$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa File: 79de1a10-540a-49e4-92f2-b8e81488ffd1.roa (raw, json) Hash identifier: 9CB/IJ0q4pKr9d3miRCR6IobKvf5Hq41SXWFbUF5jPU= Subject key identifier: 71:82:8C:E9:63:2F:AD:14:17:94:9E:EF:26:07:7D:B5:FD:7F:27:6F Certificate issuer: /CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Certificate serial: 1E9A649FE60382023E5728EF25A21F9FE39FC668 Authority key identifier: A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa Signing time: Tue 30 Sep 2025 00:45:56 +0000 ROA not before: Tue 30 Sep 2025 00:45:56 +0000 ROA not after: Tue 04 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2803:4ed0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 24 Oct 2025 00:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:9a:64:9f:e6:03:82:02:3e:57:28:ef:25:a2:1f:9f:e3:9f:c6:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Validity Not Before: Sep 30 00:45:56 2025 GMT Not After : Nov 4 23:59:59 2025 GMT Subject: serialNumber=e50fc5b3a206bf0f68f324eb77b2f566cc9c45817c8d3c4ab4da311d3c8885a9, CN=7b7e81e4-c981-4cca-be35-ec61f732415c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:93:49:6d:5c:14:f8:56:03:1d:c7:15:9f:e6: 4e:a9:9c:f3:2e:7f:6e:ec:4f:a9:0d:23:5b:92:61: 3b:87:97:93:88:ab:94:43:1d:8f:60:87:70:8b:85: 00:2c:11:a4:a4:63:6f:0b:ea:c1:c8:db:8b:ed:22: 3e:f8:3a:2e:92:dc:8a:ac:41:36:b5:22:80:c9:38: 59:3a:99:18:7e:ca:f6:57:47:a6:72:53:7e:00:70: 5c:4c:20:77:c1:bc:48:db:cd:a7:1e:59:43:2b:ae: 3c:e9:9f:46:4c:44:f7:10:e2:d1:e1:2f:32:63:55: 67:f6:89:e4:da:cf:4a:ab:8f:f6:f3:f0:5a:1d:f7: e2:eb:76:26:d8:d8:f1:cf:99:18:0a:93:4a:bb:f6: 57:c0:32:bd:e1:32:16:75:0a:d0:20:de:ad:75:a5: f6:64:2e:ea:d4:06:00:2e:d7:f5:e2:08:11:56:d1: cc:98:47:96:c7:81:33:90:51:3b:c4:b6:f4:ee:6f: 11:fa:f4:83:2f:ab:25:b0:33:df:62:09:a2:31:f4: 73:b2:83:a5:11:39:17:2a:27:32:84:70:b1:d3:af: 53:17:f6:47:73:f1:93:3d:52:e5:b6:59:e9:18:e4: f1:cc:ab:79:38:b4:df:97:b7:55:2a:4c:7a:ab:36: 22:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:82:8C:E9:63:2F:AD:14:17:94:9E:EF:26:07:7D:B5:FD:7F:27:6F X509v3 Authority Key Identifier: keyid:A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:4ed0::/32 Signature Algorithm: sha256WithRSAEncryption 01:a4:0b:4b:41:f0:04:68:4d:dd:94:10:ac:5a:d6:7c:b8:a8: 30:6a:18:3e:3a:b1:c4:ff:a3:3c:cb:05:69:30:e7:b6:8a:35: b2:61:46:9f:3e:bd:00:14:d3:4e:e9:39:8d:2a:7e:e1:2a:ed: 46:52:30:aa:c4:d8:67:72:47:1f:48:5c:f5:8c:35:6d:8c:74: 37:57:f0:69:32:dd:db:aa:6b:06:d6:54:d8:8a:1e:c2:e0:f8: 8f:77:ee:c6:72:08:dd:41:4b:8b:91:ad:74:81:a5:ad:31:9d: b5:48:06:17:89:74:4a:28:02:12:c4:42:55:9a:ce:08:98:0d: 0d:0e:a2:63:2d:fc:03:5d:ab:29:fc:07:d0:d0:c0:34:ae:de: 7b:20:c4:43:54:6e:c8:24:10:00:fb:09:83:bc:93:01:84:11: 88:88:fe:ab:26:15:cc:65:36:12:ea:2a:58:d1:a9:0e:a2:96: 7d:b6:47:21:33:f7:10:89:54:ac:3f:b2:f6:97:6e:60:73:f0: e0:71:65:eb:34:1b:bb:16:f5:0f:c8:c6:bf:77:23:8e:9e:ba: 45:4a:d8:e0:63:62:37:1c:38:52:a0:e2:d0:ee:ac:9a:c7:86: 67:1d:95:39:39:80:11:d5:7a:cf:7e:ec:3a:de:09:85:68:84: 80:a4:03:12 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgIUHppkn+YDggI+VyjvJaIfn+OfxmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFNzZFOTZDRjA0QTdBMEI5MkIyMTlFNkVDM0JCMUVG RjlGMTc5ODAeFw0yNTA5MzAwMDQ1NTZaFw0yNTExMDQyMzU5NTlaMHoxSTBHBgNV BAUTQGU1MGZjNWIzYTIwNmJmMGY2OGYzMjRlYjc3YjJmNTY2Y2M5YzQ1ODE3Yzhk M2M0YWI0ZGEzMTFkM2M4ODg1YTkxLTArBgNVBAMTJDdiN2U4MWU0LWM5ODEtNGNj YS1iZTM1LWVjNjFmNzMyNDE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyTSW1cFPhWAx3HFZ/mTqmc8y5/buxPqQ0jW5JhO4eXk4irlEMdj2CHcIuF ACwRpKRjbwvqwcjbi+0iPvg6LpLciqxBNrUigMk4WTqZGH7K9ldHpnJTfgBwXEwg d8G8SNvNpx5ZQyuuPOmfRkxE9xDi0eEvMmNVZ/aJ5NrPSquP9vPwWh334ut2JtjY 8c+ZGAqTSrv2V8AyveEyFnUK0CDerXWl9mQu6tQGAC7X9eIIEVbRzJhHlseBM5BR O8S29O5vEfr0gy+rJbAz32IJojH0c7KDpRE5FyonMoRwsdOvUxf2R3Pxkz1S5bZZ 6Rjk8cyreTi035e3VSpMeqs2Iq0CAwEAAaOCAngwggJ0MB0GA1UdDgQWBBRxgozp Yy+tFBeUnu8mB321/X8nbzAfBgNVHSMEGDAWgBSi526WzwSnoLkrIZ5uw7se/58X mDAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwEBBIGsMIGpMIGmBggrBgEFBQcw AoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0Ex NTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFBQTEwMDc1RjY3 MTY1Qjk4QzRGNEVGQzMvMC9BMkU3NkU5NkNGMDRBN0EwQjkyQjIxOUU2RUMzQkIx RUZGOUYxNzk4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9y c3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vdm9sdW1l L2M0NzRkNzc4LTQzY2ItNGMzMC1hZDZhLTM5OTY4Y2JjOTRiYy83OWRlMWExMC01 NDBhLTQ5ZTQtOTJmMi1iOGU4MTQ4OGZmZDEucm9hMIGIBgNVHR8EgYAwfjB8oHqg eIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29tL3Zv bHVtZS9jNDc0ZDc3OC00M2NiLTRjMzAtYWQ2YS0zOTk2OGNiYzk0YmMvY1d5M0xP WHNQcGp5Ni1wNGpsVlFSUkRNZC1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKANO0DANBgkqhkiG9w0B AQsFAAOCAQEAAaQLS0HwBGhN3ZQQrFrWfLioMGoYPjqxxP+jPMsFaTDntoo1smFG nz69ABTTTuk5jSp+4SrtRlIwqsTYZ3JHH0hc9Yw1bYx0N1fwaTLd26prBtZU2Ioe wuD4j3fuxnII3UFLi5GtdIGlrTGdtUgGF4l0SigCEsRCVZrOCJgNDQ6iYy38A12r KfwH0NDANK7eeyDEQ1RuyCQQAPsJg7yTAYQRiIj+qyYVzGU2EuoqWNGpDqKWfbZH ITP3EIlUrD+y9pduYHPw4HFl6zQbuxb1D8jGv3cjjp66RUrY4GNiNxw4UqDi0O6s mseGZx2VOTmAEdV6z37sOt4JhWiEgKQDEg== -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:26 2025 by rpki-client