$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS0.roa File: AS0.roa (raw, json) Hash identifier: tqm1pjLduJs7x2qjgqMx7jbu4hvdvqUy+LiBZ6/39mE= Subject key identifier: 82:93:8F:54:FB:7E:81:DA:E8:F2:17:BC:88:6E:23:52:DB:81:58:06 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 7942CE5D9BCB973FAC24604064E227A29B332C12 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS0.roa Signing time: Mon 03 Nov 2025 11:15:16 +0000 ROA not before: Mon 03 Nov 2025 11:10:16 +0000 ROA not after: Mon 02 Nov 2026 11:15:16 +0000 asID: 0 IP address blocks: 2a0f:6283:8000::/34 maxlen: 34 2a0f:6283:c000::/36 maxlen: 36 2a0f:6283:d000::/36 maxlen: 36 2a0f:6283:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 16:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:42:ce:5d:9b:cb:97:3f:ac:24:60:40:64:e2:27:a2:9b:33:2c:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Nov 3 11:10:16 2025 GMT Not After : Nov 2 11:15:16 2026 GMT Subject: CN=82938F54FB7E81DAE8F217BC886E2352DB815806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:76:e8:7e:05:6d:5b:4c:dd:70:54:8b:cb:5c: ec:5c:19:e5:79:b9:6a:d7:5c:2a:6a:a6:e1:62:1d: fa:e1:b0:b2:01:b2:4b:25:08:63:45:07:d5:88:37: 9c:6e:5f:97:6b:90:09:59:c2:b2:7b:b5:79:be:42: 00:63:2d:a3:16:73:de:ef:3d:51:21:03:d8:b7:86: 63:86:98:9d:4e:be:05:6c:12:12:78:96:4a:aa:39: 54:29:96:c1:a2:35:54:69:40:4c:68:99:ec:24:f9: 92:9f:5a:c3:d2:77:24:1f:40:97:21:ff:b2:ed:53: e6:0a:59:4a:24:a9:2d:77:99:6d:1d:70:9b:ea:36: 14:88:f8:76:f8:cb:50:60:c3:97:18:11:14:9d:73: f3:f0:74:32:de:92:e8:85:9e:5a:6f:de:b2:96:df: c5:3e:67:74:d5:be:32:12:b2:d5:17:6f:27:52:92: 2d:14:56:8b:24:a4:1f:c1:3f:c5:4c:a3:b7:c5:c3: fd:4f:e6:d3:05:85:60:9f:45:c2:d0:19:d6:3a:96: d3:a7:78:aa:65:88:81:e5:e1:14:49:1d:38:9a:b5: 6b:8f:2f:e0:f4:2c:8d:47:88:45:56:55:29:e4:39: d7:13:5c:f4:0f:67:f9:3d:97:0c:c8:7f:a2:13:c1: 57:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:93:8F:54:FB:7E:81:DA:E8:F2:17:BC:88:6E:23:52:DB:81:58:06 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6283:8000::-2a0f:6283:efff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0f:0a:21:7b:0c:67:24:9f:91:b9:53:c4:8e:58:fa:55:b1:21: 66:01:e7:b8:be:ed:23:05:b7:a5:62:7a:8b:a2:6b:45:0a:07: 6b:dc:27:49:6d:5b:6d:97:46:dd:d6:87:cd:13:3a:7e:ae:db: 87:a9:e5:e1:65:7f:cb:68:6a:c5:db:0d:02:59:69:ca:88:e0: 52:fd:74:0e:0f:fc:65:67:3d:9a:d6:08:87:6c:19:9c:b0:4c: 50:fb:46:1d:da:77:96:0c:56:97:c4:89:92:54:f0:d1:a1:7c: 12:0d:a7:c4:ed:7d:0c:21:b2:25:fa:97:7a:62:bf:cc:a2:ee: 62:0b:7b:08:43:4a:19:07:f8:3a:91:5b:f3:c1:2d:6b:73:42: cb:07:2e:18:61:35:47:f6:73:66:f5:0e:52:66:1d:ce:59:d9: 80:c1:a4:66:5c:9e:00:c2:33:57:38:49:a8:0a:24:70:62:1b: 23:65:28:3f:53:d9:c0:91:15:f4:82:b2:99:98:20:b6:87:72: 97:cb:21:31:86:28:27:f4:6e:06:c0:b1:a6:65:ce:34:71:f7: 3f:ce:ae:5c:c9:ff:8e:67:1f:9d:4c:58:51:2e:5b:9e:ee:fd: 9d:58:d2:90:b8:0a:02:52:82:23:99:82:51:69:3c:1c:60:22: fe:69:e4:9a -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUeULOXZvLlz+sJGBAZOInopszLBIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTExMDMxMTEwMTZaFw0yNjExMDIxMTE1MTZaMDMxMTAvBgNV BAMTKDgyOTM4RjU0RkI3RTgxREFFOEYyMTdCQzg4NkUyMzUyREI4MTU4MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrduh+BW1bTN1wVIvLXOxcGeV5 uWrXXCpqpuFiHfrhsLIBskslCGNFB9WIN5xuX5drkAlZwrJ7tXm+QgBjLaMWc97v PVEhA9i3hmOGmJ1OvgVsEhJ4lkqqOVQplsGiNVRpQExomewk+ZKfWsPSdyQfQJch /7LtU+YKWUokqS13mW0dcJvqNhSI+Hb4y1Bgw5cYERSdc/PwdDLekuiFnlpv3rKW 38U+Z3TVvjISstUXbydSki0UVoskpB/BP8VMo7fFw/1P5tMFhWCfRcLQGdY6ltOn eKpliIHl4RRJHTiatWuPL+D0LI1HiEVWVSnkOdcTXPQPZ/k9lwzIf6ITwVdvAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUgpOPVPt+gdro8he8iG4jUtuBWAYwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyMEoGCCsGAQUFBwELBD4wPDA6BggrBgEFBQcwC4YucnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASMBADBgcqD2KD gAMGBCoPYoPgMA0GCSqGSIb3DQEBCwUAA4IBAQAPCiF7DGckn5G5U8SOWPpVsSFm Aee4vu0jBbelYnqLomtFCgdr3CdJbVttl0bd1ofNEzp+rtuHqeXhZX/LaGrF2w0C WWnKiOBS/XQOD/xlZz2a1giHbBmcsExQ+0Yd2neWDFaXxImSVPDRoXwSDafE7X0M IbIl+pd6Yr/Mou5iC3sIQ0oZB/g6kVvzwS1rc0LLBy4YYTVH9nNm9Q5SZh3OWdmA waRmXJ4AwjNXOEmoCiRwYhsjZSg/U9nAkRX0grKZmCC2h3KXyyExhign9G4GwLGm Zc40cfc/zq5cyf+OZx+dTFhRLlue7v2dWNKQuAoCUoIjmYJRaTwcYCL+aeSa -----END CERTIFICATE-----Generated at Tue Nov 4 22:41:40 2025 by rpki-client