$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS31898.roa File: AS31898.roa (raw, json) Hash identifier: ZCkD8AMfZWtzFbcru0m4FKeY8Xt3AAtkUit7+0k838Y= Subject key identifier: D2:AA:B1:47:3F:41:89:ED:54:AB:6A:B5:91:68:2A:52:2F:E7:BB:72 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 7F8A83EEDF4F5D47D465187E73B16EA27946C24F Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa Signing time: Mon 04 Aug 2025 12:22:52 +0000 ROA not before: Mon 04 Aug 2025 12:17:52 +0000 ROA not after: Mon 03 Aug 2026 12:22:52 +0000 asID: 31898 IP address blocks: 2a05:dfc3:f6ce::/48 maxlen: 48 2a0a:6044:6d00::/48 maxlen: 48 2a0f:6284:41ff::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 09 Aug 2025 08:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:8a:83:ee:df:4f:5d:47:d4:65:18:7e:73:b1:6e:a2:79:46:c2:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 4 12:17:52 2025 GMT Not After : Aug 3 12:22:52 2026 GMT Subject: CN=D2AAB1473F4189ED54AB6AB591682A522FE7BB72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3c:7b:77:88:19:f3:aa:27:b0:25:f5:cf:c2: 12:60:18:64:10:6f:35:fe:b9:d6:1b:30:8d:12:7e: 65:b3:0f:63:5c:50:de:8b:95:3e:73:50:c2:26:03: 06:83:d7:de:77:27:76:bb:7f:0c:cf:cf:e7:de:0b: e5:e7:03:f3:8d:d0:7f:42:31:92:84:59:53:79:c2: 8f:10:e0:68:43:99:a5:d0:98:a5:e7:a5:f6:f2:68: c1:35:ff:5c:01:fd:b7:44:a0:fb:62:83:b2:47:ed: 90:5f:3d:30:6a:35:dd:d6:53:1a:a8:5a:ce:4e:39: 89:a3:58:20:0a:7a:03:91:c6:a5:4a:20:37:d6:5f: 62:46:6d:65:9a:21:71:af:22:64:23:c7:23:55:0b: ba:c4:37:f2:96:61:46:82:27:24:b3:76:df:77:ce: 78:3c:10:c2:a8:9e:e2:72:01:7f:7d:6b:a1:9b:8e: de:91:55:2f:58:53:c1:75:42:51:ee:32:11:d5:06: de:ec:6c:4a:6d:c4:c4:c4:b2:e3:41:65:38:b0:78: bb:8e:d0:78:18:87:f3:f4:86:96:28:ef:9b:62:ab: e5:68:0c:65:28:e4:f3:c7:fc:92:61:c1:28:59:af: b6:a0:7d:5d:fb:90:10:ba:16:de:c4:28:2c:97:7a: 69:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AA:B1:47:3F:41:89:ED:54:AB:6A:B5:91:68:2A:52:2F:E7:BB:72 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f6ce::/48 2a0a:6044:6d00::/48 2a0f:6284:41ff::/48 Signature Algorithm: sha256WithRSAEncryption 40:8d:e7:34:e8:19:3a:f1:5c:e6:b7:23:da:be:64:65:5c:1a: 8a:5f:01:55:3b:13:26:f9:a1:6f:a0:8f:f7:13:cd:51:20:f9: 24:47:11:23:b2:16:83:a9:ca:02:37:07:54:36:49:f7:44:d3: 37:da:e7:d2:89:af:7c:74:5d:49:3f:29:53:76:e2:23:c6:87: ba:43:07:63:d5:38:db:4d:83:5c:6f:4e:a6:35:e9:ba:b8:60: 83:7d:7a:4b:c2:fb:8f:31:20:a7:70:48:32:a3:ae:cf:46:a7: 75:b6:bd:a9:9b:7e:e3:b2:81:de:fc:81:95:fb:68:17:2b:90: de:c4:fd:16:8d:36:8e:ed:1b:d0:03:df:7c:02:d1:99:4d:d6: 2b:4c:f4:c2:58:52:47:1d:88:d9:4c:ce:f9:db:c4:eb:07:6a: ba:8c:c1:1b:bb:af:ee:6c:a1:0f:87:79:26:5a:24:00:9d:b1: 43:7b:94:c1:01:83:e4:6d:ae:79:2f:c7:7d:36:2c:ac:64:ac: cc:4c:21:26:a0:85:90:b9:4a:55:79:12:e4:59:78:78:c1:cf: 76:6b:66:5d:8e:85:6d:8d:ef:20:64:3c:47:59:9e:e7:fc:2a: d2:c5:39:a6:4c:e7:85:9c:4a:4c:6b:e1:27:d7:9d:82:b4:b1: 12:71:90:60 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUf4qD7t9PXUfUZRh+c7FuonlGwk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MDQxMjE3NTJaFw0yNjA4MDMxMjIyNTJaMDMxMTAvBgNV BAMTKEQyQUFCMTQ3M0Y0MTg5RUQ1NEFCNkFCNTkxNjgyQTUyMkZFN0JCNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5PHt3iBnzqiewJfXPwhJgGGQQ bzX+udYbMI0SfmWzD2NcUN6LlT5zUMImAwaD1953J3a7fwzPz+feC+XnA/ON0H9C MZKEWVN5wo8Q4GhDmaXQmKXnpfbyaME1/1wB/bdEoPtig7JH7ZBfPTBqNd3WUxqo Ws5OOYmjWCAKegORxqVKIDfWX2JGbWWaIXGvImQjxyNVC7rEN/KWYUaCJySzdt93 zng8EMKonuJyAX99a6Gbjt6RVS9YU8F1QlHuMhHVBt7sbEptxMTEsuNBZTiweLuO 0HgYh/P0hpYo75tiq+VoDGUo5PPH/JJhwShZr7agfV37kBC6Ft7EKCyXemlpAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQU0qqxRz9Bie1Uq2q1kWgqUi/nu3IwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMzMTg5OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMwIQQCAAIwGwMHACoF 38P2zgMHACoKYERtAAMHACoPYoRB/zANBgkqhkiG9w0BAQsFAAOCAQEAQI3nNOgZ OvFc5rcj2r5kZVwail8BVTsTJvmhb6CP9xPNUSD5JEcRI7IWg6nKAjcHVDZJ90TT N9rn0omvfHRdST8pU3biI8aHukMHY9U4202DXG9OpjXpurhgg316S8L7jzEgp3BI MqOuz0andba9qZt+47KB3vyBlftoFyuQ3sT9Fo02ju0b0APffALRmU3WK0z0wlhS Rx2I2UzO+dvE6wdquozBG7uv7myhD4d5JlokAJ2xQ3uUwQGD5G2ueS/HfTYsrGSs zEwhJqCFkLlKVXkS5Fl4eMHPdmtmXY6FbY3vIGQ8R1me5/wq0sU5pkznhZxKTGvh J9edgrSxEnGQYA== -----END CERTIFICATE-----Generated at Fri Aug 8 19:29:49 2025 by rpki-client