$ rpki-client -vvf krill.47272.net/repo/HYEHOST/5/AS57110.roa File: AS57110.roa (raw, json) Hash identifier: 3dautY1oQ8jyfH5Ajxr4RIVouv/L+6ht/6Rusd+PL5U= Subject key identifier: 36:15:EA:29:E2:76:DB:42:5E:A4:B1:B0:05:AA:D8:10:4C:1F:2B:5C Certificate issuer: /CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Certificate serial: 6CF4AA0939BE936BF839A8BF8D177D632E83EB2B Authority key identifier: C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject info access: rsync://krill.47272.net/repo/HYEHOST/5/AS57110.roa Signing time: Tue 05 Aug 2025 15:11:23 +0000 ROA not before: Tue 05 Aug 2025 15:06:23 +0000 ROA not after: Tue 04 Aug 2026 15:11:23 +0000 asID: 57110 IP address blocks: 2a0a:6044:3000::/40 maxlen: 40 2a0a:6044:3001::/48 maxlen: 48 2a0f:6283:1101::/48 maxlen: 48 2a0f:6283:1120::/44 maxlen: 48 2a0f:6284:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 23:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f4:aa:09:39:be:93:6b:f8:39:a8:bf:8d:17:7d:63:2e:83:eb:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3CF41898936CB9C573DB1EAAB94C6E669951FD7 Validity Not Before: Aug 5 15:06:23 2025 GMT Not After : Aug 4 15:11:23 2026 GMT Subject: CN=3615EA29E276DB425EA4B1B005AAD8104C1F2B5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ee:45:b9:7f:bc:c3:24:dc:79:05:d8:88:44: 42:fc:9f:da:65:50:8d:3f:ec:fb:20:32:ff:16:4c: 29:48:c6:80:cb:af:83:47:3f:75:a2:7d:4b:0d:d7: 22:f7:91:23:68:64:c0:99:4e:cd:4d:53:c2:b8:5a: 0b:30:8d:97:a8:23:9f:92:c1:94:d8:fb:d8:d6:12: 15:b5:6c:2f:d8:15:de:3d:38:b5:88:5d:c6:8c:33: 26:ce:fb:32:37:b5:a2:d1:d2:c7:55:57:b0:33:4e: ba:98:c2:84:94:4f:58:24:10:7c:f4:1f:a4:b1:ac: 64:32:bc:b1:4f:f4:a7:24:e2:c2:30:e6:80:80:81: 0c:67:1b:7e:9f:f8:5a:81:cf:56:7d:c0:ef:81:05: c7:9f:3e:39:0a:f0:67:44:7c:5f:e6:1c:94:b9:38: 2f:d3:96:45:18:38:39:5c:d6:63:66:77:14:d5:b5: 0e:38:d1:90:50:d0:a1:90:92:cf:82:56:8c:97:f5: 03:c9:a5:d6:44:c0:5e:08:c8:53:4c:fa:9a:1a:36: 6d:bf:6a:81:fc:8d:db:cd:ba:3c:49:7b:61:0e:27: f9:c1:2c:4e:16:2b:9f:9b:ee:22:d2:95:c9:d3:16: e4:a7:c1:a5:fe:50:67:03:42:58:18:96:7e:d9:6f: a5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:15:EA:29:E2:76:DB:42:5E:A4:B1:B0:05:AA:D8:10:4C:1F:2B:5C X509v3 Authority Key Identifier: keyid:C3:CF:41:89:89:36:CB:9C:57:3D:B1:EA:AB:94:C6:E6:69:95:1F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer Subject Information Access: Signed Object - URI:rsync://krill.47272.net/repo/HYEHOST/5/AS57110.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:3000::/40 2a0f:6283:1101::/48 2a0f:6283:1120::/44 2a0f:6284:4000::/40 Signature Algorithm: sha256WithRSAEncryption 88:e7:19:86:8b:21:34:40:b2:89:d5:d1:db:f9:9a:bd:84:41: 89:d8:db:34:5c:00:ae:03:15:61:b0:62:68:0c:a4:92:ef:0e: bb:ca:86:4a:f0:26:d5:ca:76:fb:a2:09:0f:3f:63:86:4e:dc: 50:30:d1:00:09:e0:5c:29:99:f6:da:af:3f:fa:8e:5c:7f:61: 21:6c:01:03:1b:72:1c:a9:0c:d8:a3:d3:d0:94:02:25:01:65: 6c:53:49:0a:10:1a:a5:1f:f3:57:6a:22:ee:8d:78:11:66:3b: 21:d5:c0:3e:39:43:43:82:2f:7e:60:c3:c8:66:27:9b:8a:ff: 0a:bd:5d:66:ab:ec:d7:33:d6:92:4c:2f:41:ab:98:e1:7c:30: 6c:23:f0:39:5e:cc:60:f5:3a:d1:28:64:cb:a4:31:f5:77:19: a9:32:4c:0f:c7:c0:13:a1:62:a9:88:c4:ce:11:d3:b4:5d:9d: 48:51:98:f4:cf:27:2a:2e:50:8c:65:41:34:24:17:29:6c:4e: 9d:11:22:ad:95:82:ee:45:d5:c8:c9:f3:26:41:c1:e6:bf:27: 8d:2b:a2:7e:ac:35:67:29:f9:08:71:41:2c:d5:5d:48:89:91: 60:df:77:64:c9:3b:31:9b:90:f0:4a:0e:91:0f:3b:40:e0:b6: 50:e6:54:a4 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgIUbPSqCTm+k2v4Oai/jRd9Yy6D6yswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNDRjQxODk4OTM2Q0I5QzU3M0RCMUVBQUI5NEM2RTY2 OTk1MUZENzAeFw0yNTA4MDUxNTA2MjNaFw0yNjA4MDQxNTExMjNaMDMxMTAvBgNV BAMTKDM2MTVFQTI5RTI3NkRCNDI1RUE0QjFCMDA1QUFEODEwNEMxRjJCNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu7kW5f7zDJNx5BdiIREL8n9pl UI0/7PsgMv8WTClIxoDLr4NHP3WifUsN1yL3kSNoZMCZTs1NU8K4WgswjZeoI5+S wZTY+9jWEhW1bC/YFd49OLWIXcaMMybO+zI3taLR0sdVV7AzTrqYwoSUT1gkEHz0 H6SxrGQyvLFP9Kck4sIw5oCAgQxnG36f+FqBz1Z9wO+BBcefPjkK8GdEfF/mHJS5 OC/TlkUYODlc1mNmdxTVtQ440ZBQ0KGQks+CVoyX9QPJpdZEwF4IyFNM+poaNm2/ aoH8jdvNujxJe2EOJ/nBLE4WK5+b7iLSlcnTFuSnwaX+UGcDQlgYln7Zb6VvAgMB AAGjggH3MIIB8zAdBgNVHQ4EFgQUNhXqKeJ220JepLGwBarYEEwfK1wwHwYDVR0j BBgwFoAUw89BiYk2y5xXPbHqq5TG5mmVH9cwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlFSE9T VC81L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFGRDcuY3Js MIGTBggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1y cHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5 MWJlM2Y5ZC83L0MzQ0Y0MTg5ODkzNkNCOUM1NzNEQjFFQUFCOTRDNkU2Njk5NTFG RDcuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9rcmls bC40NzI3Mi5uZXQvcmVwby9IWUVIT1NULzUvQVM1NzExMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjA7BggrBgEFBQcBBwEB/wQsMCowKAQCAAIwIgMGACoK YEQwAwcAKg9igxEBAwcEKg9igxEgAwYAKg9ihEAwDQYJKoZIhvcNAQELBQADggEB AIjnGYaLITRAsonV0dv5mr2EQYnY2zRcAK4DFWGwYmgMpJLvDrvKhkrwJtXKdvui CQ8/Y4ZO3FAw0QAJ4Fwpmfbarz/6jlx/YSFsAQMbchypDNij09CUAiUBZWxTSQoQ GqUf81dqIu6NeBFmOyHVwD45Q0OCL35gw8hmJ5uK/wq9XWar7Ncz1pJML0GrmOF8 MGwj8DlezGD1OtEoZMukMfV3GakyTA/HwBOhYqmIxM4R07RdnUhRmPTPJyouUIxl QTQkFylsTp0RIq2Vgu5F1cjJ8yZBwea/J40ron6sNWcp+QhxQSzVXUiJkWDfd2TJ OzGbkPBKDpEPO0DgtlDmVKQ= -----END CERTIFICATE-----Generated at Tue Aug 5 17:15:42 2025 by rpki-client