$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS207567.roa File: AS207567.roa (raw, json) Hash identifier: 6Dcn2e3R8GaF7LBmOJ4DkIYfKOEbftx+eGfIIm7tGYY= Subject key identifier: 41:06:08:DC:F8:34:0A:66:21:21:1A:1E:D4:D6:1A:FA:AA:92:97:D1 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 5EAA68C8732A8D1BD071DC528A54112BBC2E9760 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS207567.roa Signing time: Sat 26 Jul 2025 20:26:59 +0000 ROA not before: Sat 26 Jul 2025 20:21:59 +0000 ROA not after: Sat 25 Jul 2026 20:26:59 +0000 asID: 207567 IP address blocks: 2a09:54c7:2241::/48 maxlen: 48 2a09:54c7:2e00::/40 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 11 Aug 2025 04:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:aa:68:c8:73:2a:8d:1b:d0:71:dc:52:8a:54:11:2b:bc:2e:97:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jul 26 20:21:59 2025 GMT Not After : Jul 25 20:26:59 2026 GMT Subject: CN=410608DCF8340A6621211A1ED4D61AFAAA9297D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:39:92:df:12:76:cd:b5:bf:79:f3:54:4c:0c: 91:e2:05:5d:e6:a1:31:1b:c7:e6:50:92:e2:d6:f4: d6:9c:43:f5:60:81:5d:39:5b:6b:e9:e9:f3:c5:35: 84:1e:46:f9:a2:2a:6f:08:05:22:91:fa:45:77:36: 7d:00:2b:11:cd:71:d2:b2:d4:70:1a:19:08:05:0a: cf:d8:84:d8:86:43:39:8d:75:7d:e6:2d:51:96:fe: 63:0c:60:b0:f2:d6:40:16:4f:75:31:07:b8:00:a6: b7:f5:e3:3b:28:ef:6d:26:c8:b1:0e:34:93:e1:72: b6:6f:c1:bc:5a:e6:07:c3:08:7c:a9:91:90:a5:26: af:48:8f:f8:be:fd:09:7e:41:13:81:8f:2a:00:27: 64:7e:13:16:96:81:f9:d1:33:bb:f9:f5:bb:34:2c: 55:bc:e2:1b:3a:61:46:3f:cc:04:94:5a:22:7f:75: 85:de:87:e0:5f:02:be:d8:07:31:ba:8d:c6:08:af: a9:34:4b:93:60:5d:8f:20:da:df:20:12:ad:38:ef: fa:14:5e:80:af:8f:67:c1:1e:a8:4e:dc:2d:08:cf: d3:aa:f0:55:10:de:a6:cb:d4:32:3e:30:b4:9f:7a: 83:77:3e:ce:b2:ed:12:d3:f7:dd:fa:f4:8d:e7:c6: 3c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:06:08:DC:F8:34:0A:66:21:21:1A:1E:D4:D6:1A:FA:AA:92:97:D1 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS207567.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:2241::/48 2a09:54c7:2e00::/40 Signature Algorithm: sha256WithRSAEncryption 29:39:64:2c:ff:7b:63:c8:53:5f:70:bb:86:24:66:76:a2:f0: 6b:43:ba:62:cf:bb:d6:07:23:85:38:2a:5c:cd:1a:0d:0c:e4: a6:7c:98:80:cc:30:7e:ea:4b:57:ec:1b:78:ca:dd:5d:4c:52: 05:a0:8b:df:8e:73:57:11:ac:03:e4:40:fa:b4:61:76:43:5c: a3:f8:12:25:1b:76:57:93:94:52:81:ab:77:73:1b:06:0b:30: cd:45:ab:34:84:20:ad:5d:6c:d5:47:83:cf:6f:bb:64:7d:21: 7b:21:9a:4b:fd:2b:92:8d:b4:35:44:42:f4:56:55:8b:7c:a0: 77:5d:55:ae:ed:db:7b:cc:e7:d4:55:02:05:83:66:b8:fc:a6: 5c:70:d5:dc:5f:d1:6e:e6:54:55:6a:40:9e:13:56:f0:2c:df: 84:84:d6:d8:72:79:0f:91:d7:6a:d7:f1:e8:52:ac:4e:2a:4f: 02:21:d0:60:53:08:d1:70:60:49:03:18:2c:b3:8f:72:b7:53: 79:45:6d:3d:f8:aa:77:68:32:97:de:d3:94:59:b8:9f:c0:e0: 97:42:72:33:bb:bc:61:6c:b1:89:a9:ea:f5:c2:27:de:cc:b6: 06:ad:96:97:96:79:b6:95:aa:d5:56:14:b7:22:fa:90:1d:c5: 6e:94:79:35 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXqpoyHMqjRvQcdxSilQRK7wul2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA3MjYyMDIxNTlaFw0yNjA3MjUyMDI2NTlaMDMxMTAvBgNV BAMTKDQxMDYwOERDRjgzNDBBNjYyMTIxMUExRUQ0RDYxQUZBQUE5Mjk3RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeOZLfEnbNtb9581RMDJHiBV3m oTEbx+ZQkuLW9NacQ/VggV05W2vp6fPFNYQeRvmiKm8IBSKR+kV3Nn0AKxHNcdKy 1HAaGQgFCs/YhNiGQzmNdX3mLVGW/mMMYLDy1kAWT3UxB7gAprf14zso720myLEO NJPhcrZvwbxa5gfDCHypkZClJq9Ij/i+/Ql+QROBjyoAJ2R+ExaWgfnRM7v59bs0 LFW84hs6YUY/zASUWiJ/dYXeh+BfAr7YBzG6jcYIr6k0S5NgXY8g2t8gEq047/oU XoCvj2fBHqhO3C0Iz9Oq8FUQ3qbL1DI+MLSfeoN3Ps6y7RLT99369I3nxjwVAgMB AAGjggHnMIIB4zAdBgNVHQ4EFgQUQQYI3Pg0CmYhIRoe1NYa+qqSl9EwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMyMDc1Njcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBwAq CVTHIkEDBgAqCVTHLjANBgkqhkiG9w0BAQsFAAOCAQEAKTlkLP97Y8hTX3C7hiRm dqLwa0O6Ys+71gcjhTgqXM0aDQzkpnyYgMwwfupLV+wbeMrdXUxSBaCL345zVxGs A+RA+rRhdkNco/gSJRt2V5OUUoGrd3MbBgswzUWrNIQgrV1s1UeDz2+7ZH0heyGa S/0rko20NURC9FZVi3ygd11Vru3be8zn1FUCBYNmuPymXHDV3F/RbuZUVWpAnhNW 8CzfhITW2HJ5D5HXatfx6FKsTipPAiHQYFMI0XBgSQMYLLOPcrdTeUVtPfiqd2gy l97TlFm4n8Dgl0JyM7u8YWyxianq9cIn3sy2Bq2Wl5Z5tpWq1VYUtyL6kB3FbpR5 NQ== -----END CERTIFICATE-----Generated at Sun Aug 10 13:47:04 2025 by rpki-client