$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS31898.roa File: AS31898.roa (raw, json) Hash identifier: I4+sBNN3DwfQD2bl1Hbj5DZpsUVyOhcsQD4r1OMdElo= Subject key identifier: 07:F1:68:78:2D:60:03:82:B9:B7:D6:DD:8A:D3:B8:33:E8:10:A1:76 Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 319DBDA895BB69DC109DFC3E39B25929CDCC06D2 Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa Signing time: Thu 11 Jun 2026 15:50:43 +0000 ROA not before: Thu 11 Jun 2026 15:45:43 +0000 ROA not after: Thu 10 Jun 2027 15:50:43 +0000 asID: 31898 IP address blocks: 2a05:dfc3:f760::/44 maxlen: 48 2a0a:6044:6d00::/48 maxlen: 48 2a0f:6282:210a::/48 maxlen: 48 2a0f:6282:210b::/48 maxlen: 48 2a0f:6284:4c10::/44 maxlen: 48 2a0f:6284:4c20::/44 maxlen: 48 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 07:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9d:bd:a8:95:bb:69:dc:10:9d:fc:3e:39:b2:59:29:cd:cc:06:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Jun 11 15:45:43 2026 GMT Not After : Jun 10 15:50:43 2027 GMT Subject: CN=07F168782D600382B9B7D6DD8AD3B833E810A176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4d:b4:d6:93:b9:c3:da:24:d1:10:0d:8e:aa: 71:f5:03:bc:d4:84:7d:14:30:57:57:8b:06:23:22: 1f:10:51:4b:ed:b1:90:41:84:65:b5:64:7d:43:5c: fa:e8:6d:83:ae:fc:75:d3:af:0e:3f:91:9b:5b:68: c4:57:fe:80:48:f8:89:04:dd:74:53:a1:db:64:47: 52:8b:4f:4e:12:98:59:89:72:b3:20:fe:01:96:d3: c5:10:62:d9:25:02:5e:c6:b4:99:aa:1a:fe:51:6c: 30:60:56:38:19:e9:d0:47:2a:b3:86:9b:8e:2b:6d: f8:9b:29:b6:3d:12:88:cd:19:3f:ea:ad:c6:4d:a6: ad:85:cb:44:01:e8:60:36:78:3e:2e:b9:6f:72:59: fb:90:78:54:81:fe:00:a8:fe:1a:a7:8b:1c:69:2c: 28:32:ee:8d:78:6c:66:b5:1f:c8:b2:57:97:47:17: 43:67:7c:a7:60:22:e8:4e:7f:a1:f2:8c:4e:2e:fe: 70:35:f5:22:6d:83:00:49:fd:c7:81:14:20:5e:cd: 8f:ea:c1:82:f4:02:2b:09:56:40:85:76:6d:d7:ed: 04:dd:7f:bf:aa:fe:39:f3:1e:bd:71:1d:13:93:52: 60:25:91:8f:c2:21:a5:2c:0f:4e:a3:2b:d6:7b:3d: aa:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F1:68:78:2D:60:03:82:B9:B7:D6:DD:8A:D3:B8:33:E8:10:A1:76 X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS31898.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f760::/44 2a0a:6044:6d00::/48 2a0f:6282:210a::/47 2a0f:6284:4c10::-2a0f:6284:4c2f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 34:2f:00:25:41:2c:f9:c7:d2:49:ff:07:10:74:82:c3:98:53: 04:ad:e0:97:eb:7b:a9:8f:48:af:90:e9:ef:6c:79:e6:04:f2: 6b:b6:1f:9f:4f:b8:23:70:bf:a6:2d:21:ea:88:7c:ad:3d:7f: fe:ec:6e:22:2c:58:63:99:9a:98:b3:0d:53:75:22:4e:4d:8b: 84:96:42:65:5b:4b:ce:1a:72:51:52:38:10:e8:24:48:77:5f: a4:38:7a:69:92:9d:8a:e7:80:06:3f:ee:2a:2d:05:1e:5a:d0: 40:bc:a7:2d:38:18:6b:b4:9f:c7:c3:d8:ce:fe:92:e9:ab:dd: ab:6d:1c:af:be:2d:14:8d:ee:d5:83:1e:46:e0:43:eb:d6:94: 4b:8c:99:d1:29:8a:12:ff:28:75:d3:ff:19:b7:f1:54:da:05: 52:0f:23:e1:25:64:2b:37:2c:42:88:ce:d4:5c:17:05:13:f9: 1a:c7:21:18:eb:ff:ec:7d:7e:ee:52:ba:2e:d4:a8:e3:9b:46: 7d:3e:06:a3:fc:fd:db:5e:a6:22:d3:22:20:d7:d1:38:a9:cb: bd:b6:65:81:aa:89:12:59:1a:48:28:0e:88:1d:99:85:3e:da: d2:22:4f:ab:01:3d:60:66:23:a6:43:f4:23:13:bf:ba:06:49: b3:73:38:0e -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUMZ29qJW7adwQnfw+ObJZKc3MBtIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNjA2MTExNTQ1NDNaFw0yNzA2MTAxNTUwNDNaMDMxMTAvBgNV BAMTKDA3RjE2ODc4MkQ2MDAzODJCOUI3RDZERDhBRDNCODMzRTgxMEExNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1TbTWk7nD2iTREA2OqnH1A7zU hH0UMFdXiwYjIh8QUUvtsZBBhGW1ZH1DXProbYOu/HXTrw4/kZtbaMRX/oBI+IkE 3XRTodtkR1KLT04SmFmJcrMg/gGW08UQYtklAl7GtJmqGv5RbDBgVjgZ6dBHKrOG m44rbfibKbY9EojNGT/qrcZNpq2Fy0QB6GA2eD4uuW9yWfuQeFSB/gCo/hqnixxp LCgy7o14bGa1H8iyV5dHF0NnfKdgIuhOf6HyjE4u/nA19SJtgwBJ/ceBFCBezY/q wYL0AisJVkCFdm3X7QTdf7+q/jnzHr1xHROTUmAlkY/CIaUsD06jK9Z7PaoRAgMB AAGjggIEMIICADAdBgNVHQ4EFgQUB/FoeC1gA4K5t9bditO4M+gQoXYwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVMzMTg5OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjBIBggrBgEFBQcBBwEB/wQ5MDcwNQQCAAIwLwMHBCoF 38P3YAMHACoKYERtAAMHASoPYoIhCjASAwcEKg9ihEwQAwcEKg9ihEwgMA0GCSqG SIb3DQEBCwUAA4IBAQA0LwAlQSz5x9JJ/wcQdILDmFMEreCX63upj0ivkOnvbHnm BPJrth+fT7gjcL+mLSHqiHytPX/+7G4iLFhjmZqYsw1TdSJOTYuElkJlW0vOGnJR UjgQ6CRId1+kOHppkp2K54AGP+4qLQUeWtBAvKctOBhrtJ/Hw9jO/pLpq92rbRyv vi0Uje7Vgx5G4EPr1pRLjJnRKYoS/yh10/8Zt/FU2gVSDyPhJWQrNyxCiM7UXBcF E/kaxyEY6//sfX7uUrou1Kjjm0Z9Pgaj/P3bXqYi0yIg19E4qcu9tmWBqokSWRpI KA6IHZmFPtrSIk+rAT1gZiOmQ/QjE7+6BkmzczgO -----END CERTIFICATE-----Generated at Sat Jun 13 11:32:40 2026 by rpki-client