$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa File: 79de1a10-540a-49e4-92f2-b8e81488ffd1.roa (raw, json) Hash identifier: tZEiDs5jEuXJTaGKamk0grQxMRtOgOnyVtFkM6Nimek= Subject key identifier: 84:B0:27:F7:96:9B:C1:CB:9A:F5:CB:A5:7E:90:C4:57:D7:40:34:AE Certificate issuer: /CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Certificate serial: 5FFF01DD181CC1189335A74DB95960A01A4FB762 Authority key identifier: A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa Signing time: Mon 11 Aug 2025 15:30:48 +0000 ROA not before: Mon 11 Aug 2025 15:30:48 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2803:4ed0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Aug 2025 15:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ff:01:dd:18:1c:c1:18:93:35:a7:4d:b9:59:60:a0:1a:4f:b7:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Validity Not Before: Aug 11 15:30:48 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=bfbf5f9b7fa17eb4c14668a2a6255c37ed8d7ba83938bc122676445d310aa810, CN=7b7e81e4-c981-4cca-be35-ec61f732415c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:a2:1d:84:06:a4:0d:7b:81:04:05:0f:7b: bb:ab:cf:7a:a1:28:24:5d:8f:3a:7b:64:49:5b:bf: 7f:e2:3e:77:89:1a:b6:d9:88:53:b5:33:c2:73:52: 1f:21:5e:3f:3d:83:bd:7a:d1:a4:22:4b:76:56:de: 6d:ed:74:bb:ce:28:68:66:be:04:62:0b:a7:0c:87: ac:92:57:94:3f:0e:54:60:d7:ec:12:ff:25:d9:41: 45:47:62:61:d3:77:2d:82:ce:ff:70:07:f1:e3:1d: ca:a7:d3:39:40:eb:08:05:b2:44:c3:e4:58:a0:b5: 12:b6:b0:07:5c:77:61:23:35:ae:3a:42:bc:bc:42: d6:50:7e:03:75:7e:a5:2b:59:b0:84:ff:ec:04:42: 83:9f:d7:bc:79:f6:77:da:7e:3f:b0:e9:03:0e:04: f5:bb:9a:d9:40:68:6f:e9:a5:7a:c4:07:97:8b:df: ab:02:bc:38:3a:11:2e:fd:25:01:b0:4f:f8:09:85: a2:02:66:52:40:44:15:a9:59:f7:58:e6:f3:7a:80: 3b:96:aa:83:ae:28:61:0f:a9:a9:49:f5:61:c2:e2: 28:15:ca:f2:31:e3:80:5c:4c:9f:9b:d4:6c:b2:cb: b9:3c:a4:6f:80:b0:25:50:4b:c5:06:a4:07:72:31: 26:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B0:27:F7:96:9B:C1:CB:9A:F5:CB:A5:7E:90:C4:57:D7:40:34:AE X509v3 Authority Key Identifier: keyid:A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:4ed0::/32 Signature Algorithm: sha256WithRSAEncryption 16:46:f4:e3:cb:18:6a:bb:7c:53:33:12:38:a5:bd:29:54:2e: 4a:28:47:61:de:8a:7f:ae:5e:37:db:14:70:81:c7:2e:81:dc: 60:cf:c5:00:cc:58:52:df:97:01:a5:31:fb:53:b3:42:60:ea: 8e:bb:30:a8:56:e6:a1:2d:1e:00:e8:ac:ee:a3:4a:24:d0:57: 27:8e:dc:82:6d:88:80:2c:b9:79:18:13:50:ee:9e:fe:3e:6f: 5c:8e:d8:ae:26:ad:87:e7:d5:4e:93:68:65:06:0b:f3:1a:d0: 4d:59:4e:59:b9:26:e3:c9:82:7c:b5:4b:48:bb:63:7a:61:ea: 32:bd:11:cb:c2:9a:57:27:65:54:15:87:3a:7d:65:12:e9:c4: 66:3e:45:77:0c:2b:86:ce:71:60:e5:37:ae:b3:bc:37:c1:6d: ca:9e:3e:8d:fa:4b:cc:d4:e2:9d:f9:c0:74:43:e4:00:b3:75: 91:ee:12:2b:8a:46:61:90:83:1a:2a:e8:09:7e:77:3a:dd:9e: 65:74:38:45:f0:e8:17:8a:63:bb:c3:f6:d7:5c:b0:db:c0:a4: 4a:b5:84:99:0a:5a:c4:f2:0e:76:9c:00:3f:a0:c7:0a:23:2d: 98:31:69:f9:2d:09:58:77:92:08:72:23:b5:c4:87:f5:90:48: a7:af:a0:96 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgIUX/8B3RgcwRiTNadNuVlgoBpPt2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFNzZFOTZDRjA0QTdBMEI5MkIyMTlFNkVDM0JCMUVG RjlGMTc5ODAeFw0yNTA4MTExNTMwNDhaFw0yNTA5MTUyMzU5NTlaMHoxSTBHBgNV BAUTQGJmYmY1ZjliN2ZhMTdlYjRjMTQ2NjhhMmE2MjU1YzM3ZWQ4ZDdiYTgzOTM4 YmMxMjI2NzY0NDVkMzEwYWE4MTAxLTArBgNVBAMTJDdiN2U4MWU0LWM5ODEtNGNj YS1iZTM1LWVjNjFmNzMyNDE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxmoh2EBqQNe4EEBQ97u6vPeqEoJF2POntkSVu/f+I+d4kattmIU7UzwnNS HyFePz2DvXrRpCJLdlbebe10u84oaGa+BGILpwyHrJJXlD8OVGDX7BL/JdlBRUdi YdN3LYLO/3AH8eMdyqfTOUDrCAWyRMPkWKC1ErawB1x3YSM1rjpCvLxC1lB+A3V+ pStZsIT/7ARCg5/XvHn2d9p+P7DpAw4E9bua2UBob+mlesQHl4vfqwK8ODoRLv0l AbBP+AmFogJmUkBEFalZ91jm83qAO5aqg64oYQ+pqUn1YcLiKBXK8jHjgFxMn5vU bLLLuTykb4CwJVBLxQakB3IxJskCAwEAAaOCAngwggJ0MB0GA1UdDgQWBBSEsCf3 lpvBy5r1y6V+kMRX10A0rjAfBgNVHSMEGDAWgBSi526WzwSnoLkrIZ5uw7se/58X mDAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwEBBIGsMIGpMIGmBggrBgEFBQcw AoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0Ex NTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFBQTEwMDc1RjY3 MTY1Qjk4QzRGNEVGQzMvMC9BMkU3NkU5NkNGMDRBN0EwQjkyQjIxOUU2RUMzQkIx RUZGOUYxNzk4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9y c3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vdm9sdW1l L2M0NzRkNzc4LTQzY2ItNGMzMC1hZDZhLTM5OTY4Y2JjOTRiYy83OWRlMWExMC01 NDBhLTQ5ZTQtOTJmMi1iOGU4MTQ4OGZmZDEucm9hMIGIBgNVHR8EgYAwfjB8oHqg eIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29tL3Zv bHVtZS9jNDc0ZDc3OC00M2NiLTRjMzAtYWQ2YS0zOTk2OGNiYzk0YmMvY1d5M0xP WHNQcGp5Ni1wNGpsVlFSUkRNZC1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKANO0DANBgkqhkiG9w0B AQsFAAOCAQEAFkb048sYart8UzMSOKW9KVQuSihHYd6Kf65eN9sUcIHHLoHcYM/F AMxYUt+XAaUx+1OzQmDqjrswqFbmoS0eAOis7qNKJNBXJ47cgm2IgCy5eRgTUO6e /j5vXI7Yriath+fVTpNoZQYL8xrQTVlOWbkm48mCfLVLSLtjemHqMr0Ry8KaVydl VBWHOn1lEunEZj5Fdwwrhs5xYOU3rrO8N8Ftyp4+jfpLzNTinfnAdEPkALN1ke4S K4pGYZCDGiroCX53Ot2eZXQ4RfDoF4pju8P211yw28CkSrWEmQpaxPIOdpwAP6DH CiMtmDFp+S0JWHeSCHIjtcSH9ZBIp6+glg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:16 2025 by rpki-client