$ rpki-client -vvf rpki-pp.com/repo/GOOFL/3/3133382e3138352e3232382e302f32322d3234203d3e203437303635.roa File: 3133382e3138352e3232382e302f32322d3234203d3e203437303635.roa (raw, json) Hash identifier: /AzFBWb5LI96EFZqxB8KXJNcvGyZBAIpJAZB6kXRWL0= Subject key identifier: 96:C0:84:7F:D7:84:1B:66:77:9B:78:4B:DA:67:B1:57:7D:7D:07:A5 Certificate issuer: /CN=F0AAD925E534BD72E6B3E9869201D046C7916AFC Certificate serial: 207EEDAE23BE6FEC93AE91AF1EAB923298776621 Authority key identifier: F0:AA:D9:25:E5:34:BD:72:E6:B3:E9:86:92:01:D0:46:C7:91:6A:FC Authority info access: rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/F0AAD925E534BD72E6B3E9869201D046C7916AFC.cer Subject info access: rsync://rpki-pp.com/repo/GOOFL/3/3133382e3138352e3232382e302f32322d3234203d3e203437303635.roa Signing time: Sun 15 Mar 2026 01:59:56 +0000 ROA not before: Sun 15 Mar 2026 01:54:56 +0000 ROA not after: Sun 14 Mar 2027 01:59:56 +0000 asID: 47065 IP address blocks: 138.185.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-pp.com/repo/GOOFL/3/F0AAD925E534BD72E6B3E9869201D046C7916AFC.crl rsync://rpki-pp.com/repo/GOOFL/3/F0AAD925E534BD72E6B3E9869201D046C7916AFC.mft rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/F0AAD925E534BD72E6B3E9869201D046C7916AFC.cer rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/3F8EBCC0428DD608F39D858BE891B85B0032681A.crl rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/3F8EBCC0428DD608F39D858BE891B85B0032681A.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3F8EBCC0428DD608F39D858BE891B85B0032681A.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 27 Mar 2026 15:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:7e:ed:ae:23:be:6f:ec:93:ae:91:af:1e:ab:92:32:98:77:66:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0AAD925E534BD72E6B3E9869201D046C7916AFC Validity Not Before: Mar 15 01:54:56 2026 GMT Not After : Mar 14 01:59:56 2027 GMT Subject: CN=96C0847FD7841B66779B784BDA67B1577D7D07A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ac:5e:59:14:aa:a5:99:cc:f6:51:02:33:8c: 1c:e5:7c:a7:fb:9d:53:f4:3c:63:5d:e5:e1:ab:e4: c5:25:fa:fd:42:b0:bd:1c:90:43:f7:30:3f:28:0d: da:34:db:22:73:b9:30:b9:c3:01:8e:21:9f:77:2b: e3:e2:0c:97:a2:37:63:8c:39:9c:32:1b:43:f4:39: da:10:fe:6a:fb:2f:f4:c9:9d:cd:06:6a:6b:ac:e3: 4d:d6:08:d7:10:67:ee:92:67:d3:e0:6a:1b:18:f1: 0b:63:4a:54:a8:a7:82:b8:25:4a:cb:c5:9c:18:58: 46:fd:08:9c:e1:73:31:60:46:19:6a:34:b9:55:f2: 09:3b:2a:ec:8a:e1:55:61:78:ce:04:35:2e:3d:48: 0b:f2:c2:7b:df:60:ce:12:51:4c:56:5c:14:bb:16: ef:69:15:5d:a0:c0:20:56:0c:70:3d:74:f4:74:99: dd:9d:92:63:0a:37:86:f4:22:93:69:94:77:30:71: 3b:1c:a1:e4:4f:37:ea:d3:a7:95:4d:4b:0a:ad:6d: cc:1c:4a:1c:31:50:a8:a2:d5:e5:54:7f:7c:ca:f6: c1:31:d4:9f:44:85:c9:a9:81:79:b8:ef:3e:c1:ff: 44:6b:22:99:81:bc:d8:a0:45:d8:08:79:ea:25:6e: 7b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C0:84:7F:D7:84:1B:66:77:9B:78:4B:DA:67:B1:57:7D:7D:07:A5 X509v3 Authority Key Identifier: keyid:F0:AA:D9:25:E5:34:BD:72:E6:B3:E9:86:92:01:D0:46:C7:91:6A:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-pp.com/repo/GOOFL/3/F0AAD925E534BD72E6B3E9869201D046C7916AFC.crl Authority Information Access: CA Issuers - URI:rsync://krill.peering.ee.columbia.edu/repo/peering-testbed/0/F0AAD925E534BD72E6B3E9869201D046C7916AFC.cer Subject Information Access: Signed Object - URI:rsync://rpki-pp.com/repo/GOOFL/3/3133382e3138352e3232382e302f32322d3234203d3e203437303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.185.228.0/22 Signature Algorithm: sha256WithRSAEncryption 96:b4:15:ae:cc:b2:fc:0b:76:b3:b1:1b:05:9c:a6:d6:55:e7: cd:a2:f8:d1:66:45:56:7f:ec:f1:65:02:d6:1c:fc:de:8d:82: b0:af:9a:77:90:df:a0:dc:76:88:2a:68:e6:1c:25:3c:91:ea: d3:a6:0d:4d:e9:8e:b2:40:ed:b7:09:e2:72:cd:80:62:48:21: 8a:e0:7c:da:65:6c:b1:bc:ff:70:70:77:dd:23:8f:fb:3f:cc: 8d:12:85:ae:ab:12:09:f0:b3:80:ea:a8:06:27:fa:2d:86:fa: 01:c7:f8:05:75:67:62:3f:54:b9:9f:13:53:1b:4d:9f:e7:59: 86:be:c1:5e:93:dc:db:dd:31:4b:87:ad:24:2f:d7:e8:d9:e3: 44:7b:b3:2f:72:ef:19:59:3f:1e:60:47:1e:24:cb:f7:ad:aa: 88:cf:69:a7:0c:c3:7c:42:7a:f4:95:7c:82:0f:c5:fa:43:72: 54:ae:76:e5:fd:30:9a:f4:88:fc:43:3e:15:98:7d:0c:7a:ec: 9d:b4:44:f1:1f:6d:29:a5:59:ee:c1:13:4e:da:7a:a2:c1:91: d2:60:61:cb:4a:2b:27:5b:b3:93:00:69:a1:2c:a6:3d:5b:57: 70:ee:ad:93:f1:32:01:25:ab:ee:1e:a6:31:42:93:08:22:9a: 22:2a:11:7e -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUIH7triO+b+yTrpGvHquSMph3ZiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjBBQUQ5MjVFNTM0QkQ3MkU2QjNFOTg2OTIwMUQwNDZD NzkxNkFGQzAeFw0yNjAzMTUwMTU0NTZaFw0yNzAzMTQwMTU5NTZaMDMxMTAvBgNV BAMTKDk2QzA4NDdGRDc4NDFCNjY3NzlCNzg0QkRBNjdCMTU3N0Q3RDA3QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6rF5ZFKqlmcz2UQIzjBzlfKf7 nVP0PGNd5eGr5MUl+v1CsL0ckEP3MD8oDdo02yJzuTC5wwGOIZ93K+PiDJeiN2OM OZwyG0P0OdoQ/mr7L/TJnc0Gamus403WCNcQZ+6SZ9PgahsY8QtjSlSop4K4JUrL xZwYWEb9CJzhczFgRhlqNLlV8gk7KuyK4VVheM4ENS49SAvywnvfYM4SUUxWXBS7 Fu9pFV2gwCBWDHA9dPR0md2dkmMKN4b0IpNplHcwcTscoeRPN+rTp5VNSwqtbcwc ShwxUKii1eVUf3zK9sEx1J9EhcmpgXm47z7B/0RrIpmBvNigRdgIeeolbnvjAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUlsCEf9eEG2Z3m3hL2mexV319B6UwHwYDVR0j BBgwFoAU8KrZJeU0vXLms+mGkgHQRseRavwwDgYDVR0PAQH/BAQDAgeAMF4GA1Ud HwRXMFUwU6BRoE+GTXJzeW5jOi8vcnBraS1wcC5jb20vcmVwby9HT09GTC8zL0Yw QUFEOTI1RTUzNEJENzJFNkIzRTk4NjkyMDFEMDQ2Qzc5MTZBRkMuY3JsMIGFBggr BgEFBQcBAQR5MHcwdQYIKwYBBQUHMAKGaXJzeW5jOi8va3JpbGwucGVlcmluZy5l ZS5jb2x1bWJpYS5lZHUvcmVwby9wZWVyaW5nLXRlc3RiZWQvMC9GMEFBRDkyNUU1 MzRCRDcyRTZCM0U5ODY5MjAxRDA0NkM3OTE2QUZDLmNlcjB5BggrBgEFBQcBCwRt MGswaQYIKwYBBQUHMAuGXXJzeW5jOi8vcnBraS1wcC5jb20vcmVwby9HT09GTC8z LzMxMzMzODJlMzEzODM1MmUzMjMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAz NDM3MzAzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCirnkMA0GCSqGSIb3DQEBCwUAA4IBAQCWtBWu zLL8C3azsRsFnKbWVefNovjRZkVWf+zxZQLWHPzejYKwr5p3kN+g3HaIKmjmHCU8 kerTpg1N6Y6yQO23CeJyzYBiSCGK4HzaZWyxvP9wcHfdI4/7P8yNEoWuqxIJ8LOA 6qgGJ/othvoBx/gFdWdiP1S5nxNTG02f51mGvsFek9zb3TFLh60kL9fo2eNEe7Mv cu8ZWT8eYEceJMv3raqIz2mnDMN8Qnr0lXyCD8X6Q3JUrnbl/TCa9Ij8Qz4VmH0M euydtETxH20ppVnuwRNO2nqiwZHSYGHLSisnW7OTAGmhLKY9W1dw7q2T8TIBJavu HqYxQpMIIpoiKhF+ -----END CERTIFICATE-----Generated at Thu Mar 26 19:06:39 2026 by rpki-client