$ rpki-client -vvf krill.signalx.cloud/repo/signalx-rpki/3/326131313a323963303a346330303a3a2f34302d3430203d3e20323134343032.roa File: 326131313a323963303a346330303a3a2f34302d3430203d3e20323134343032.roa (raw, json) Hash identifier: 7+bJ1PMaSZQ/xrMHZoyejuBVmjQCNXG8q6ehU4M2+Fk= Subject key identifier: 8D:26:C2:0B:BB:26:2A:B4:BB:07:A5:D2:D4:F7:4C:65:06:5B:05:4A Certificate issuer: /CN=8770188F7F0D18A86637EF0EE75EE2B70D810A7C Certificate serial: 2125EA46F1B80E055F6C76E2AB8AEBF4165C3CA1 Authority key identifier: 87:70:18:8F:7F:0D:18:A8:66:37:EF:0E:E7:5E:E2:B7:0D:81:0A:7C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/8770188F7F0D18A86637EF0EE75EE2B70D810A7C.cer Subject info access: rsync://krill.signalx.cloud/repo/signalx-rpki/3/326131313a323963303a346330303a3a2f34302d3430203d3e20323134343032.roa Signing time: Sat 02 Aug 2025 01:14:02 +0000 ROA not before: Sat 02 Aug 2025 01:09:02 +0000 ROA not after: Sat 01 Aug 2026 01:14:02 +0000 asID: 214402 IP address blocks: 2a11:29c0:4c00::/40 maxlen: 40 Validation: OK Signature path: rsync://krill.signalx.cloud/repo/signalx-rpki/3/8770188F7F0D18A86637EF0EE75EE2B70D810A7C.crl rsync://krill.signalx.cloud/repo/signalx-rpki/3/8770188F7F0D18A86637EF0EE75EE2B70D810A7C.mft rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/8770188F7F0D18A86637EF0EE75EE2B70D810A7C.cer rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 03:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:25:ea:46:f1:b8:0e:05:5f:6c:76:e2:ab:8a:eb:f4:16:5c:3c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8770188F7F0D18A86637EF0EE75EE2B70D810A7C Validity Not Before: Aug 2 01:09:02 2025 GMT Not After : Aug 1 01:14:02 2026 GMT Subject: CN=8D26C20BBB262AB4BB07A5D2D4F74C65065B054A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a1:e3:db:a7:c5:1e:85:7b:a4:23:15:c5:d0: 81:7c:86:ca:a1:ef:3c:fc:92:50:0b:6a:06:00:fb: 99:56:45:66:5f:ba:4e:f7:87:7f:66:79:69:12:05: 49:ab:31:8a:2d:20:1e:b7:3e:0e:e6:3f:56:41:1b: c4:e9:83:f1:09:27:4f:84:c7:9f:3a:ba:91:55:e2: fc:f4:85:f7:9d:fa:d4:42:a1:a7:e2:af:bb:6d:77: a4:f6:bc:8d:33:bb:da:e3:4a:b4:f4:4c:7c:3c:ac: e2:45:1d:20:ee:9b:99:32:af:f2:b2:50:0a:d8:5a: c1:1a:8d:e7:08:4b:47:2f:dd:5c:2f:81:bb:fa:a4: 52:c8:17:cc:74:7e:63:5f:8d:60:12:6f:32:c1:e5: cc:de:8b:44:12:10:76:fc:a1:26:5a:92:33:ee:e0: e3:56:fa:51:40:03:f5:78:0e:c5:64:32:8b:e4:77: db:5e:d8:66:ed:63:17:4d:1f:75:e1:b8:ab:d8:c5: 93:1f:52:a6:10:24:f5:43:be:b9:56:3f:f3:04:45: 00:b2:07:d1:b6:8d:57:83:b1:33:02:3b:b2:1a:50: 48:d0:83:04:a3:0d:2c:0d:7b:cb:82:95:e6:fd:da: 69:91:98:98:1d:74:23:88:0c:51:c1:b9:8f:b9:b8: 1b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:26:C2:0B:BB:26:2A:B4:BB:07:A5:D2:D4:F7:4C:65:06:5B:05:4A X509v3 Authority Key Identifier: keyid:87:70:18:8F:7F:0D:18:A8:66:37:EF:0E:E7:5E:E2:B7:0D:81:0A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.signalx.cloud/repo/signalx-rpki/3/8770188F7F0D18A86637EF0EE75EE2B70D810A7C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/8770188F7F0D18A86637EF0EE75EE2B70D810A7C.cer Subject Information Access: Signed Object - URI:rsync://krill.signalx.cloud/repo/signalx-rpki/3/326131313a323963303a346330303a3a2f34302d3430203d3e20323134343032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:29c0:4c00::/40 Signature Algorithm: sha256WithRSAEncryption 21:c8:a6:39:01:7f:36:46:7e:8c:ec:01:16:50:45:12:f1:11: 23:d4:af:fb:13:d2:76:3a:16:05:3b:37:ec:c0:6c:89:06:f8: 4a:d7:44:b3:b0:10:ab:91:4d:4a:ea:fa:f2:c4:21:5a:45:52: 9e:51:21:3c:54:9b:e2:6f:47:38:e4:36:76:52:0e:91:6a:ef: 4f:29:f1:06:30:35:0f:2d:c2:21:31:7a:98:32:eb:a6:36:91: f5:84:73:76:f8:82:6b:4c:cb:9a:d3:2d:6c:12:b9:08:d7:d1: e4:37:b3:23:c6:2b:31:e0:ed:98:aa:db:c8:d7:7c:a8:4e:89: de:c8:65:53:23:37:44:d0:bc:57:60:29:bc:29:93:66:9f:57: 8f:d5:be:ef:8e:d8:1e:66:3d:4e:17:a5:43:ab:ab:b6:b0:5d: 30:57:37:e8:0c:bf:3f:97:88:75:08:69:12:a4:42:2d:3d:a5: a2:5e:09:1a:1c:3a:ff:f2:26:40:10:1b:d5:e0:86:8f:75:d1: 30:d9:fc:90:3e:6b:d2:e1:0d:78:88:b2:46:d6:3a:91:fd:f9: 12:59:9c:2c:b0:10:2e:55:65:30:f9:44:61:62:a1:8c:83:b6: 37:bf:03:b5:1a:91:eb:f9:c3:95:16:54:6d:b6:7b:fb:72:67: c0:f0:69:fe -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUISXqRvG4DgVfbHbiq4rr9BZcPKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc3MDE4OEY3RjBEMThBODY2MzdFRjBFRTc1RUUyQjcw RDgxMEE3QzAeFw0yNTA4MDIwMTA5MDJaFw0yNjA4MDEwMTE0MDJaMDMxMTAvBgNV BAMTKDhEMjZDMjBCQkIyNjJBQjRCQjA3QTVEMkQ0Rjc0QzY1MDY1QjA1NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCooePbp8UehXukIxXF0IF8hsqh 7zz8klALagYA+5lWRWZfuk73h39meWkSBUmrMYotIB63Pg7mP1ZBG8Tpg/EJJ0+E x586upFV4vz0hfed+tRCoafir7ttd6T2vI0zu9rjSrT0THw8rOJFHSDum5kyr/Ky UArYWsEajecIS0cv3Vwvgbv6pFLIF8x0fmNfjWASbzLB5czei0QSEHb8oSZakjPu 4ONW+lFAA/V4DsVkMovkd9te2GbtYxdNH3XhuKvYxZMfUqYQJPVDvrlWP/MERQCy B9G2jVeDsTMCO7IaUEjQgwSjDSwNe8uCleb92mmRmJgddCOIDFHBuY+5uBupAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUjSbCC7smKrS7B6XS1PdMZQZbBUowHwYDVR0j BBgwFoAUh3AYj38NGKhmN+8O517itw2BCnwwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8va3JpbGwuc2lnbmFseC5jbG91ZC9yZXBvL3Np Z25hbHgtcnBraS8zLzg3NzAxODhGN0YwRDE4QTg2NjM3RUYwRUU3NUVFMkI3MEQ4 MTBBN0MuY3JsMIGeBggrBgEFBQcBAQSBkTCBjjCBiwYIKwYBBQUHMAKGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODExMTViYzYt MTBmNi00YWYzLWJhMDktOGI2ODdhNTZmYmY1LzAvODc3MDE4OEY3RjBEMThBODY2 MzdFRjBFRTc1RUUyQjcwRDgxMEE3Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGA BggrBgEFBQcwC4Z0cnN5bmM6Ly9rcmlsbC5zaWduYWx4LmNsb3VkL3JlcG8vc2ln bmFseC1ycGtpLzMvMzI2MTMxMzEzYTMyMzk2MzMwM2EzNDYzMzAzMDNhM2EyZjM0 MzAyZDM0MzAyMDNkM2UyMDMyMzEzNDM0MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoRKcBMMA0G CSqGSIb3DQEBCwUAA4IBAQAhyKY5AX82Rn6M7AEWUEUS8REj1K/7E9J2OhYFOzfs wGyJBvhK10SzsBCrkU1K6vryxCFaRVKeUSE8VJvib0c45DZ2Ug6Rau9PKfEGMDUP LcIhMXqYMuumNpH1hHN2+IJrTMua0y1sErkI19HkN7Mjxisx4O2YqtvI13yoTone yGVTIzdE0LxXYCm8KZNmn1eP1b7vjtgeZj1OF6VDq6u2sF0wVzfoDL8/l4h1CGkS pEItPaWiXgkaHDr/8iZAEBvV4IaPddEw2fyQPmvS4Q14iLJG1jqR/fkSWZwssBAu VWUw+URhYqGMg7Y3vwO1GpHr+cOVFlRttnv7cmfA8Gn+ -----END CERTIFICATE-----Generated at Mon Aug 4 11:22:13 2025 by rpki-client