$ rpki-client -vvf krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/323830343a323639633a32633a3a2f34382d3438203d3e203631353734.roa File: 323830343a323639633a32633a3a2f34382d3438203d3e203631353734.roa (raw, json) Hash identifier: QMavE9K7gBEM6GogGHcYvsZl5bvzYs0lsPVzr0Q3K/c= Subject key identifier: F7:7F:5E:1C:FC:A2:89:9C:60:D8:86:45:CB:C0:72:8C:22:FC:68:35 Certificate issuer: /CN=160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C Certificate serial: 44D71A8CF1B21586CCF9D28306C28F8BE70D74AD Authority key identifier: 16:0F:D2:1A:97:6A:19:A7:B8:1A:59:AA:FA:69:F6:A0:AF:E3:6D:0C Authority info access: rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.cer Subject info access: rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/323830343a323639633a32633a3a2f34382d3438203d3e203631353734.roa Signing time: Sun 22 Mar 2026 10:46:11 +0000 ROA not before: Sun 22 Mar 2026 10:41:11 +0000 ROA not after: Sun 21 Mar 2027 10:46:11 +0000 asID: 61574 IP address blocks: 2804:269c:2c::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.crl rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.mft rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.cer rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/3F8EBCC0428DD608F39D858BE891B85B0032681A.crl rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/3F8EBCC0428DD608F39D858BE891B85B0032681A.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3F8EBCC0428DD608F39D858BE891B85B0032681A.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 12:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d7:1a:8c:f1:b2:15:86:cc:f9:d2:83:06:c2:8f:8b:e7:0d:74:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C Validity Not Before: Mar 22 10:41:11 2026 GMT Not After : Mar 21 10:46:11 2027 GMT Subject: CN=F77F5E1CFCA2899C60D88645CBC0728C22FC6835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:63:a2:df:24:d6:ff:9e:48:a9:f8:c0:ca:6a: 2e:22:5a:43:47:4f:6e:12:d3:49:1f:8b:f3:c7:a2: 52:3f:09:38:15:ee:39:c0:8e:e8:1f:41:47:7a:ce: 92:22:41:a5:fb:c8:a5:94:31:3b:44:b7:c9:78:bd: 5a:0d:c7:b5:8a:54:3d:dc:85:e3:63:a7:10:9c:64: 10:ca:e6:fc:9d:c7:4d:48:fd:c9:df:a5:fd:ea:f6: d3:60:50:37:17:2e:e9:8b:72:55:0b:0f:5c:01:da: ee:71:3c:20:31:cf:f2:8c:89:4d:9d:14:e4:ec:13: 2a:49:9b:60:2d:13:e9:2a:33:2c:c5:8f:da:7c:8d: 92:6f:96:08:84:fa:d5:cf:89:69:c4:78:63:80:d1: c2:71:a9:45:57:43:ee:e9:1d:1a:88:dd:27:5a:0f: 2a:f5:ff:49:04:3b:5d:c2:2f:75:ef:f9:66:ff:6a: e8:39:bd:fe:ea:bf:8d:6e:76:bf:57:b8:e4:f0:1d: 65:38:ff:b9:81:d9:7f:b7:19:b7:00:90:a5:87:1e: 5f:69:14:b1:32:1f:a9:63:fb:d3:aa:9e:c9:0b:aa: 85:e3:22:b2:24:3d:7a:4d:4f:83:0b:c3:15:51:d6: 69:92:43:af:ef:19:c1:ea:57:36:84:05:0c:02:02: 25:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7F:5E:1C:FC:A2:89:9C:60:D8:86:45:CB:C0:72:8C:22:FC:68:35 X509v3 Authority Key Identifier: keyid:16:0F:D2:1A:97:6A:19:A7:B8:1A:59:AA:FA:69:F6:A0:AF:E3:6D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.crl Authority Information Access: CA Issuers - URI:rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/160FD21A976A19A7B81A59AAFA69F6A0AFE36D0C.cer Subject Information Access: Signed Object - URI:rsync://krill.peering.ee.columbia.edu/repo/lifeng-hitcowhorse/0/323830343a323639633a32633a3a2f34382d3438203d3e203631353734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2804:269c:2c::/48 Signature Algorithm: sha256WithRSAEncryption 60:15:62:5f:16:b5:fc:3a:eb:7c:56:5f:a0:88:41:c7:59:43: 81:6c:c6:02:b0:aa:af:f0:fd:eb:41:1a:6f:a7:2a:01:a7:cd: f1:1c:19:4b:b9:da:d5:b7:08:02:0f:dd:12:8a:01:f9:3f:ef: 76:4a:7d:d4:67:1c:3e:87:1a:4a:99:85:f3:e2:c9:20:61:82: 02:e9:c7:d4:08:1c:c3:9a:a5:a8:59:5a:6f:be:62:5f:1c:c8: 17:58:ef:eb:d3:4b:92:3d:48:74:b7:d1:5f:2d:cb:52:b3:0d: 01:3d:e2:f8:20:e2:99:6e:46:0a:f3:a9:1b:4f:59:8e:98:36: fa:a5:c9:71:d1:16:08:06:26:6a:43:09:ef:0f:23:e3:59:80: a3:46:5f:10:cc:00:e8:7a:8f:11:59:9c:ee:c2:5d:c0:ed:e1: e4:7b:4e:8a:2f:67:e8:1d:63:fa:6d:e4:3f:8b:68:35:3e:87: cb:2d:59:49:57:3b:a8:fa:ca:03:d2:6b:d3:bb:f5:e0:e4:1a: 6e:23:91:09:d9:76:18:1b:2f:0f:84:33:d9:9f:81:b6:3b:d4: a1:3a:01:18:ee:8d:00:2c:d6:27:53:b5:b2:70:19:f1:92:e0: e3:30:25:8b:d4:65:b8:9f:2c:85:30:3d:f7:47:c7:69:a8:a2: c7:6b:4e:e1 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURNcajPGyFYbM+dKDBsKPi+cNdK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTYwRkQyMUE5NzZBMTlBN0I4MUE1OUFBRkE2OUY2QTBB RkUzNkQwQzAeFw0yNjAzMjIxMDQxMTFaFw0yNzAzMjExMDQ2MTFaMDMxMTAvBgNV BAMTKEY3N0Y1RTFDRkNBMjg5OUM2MEQ4ODY0NUNCQzA3MjhDMjJGQzY4MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoY6LfJNb/nkip+MDKai4iWkNH T24S00kfi/PHolI/CTgV7jnAjugfQUd6zpIiQaX7yKWUMTtEt8l4vVoNx7WKVD3c heNjpxCcZBDK5vydx01I/cnfpf3q9tNgUDcXLumLclULD1wB2u5xPCAxz/KMiU2d FOTsEypJm2AtE+kqMyzFj9p8jZJvlgiE+tXPiWnEeGOA0cJxqUVXQ+7pHRqI3Sda Dyr1/0kEO13CL3Xv+Wb/aug5vf7qv41udr9XuOTwHWU4/7mB2X+3GbcAkKWHHl9p FLEyH6lj+9OqnskLqoXjIrIkPXpNT4MLwxVR1mmSQ6/vGcHqVzaEBQwCAiVvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU939eHPyiiZxg2IZFy8ByjCL8aDUwHwYDVR0j BBgwFoAUFg/SGpdqGae4Glmq+mn2oK/jbQwwDgYDVR0PAQH/BAQDAgeAMH0GA1Ud HwR2MHQwcqBwoG6GbHJzeW5jOi8va3JpbGwucGVlcmluZy5lZS5jb2x1bWJpYS5l ZHUvcmVwby9saWZlbmctaGl0Y293aG9yc2UvMC8xNjBGRDIxQTk3NkExOUE3Qjgx QTU5QUFGQTY5RjZBMEFGRTM2RDBDLmNybDCBhQYIKwYBBQUHAQEEeTB3MHUGCCsG AQUFBzAChmlyc3luYzovL2tyaWxsLnBlZXJpbmcuZWUuY29sdW1iaWEuZWR1L3Jl cG8vcGVlcmluZy10ZXN0YmVkLzAvMTYwRkQyMUE5NzZBMTlBN0I4MUE1OUFBRkE2 OUY2QTBBRkUzNkQwQy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcw C4Z+cnN5bmM6Ly9rcmlsbC5wZWVyaW5nLmVlLmNvbHVtYmlhLmVkdS9yZXBvL2xp ZmVuZy1oaXRjb3dob3JzZS8wLzMyMzgzMDM0M2EzMjM2Mzk2MzNhMzI2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM2MzEzNTM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAoBCacACww DQYJKoZIhvcNAQELBQADggEBAGAVYl8Wtfw663xWX6CIQcdZQ4FsxgKwqq/w/etB Gm+nKgGnzfEcGUu52tW3CAIP3RKKAfk/73ZKfdRnHD6HGkqZhfPiySBhggLpx9QI HMOapahZWm++Yl8cyBdY7+vTS5I9SHS30V8ty1KzDQE94vgg4pluRgrzqRtPWY6Y NvqlyXHRFggGJmpDCe8PI+NZgKNGXxDMAOh6jxFZnO7CXcDt4eR7ToovZ+gdY/pt 5D+LaDU+h8stWUlXO6j6ygPSa9O79eDkGm4jkQnZdhgbLw+EM9mfgbY71KE6ARju jQAs1idTtbJwGfGS4OMwJYvUZbifLIUwPfdHx2moosdrTuE= -----END CERTIFICATE-----Generated at Thu Mar 26 20:03:10 2026 by rpki-client