RkIyMDQyRkYyQkIyRUU4RjVFMzI1RDk2 M0MxN0M5OTcuY2VyMIGCBggrBgEFBQcBCwR2MHQwcgYIKwYBBQUHMAuGZnJzeW5j Oi8va3JpbGwuY3h5LmhrL3JlcG8vWGlueXUvNC8zMjYxMzA2NjNhMzE2MzYzMzUz YTMyMzQzMTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDM2MzAzNjM5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAKg8cxSQRMA0GCSqGSIb3DQEBCwUAA4IBAQAJF08BSi7+94/JmJoQ hVpf40mhFz3LYkSnbKyu8YQJ4jscY7sU65v+z6TvXRt2fkWGghOwWjK2Nvp/yzvj U+Lu/CT2FiOthEAEo4kT23BK4DcI96jug/g5TIBC+K5c4vmVzSsN0p8c8xqLpYw8 YVDL/BWAfKyZapwI0deCJlFcIhpP2v0aQ3hzsIOwvcSmXh5ZTe5xVAJu2kaKtJTa NfOwYImiZXbiGDIYevMUC4LNoChrC+Nd+DR+nOlRaUGm3VMxtTY6r6r1SuKQ3KEd 1FZ205jGcUjbQO6EQavp3avgZ4DkjJHeiofcOmYsYdgFL+ch56xdoOBz3T4LZBcm Y01a -----END CERTIFICATE-----Generated at Tue Jun 2 21:53:47 2026 by rpki-client