$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa File: 56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa (raw, json) Hash identifier: 9boSiTDMw3PzQKm9cDx3Ye6e98iwzr2JCdkEEY+fwZo= Subject key identifier: AB:52:49:26:6A:F7:01:BB:99:A1:49:B6:84:32:3A:F0:9A:0B:D6:09 Certificate issuer: /CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Certificate serial: 68C2E408CA4423D37A5C771286C0E85C58CA5DF0 Authority key identifier: A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa Signing time: Mon 10 Nov 2025 19:06:51 +0000 ROA not before: Mon 10 Nov 2025 19:06:51 +0000 ROA not after: Mon 15 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 191.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 21 Nov 2025 15:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:c2:e4:08:ca:44:23:d3:7a:5c:77:12:86:c0:e8:5c:58:ca:5d:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Validity Not Before: Nov 10 19:06:51 2025 GMT Not After : Dec 15 23:59:59 2025 GMT Subject: serialNumber=095f955aecc7955ba4b0ca32369c55b9f839b1b26c4090de05d1ac9a2b9a7a97, CN=7b7e81e4-c981-4cca-be35-ec61f732415c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dd:c8:a7:6f:47:92:0e:cc:95:59:f3:b8:c7: d3:26:bf:85:a0:09:52:3f:8c:2b:24:89:0d:51:1b: b1:1c:98:ff:d2:54:d1:cc:cf:c5:b0:cf:3b:65:e3: d2:1e:fe:91:6a:75:a3:0b:8a:9c:ef:dd:3c:72:06: 53:3f:49:eb:f7:86:e9:01:57:cd:5b:95:3d:09:c0: 7d:5d:55:29:8f:92:fa:56:df:87:29:65:2d:46:38: 36:c6:cc:fb:74:90:04:8d:ed:5e:fe:1c:20:f6:f1: 57:7e:8b:04:69:b9:9c:b9:e5:0d:90:1a:8b:be:96: a6:18:42:a2:5d:66:c3:53:3f:d8:00:96:6c:cc:b0: 44:50:46:7c:6b:2a:e0:99:b2:0d:55:9f:60:1d:7f: e3:07:aa:64:14:f0:ec:db:cb:4f:5f:71:27:0e:37: db:3f:52:cc:59:38:74:df:04:2a:35:9c:ed:b4:eb: 49:11:c4:44:8e:15:1a:82:fb:bc:a0:bd:3e:4b:dc: a0:0c:39:c5:f0:09:14:01:2a:fe:92:79:cb:f8:01: bf:7f:5d:3f:5b:82:e0:d5:61:b0:b4:bf:9f:54:20: 7a:f4:49:25:fe:ef:22:d8:6c:68:6b:6b:5d:27:8e: ea:90:49:11:1f:57:c8:28:71:d0:00:cf:f7:8f:fd: 07:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:52:49:26:6A:F7:01:BB:99:A1:49:B6:84:32:3A:F0:9A:0B:D6:09 X509v3 Authority Key Identifier: keyid:A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3f:74:8b:85:cb:af:ce:72:86:6c:8c:ec:9b:81:03:55:67:c2: d6:87:c9:08:08:ae:2b:6f:19:44:d1:a8:93:e5:ba:72:a7:3a: 3d:64:39:4e:84:76:47:d4:d0:04:9a:45:8e:cb:43:94:0d:de: 9f:30:ff:8b:a3:61:a4:8a:62:a4:9c:20:33:18:2d:ba:79:0e: 41:8d:fc:e1:a0:58:c0:95:88:f2:d6:d8:cc:a7:36:1d:6d:65: 04:c2:4b:18:b7:de:34:1e:c1:d7:90:50:81:23:52:9c:40:92: 6b:bf:f7:f0:ca:3a:a6:99:27:1f:91:11:e4:20:87:e5:87:4c: 1b:3c:9d:0a:a7:23:1e:c6:60:fa:72:d8:ad:25:be:ba:52:f2: 37:81:dc:09:74:ef:88:07:ed:5a:cd:c4:1d:18:21:2d:92:f3: 96:7e:37:87:4e:af:ae:7f:87:cd:b2:b8:4e:a8:c1:79:2e:24: cb:4c:99:a3:c1:71:15:91:6c:91:cd:3f:fc:e7:a0:64:75:17: d0:48:57:bd:31:42:13:fa:fe:5e:d3:24:39:47:70:1b:69:74: 88:e9:ef:57:78:8c:1a:06:c4:90:28:6a:84:e7:b9:44:52:6e: 1a:27:5c:4f:db:df:d5:4f:ce:bf:04:00:df:b7:42:84:bb:7f: 83:1b:1f:fa -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgIUaMLkCMpEI9N6XHcShsDoXFjKXfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFNzZFOTZDRjA0QTdBMEI5MkIyMTlFNkVDM0JCMUVG RjlGMTc5ODAeFw0yNTExMTAxOTA2NTFaFw0yNTEyMTUyMzU5NTlaMHoxSTBHBgNV BAUTQDA5NWY5NTVhZWNjNzk1NWJhNGIwY2EzMjM2OWM1NWI5ZjgzOWIxYjI2YzQw OTBkZTA1ZDFhYzlhMmI5YTdhOTcxLTArBgNVBAMTJDdiN2U4MWU0LWM5ODEtNGNj YS1iZTM1LWVjNjFmNzMyNDE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3dyKdvR5IOzJVZ87jH0ya/haAJUj+MKySJDVEbsRyY/9JU0czPxbDPO2Xj 0h7+kWp1owuKnO/dPHIGUz9J6/eG6QFXzVuVPQnAfV1VKY+S+lbfhyllLUY4NsbM +3SQBI3tXv4cIPbxV36LBGm5nLnlDZAai76WphhCol1mw1M/2ACWbMywRFBGfGsq 4JmyDVWfYB1/4weqZBTw7NvLT19xJw432z9SzFk4dN8EKjWc7bTrSRHERI4VGoL7 vKC9PkvcoAw5xfAJFAEq/pJ5y/gBv39dP1uC4NVhsLS/n1QgevRJJf7vIthsaGtr XSeO6pBJER9XyChx0ADP94/9B3ECAwEAAaOCAnYwggJyMB0GA1UdDgQWBBSrUkkm avcBu5mhSbaEMjrwmgvWCTAfBgNVHSMEGDAWgBSi526WzwSnoLkrIZ5uw7se/58X mDAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwEBBIGsMIGpMIGmBggrBgEFBQcw AoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0Ex NTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFBQTEwMDc1RjY3 MTY1Qjk4QzRGNEVGQzMvMC9BMkU3NkU5NkNGMDRBN0EwQjkyQjIxOUU2RUMzQkIx RUZGOUYxNzk4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9y c3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vdm9sdW1l L2M0NzRkNzc4LTQzY2ItNGMzMC1hZDZhLTM5OTY4Y2JjOTRiYy81NmNlN2NkMC0w ODRlLTRlZDYtYWFlNy0wNzNhNTZmNzRmMjgucm9hMIGIBgNVHR8EgYAwfjB8oHqg eIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29tL3Zv bHVtZS9jNDc0ZDc3OC00M2NiLTRjMzAtYWQ2YS0zOTk2OGNiYzk0YmMvY1d5M0xP WHNQcGp5Ni1wNGpsVlFSUkRNZC1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAv6YwDQYJKoZIhvcNAQEL BQADggEBAD90i4XLr85yhmyM7JuBA1VnwtaHyQgIritvGUTRqJPlunKnOj1kOU6E dkfU0ASaRY7LQ5QN3p8w/4ujYaSKYqScIDMYLbp5DkGN/OGgWMCViPLW2MynNh1t ZQTCSxi33jQewdeQUIEjUpxAkmu/9/DKOqaZJx+REeQgh+WHTBs8nQqnIx7GYPpy 2K0lvrpS8jeB3Al074gH7VrNxB0YIS2S85Z+N4dOr65/h82yuE6owXkuJMtMmaPB cRWRbJHNP/znoGR1F9BIV70xQhP6/l7TJDlHcBtpdIjp71d4jBoGxJAoaoTnuURS bhonXE/b39VPzr8EAN+3QoS7f4MbH/o= -----END CERTIFICATE-----Generated at Tue Nov 18 08:20:47 2025 by rpki-client