$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa File: 79de1a10-540a-49e4-92f2-b8e81488ffd1.roa (raw, json) Hash identifier: 9EtpUAtyskZh3MSgWEJQ5udG2Nps7JodHcnqePo0Xj4= Subject key identifier: FF:A5:66:47:D6:48:94:1A:62:51:55:9B:02:F2:CE:D0:8B:8F:C4:52 Certificate issuer: /CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Certificate serial: 3B7D56D9F8830618F94D6C6E947142EFA7375617 Authority key identifier: A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa Signing time: Thu 17 Jul 2025 18:07:00 +0000 ROA not before: Thu 17 Jul 2025 18:07:00 +0000 ROA not after: Thu 21 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2803:4ed0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 25 Jul 2025 04:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:7d:56:d9:f8:83:06:18:f9:4d:6c:6e:94:71:42:ef:a7:37:56:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Validity Not Before: Jul 17 18:07:00 2025 GMT Not After : Aug 21 23:59:59 2025 GMT Subject: serialNumber=eedd3c0f55e435f2afcb6f274dae65aac86a3fcf3e4ce9844abc343baa80f20e, CN=7b7e81e4-c981-4cca-be35-ec61f732415c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0f:95:68:04:2a:ee:9a:f3:43:22:56:cd:2d: aa:4c:ad:a7:a6:3e:cf:fe:22:99:d7:af:df:d8:85: 4e:33:1b:46:e4:38:44:48:86:2d:f3:32:eb:c6:c8: f3:c3:04:75:38:2d:25:a0:d7:6e:17:6d:29:01:60: d7:86:e8:23:39:06:44:05:b7:76:d7:dc:38:c3:fe: 4c:d4:f2:e8:9e:e6:9c:03:fe:1b:2a:cb:d1:7a:67: 28:d3:a1:95:fb:59:69:40:fa:cd:ac:86:ed:39:e1: 6c:9b:09:50:eb:5f:a0:b2:21:f0:45:eb:ec:37:f0: 83:36:35:b2:4a:f4:8f:d5:a8:a5:78:ad:ea:c6:d2: 2e:32:b6:17:0a:ad:34:38:7a:97:fb:8f:d0:02:1e: e3:ae:63:70:bc:e8:c4:26:69:37:9f:61:8c:c8:22: d4:92:5d:66:67:f8:a4:2d:37:ed:4d:62:e0:58:4c: 52:bc:31:82:a3:9f:a1:d2:42:39:67:1f:ac:67:53: 98:a0:d6:8e:e4:30:3f:2a:c2:41:02:1e:21:63:a9: 56:95:ec:3d:c3:da:77:dd:ff:93:8d:a9:c7:16:a1: db:78:17:0a:9b:41:1b:c9:b6:d2:fc:e8:3a:7a:76: 33:0f:70:e5:4f:5f:00:e5:65:75:1b:66:97:27:4c: 38:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A5:66:47:D6:48:94:1A:62:51:55:9B:02:F2:CE:D0:8B:8F:C4:52 X509v3 Authority Key Identifier: keyid:A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:4ed0::/32 Signature Algorithm: sha256WithRSAEncryption 71:80:0f:71:6a:96:e4:e2:3c:9c:56:8b:7f:60:52:1e:11:67: 7c:de:de:4d:04:c8:bf:69:ff:d8:ee:99:50:5c:db:c1:1d:b3: d6:a7:c7:dd:a1:75:70:07:b2:eb:b9:62:39:e9:af:7b:ca:c6: 93:fb:69:58:7f:e0:df:9a:4a:b6:1a:9a:b2:da:fd:df:d6:01: 6e:32:8e:54:17:44:0b:8a:d2:ef:7b:19:7f:12:28:69:8b:bb: 46:33:f6:80:7e:41:f4:f5:ea:54:31:b5:7f:9a:7b:13:fd:f3: 9b:1c:ae:eb:3e:48:d0:00:a6:2b:db:91:ec:ab:4b:2b:ac:5a: 1b:e4:42:80:80:c1:06:d6:86:3b:87:b6:1c:55:0a:5e:12:d3: 71:8e:51:67:0e:7a:24:78:49:de:7a:10:53:dd:4f:43:92:8d: 72:18:dd:15:9f:ce:00:68:c2:31:8b:58:c4:60:15:99:45:ae: 82:97:a2:23:57:37:d6:6a:34:6e:4e:fc:77:f7:f3:bf:f9:86: b1:8b:f9:d6:d6:ad:d4:16:38:76:a9:dd:e4:95:87:06:fe:f2: 64:e0:88:e8:98:7d:c6:3e:4a:97:06:56:8b:fb:96:71:c5:03: 4f:9e:4c:20:0d:95:d7:44:09:e7:ee:2d:cd:9f:a4:4d:35:4a: cf:ca:9f:04 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgIUO31W2fiDBhj5TWxulHFC76c3VhcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFNzZFOTZDRjA0QTdBMEI5MkIyMTlFNkVDM0JCMUVG RjlGMTc5ODAeFw0yNTA3MTcxODA3MDBaFw0yNTA4MjEyMzU5NTlaMHoxSTBHBgNV BAUTQGVlZGQzYzBmNTVlNDM1ZjJhZmNiNmYyNzRkYWU2NWFhYzg2YTNmY2YzZTRj ZTk4NDRhYmMzNDNiYWE4MGYyMGUxLTArBgNVBAMTJDdiN2U4MWU0LWM5ODEtNGNj YS1iZTM1LWVjNjFmNzMyNDE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgPlWgEKu6a80MiVs0tqkytp6Y+z/4imdev39iFTjMbRuQ4REiGLfMy68bI 88MEdTgtJaDXbhdtKQFg14boIzkGRAW3dtfcOMP+TNTy6J7mnAP+GyrL0XpnKNOh lftZaUD6zayG7TnhbJsJUOtfoLIh8EXr7DfwgzY1skr0j9WopXit6sbSLjK2Fwqt NDh6l/uP0AIe465jcLzoxCZpN59hjMgi1JJdZmf4pC037U1i4FhMUrwxgqOfodJC OWcfrGdTmKDWjuQwPyrCQQIeIWOpVpXsPcPad93/k42pxxah23gXCptBG8m20vzo Onp2Mw9w5U9fAOVldRtmlydMOEcCAwEAAaOCAngwggJ0MB0GA1UdDgQWBBT/pWZH 1kiUGmJRVZsC8s7Qi4/EUjAfBgNVHSMEGDAWgBSi526WzwSnoLkrIZ5uw7se/58X mDAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwEBBIGsMIGpMIGmBggrBgEFBQcw AoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0Ex NTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFBQTEwMDc1RjY3 MTY1Qjk4QzRGNEVGQzMvMC9BMkU3NkU5NkNGMDRBN0EwQjkyQjIxOUU2RUMzQkIx RUZGOUYxNzk4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9y c3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vdm9sdW1l L2M0NzRkNzc4LTQzY2ItNGMzMC1hZDZhLTM5OTY4Y2JjOTRiYy83OWRlMWExMC01 NDBhLTQ5ZTQtOTJmMi1iOGU4MTQ4OGZmZDEucm9hMIGIBgNVHR8EgYAwfjB8oHqg eIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29tL3Zv bHVtZS9jNDc0ZDc3OC00M2NiLTRjMzAtYWQ2YS0zOTk2OGNiYzk0YmMvY1d5M0xP WHNQcGp5Ni1wNGpsVlFSUkRNZC1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKANO0DANBgkqhkiG9w0B AQsFAAOCAQEAcYAPcWqW5OI8nFaLf2BSHhFnfN7eTQTIv2n/2O6ZUFzbwR2z1qfH 3aF1cAey67liOemve8rGk/tpWH/g35pKthqastr939YBbjKOVBdEC4rS73sZfxIo aYu7RjP2gH5B9PXqVDG1f5p7E/3zmxyu6z5I0ACmK9uR7KtLK6xaG+RCgIDBBtaG O4e2HFUKXhLTcY5RZw56JHhJ3noQU91PQ5KNchjdFZ/OAGjCMYtYxGAVmUWugpei I1c31mo0bk78d/fzv/mGsYv51tat1BY4dqnd5JWHBv7yZOCI6Jh9xj5KlwZWi/uW ccUDT55MIA2V10QJ5+4tzZ+kTTVKz8qfBA== -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:04 2025 by rpki-client