$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa File: 79de1a10-540a-49e4-92f2-b8e81488ffd1.roa (raw, json) Hash identifier: NF0lpNAvE1ky5X5dXD5+40imIi9Qmyb4N+BqeMW9Xfg= Subject key identifier: B4:67:DD:2A:CF:29:96:1F:5C:59:A2:50:45:BE:70:73:52:64:EA:A0 Certificate issuer: /CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Certificate serial: 6A881F1FE0CE541E0D8F3948041DF764851532F7 Authority key identifier: A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa Signing time: Tue 28 Apr 2026 00:00:30 +0000 ROA not before: Tue 28 Apr 2026 00:00:30 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2803:4ed0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 17 May 2026 00:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:88:1f:1f:e0:ce:54:1e:0d:8f:39:48:04:1d:f7:64:85:15:32:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Validity Not Before: Apr 28 00:00:30 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=628e5da8d50135a920d1d8f44b841cf47faf1809d31ce60cffc48c1046e80be7, CN=7b7e81e4-c981-4cca-be35-ec61f732415c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a3:6b:0e:b7:75:74:18:03:68:78:6e:60:a0: c7:90:b3:17:6d:82:f3:54:38:b5:76:e2:96:fe:cb: cd:09:3c:b8:b2:a6:09:be:f3:44:6c:fb:c0:74:f0: 5e:49:b2:e4:9d:dd:b3:83:22:c7:65:ce:f4:79:e8: cc:f5:fa:2c:8a:4e:d3:d6:46:65:43:d9:af:76:6d: fe:a1:d4:2b:f8:e8:bb:5b:2b:6c:7a:4c:8b:be:c3: f0:ba:92:bb:13:4f:ef:2d:23:ff:59:f8:79:66:38: c4:49:80:99:26:c1:69:aa:49:7c:df:1c:f2:cf:a6: 42:d4:72:bd:57:f3:0c:eb:9a:bd:ce:63:41:b5:5c: e4:b7:71:72:70:72:86:bf:45:4c:1c:71:12:23:77: d0:9e:ff:95:70:39:6c:bf:1d:14:5f:1d:db:8d:9e: b6:ed:df:07:ed:03:7b:76:82:b6:19:46:30:36:02: 25:f5:29:29:51:fa:04:e3:e9:e0:82:e6:1b:bb:3f: cd:1c:64:21:a8:3f:44:ec:2f:87:80:b7:35:9c:ff: 70:19:4c:e3:03:fb:3e:5d:1c:3f:60:8f:2a:67:05: e4:22:e6:de:0a:90:bc:e2:8f:d2:3e:ac:fb:99:af: b1:d1:76:8b:85:21:06:ce:16:1f:26:3d:4f:72:8f: 1c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:67:DD:2A:CF:29:96:1F:5C:59:A2:50:45:BE:70:73:52:64:EA:A0 X509v3 Authority Key Identifier: keyid:A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:4ed0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:22:1b:3a:c8:29:fc:62:3a:f4:2f:d6:94:c6:0d:30:4e:79: c5:c9:29:6d:e9:40:80:9c:15:ef:08:15:e3:84:0f:89:34:d5: 17:68:09:5c:97:9f:12:7f:f3:3a:ec:43:92:ba:9b:5b:f2:71: cb:c0:54:ac:95:f7:c2:32:9e:37:d9:53:40:a5:04:4c:18:25: f5:31:ba:4b:7e:a5:26:2c:ad:d0:67:2d:70:96:bd:a0:21:e6: ae:fe:1d:00:08:ae:d7:50:fa:5d:35:9a:cd:e9:1b:b3:50:e9: 3b:97:79:09:27:b4:db:0a:0c:c5:b9:23:5f:9d:d3:d9:1e:2c: dd:1d:4e:d8:bf:bc:da:c5:45:db:c7:89:1c:f0:f6:c4:2f:d0: a9:b5:2b:e6:0b:e5:22:11:a5:ab:71:83:44:36:b9:5c:6f:04: 2d:c3:44:4a:4d:33:d2:08:29:f7:7e:d7:e0:0f:e1:4c:db:1a: eb:aa:9c:32:36:9e:55:ea:c7:61:d2:21:f0:37:d3:d8:e5:b4: 69:86:b3:78:3a:85:95:de:f7:12:58:db:7b:22:76:19:af:4b: ab:7b:17:5c:62:e4:82:02:d9:51:75:f6:c8:bb:55:f2:92:00: 74:cc:9b:63:c5:73:a1:e9:88:e2:51:bc:b8:55:7a:b2:48:86: e0:30:0e:c4 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgIUaogfH+DOVB4NjzlIBB33ZIUVMvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFNzZFOTZDRjA0QTdBMEI5MkIyMTlFNkVDM0JCMUVG RjlGMTc5ODAeFw0yNjA0MjgwMDAwMzBaFw0yNjA3MjcyMzU5NTlaMHoxSTBHBgNV BAUTQDYyOGU1ZGE4ZDUwMTM1YTkyMGQxZDhmNDRiODQxY2Y0N2ZhZjE4MDlkMzFj ZTYwY2ZmYzQ4YzEwNDZlODBiZTcxLTArBgNVBAMTJDdiN2U4MWU0LWM5ODEtNGNj YS1iZTM1LWVjNjFmNzMyNDE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+jaw63dXQYA2h4bmCgx5CzF22C81Q4tXbilv7LzQk8uLKmCb7zRGz7wHTw Xkmy5J3ds4Mix2XO9HnozPX6LIpO09ZGZUPZr3Zt/qHUK/jou1srbHpMi77D8LqS uxNP7y0j/1n4eWY4xEmAmSbBaapJfN8c8s+mQtRyvVfzDOuavc5jQbVc5LdxcnBy hr9FTBxxEiN30J7/lXA5bL8dFF8d242etu3fB+0De3aCthlGMDYCJfUpKVH6BOPp 4ILmG7s/zRxkIag/ROwvh4C3NZz/cBlM4wP7Pl0cP2CPKmcF5CLm3gqQvOKP0j6s +5mvsdF2i4UhBs4WHyY9T3KPHAsCAwEAAaOCAngwggJ0MB0GA1UdDgQWBBS0Z90q zymWH1xZolBFvnBzUmTqoDAfBgNVHSMEGDAWgBSi526WzwSnoLkrIZ5uw7se/58X mDAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwEBBIGsMIGpMIGmBggrBgEFBQcw AoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0Ex NTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFBQTEwMDc1RjY3 MTY1Qjk4QzRGNEVGQzMvMC9BMkU3NkU5NkNGMDRBN0EwQjkyQjIxOUU2RUMzQkIx RUZGOUYxNzk4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9y c3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vdm9sdW1l L2M0NzRkNzc4LTQzY2ItNGMzMC1hZDZhLTM5OTY4Y2JjOTRiYy83OWRlMWExMC01 NDBhLTQ5ZTQtOTJmMi1iOGU4MTQ4OGZmZDEucm9hMIGIBgNVHR8EgYAwfjB8oHqg eIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29tL3Zv bHVtZS9jNDc0ZDc3OC00M2NiLTRjMzAtYWQ2YS0zOTk2OGNiYzk0YmMvY1d5M0xP WHNQcGp5Ni1wNGpsVlFSUkRNZC1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKANO0DANBgkqhkiG9w0B AQsFAAOCAQEAbSIbOsgp/GI69C/WlMYNME55xckpbelAgJwV7wgV44QPiTTVF2gJ XJefEn/zOuxDkrqbW/Jxy8BUrJX3wjKeN9lTQKUETBgl9TG6S36lJiyt0GctcJa9 oCHmrv4dAAiu11D6XTWazekbs1DpO5d5CSe02woMxbkjX53T2R4s3R1O2L+82sVF 28eJHPD2xC/QqbUr5gvlIhGlq3GDRDa5XG8ELcNESk0z0ggp937X4A/hTNsa66qc MjaeVerHYdIh8DfT2OW0aYazeDqFld73EljbeyJ2Ga9Lq3sXXGLkggLZUXX2yLtV 8pIAdMybY8VzoemI4lG8uFV6skiG4DAOxA== -----END CERTIFICATE-----Generated at Wed May 13 19:48:36 2026 by rpki-client