$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa File: 56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa (raw, json) Hash identifier: cr4oikUg6zUv2Eup8p6QJxQvA+W7tc2515d+Bx4bTi8= Subject key identifier: 62:3E:54:46:F0:84:10:42:84:AA:B0:8F:B2:DE:01:8F:97:54:9A:EF Certificate issuer: /CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Certificate serial: 7E77FBEB112ABDA56A0F69EE3A37A65F6E83800B Authority key identifier: A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa Signing time: Mon 23 Feb 2026 00:00:41 +0000 ROA not before: Mon 23 Feb 2026 00:00:41 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 191.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 05 Mar 2026 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:77:fb:eb:11:2a:bd:a5:6a:0f:69:ee:3a:37:a6:5f:6e:83:80:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Validity Not Before: Feb 23 00:00:41 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=2fcce267f5ee63919614512d0d5d623f17fc5327e4bd0fb63fa995b7bd718288, CN=7b7e81e4-c981-4cca-be35-ec61f732415c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b8:3d:df:95:9f:1d:96:da:2f:0e:1c:5b:93: 53:0b:a6:bd:df:a0:14:f8:98:a1:a9:d9:7f:86:61: 98:fc:54:f0:53:bc:c1:95:07:94:2e:9c:e6:e1:20: d4:46:fe:14:f4:9e:90:eb:7c:de:50:e2:54:12:7e: 77:ab:07:cf:c9:6c:db:5f:1a:f3:32:8e:28:5c:5d: a9:b4:d5:c0:dd:d3:30:ee:d2:16:2c:25:b4:77:97: 8c:61:70:ba:08:9c:cd:c5:9d:4c:60:eb:d1:e2:f3: f8:9f:b5:bd:93:10:0e:a1:5b:33:0b:36:0b:f5:3a: ae:7a:bc:09:38:21:d5:da:21:92:40:4b:ce:19:a8: ff:69:91:09:0e:9e:be:82:d0:7c:7c:8b:36:08:56: 36:a7:8e:ff:f9:20:18:81:5e:64:21:b3:3c:e8:5c: a8:65:4c:cd:b6:01:12:af:4a:60:54:9d:ac:78:ab: 57:42:72:ca:8c:79:5d:0f:8a:ab:9c:db:13:65:cc: 23:34:09:e0:17:aa:4e:49:ab:8f:b9:4f:07:c6:33: 3f:0c:f5:e4:c9:d1:9c:e5:89:8e:f2:9b:1f:bf:72: 0b:bc:5f:30:4a:ba:ea:dc:a2:c8:a0:7a:3d:78:a1: ce:0b:2e:32:a1:f1:84:b6:df:66:d6:42:3c:cd:ea: 6c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:3E:54:46:F0:84:10:42:84:AA:B0:8F:B2:DE:01:8F:97:54:9A:EF X509v3 Authority Key Identifier: keyid:A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/56ce7cd0-084e-4ed6-aae7-073a56f74f28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 78:62:7f:38:0f:0a:69:21:72:1c:9b:5b:e0:cb:e8:1e:fd:bf: 00:ee:39:22:99:76:d6:e6:51:70:b1:bf:90:72:35:d0:f0:ac: 75:a8:56:d8:e9:14:2f:56:0a:1e:99:55:d6:0a:16:9e:60:f9: 5d:73:a4:50:a8:07:87:11:99:23:f5:42:02:9c:a7:9d:9e:14: 5a:cb:09:7a:90:38:27:9e:d5:63:b7:37:d8:da:b9:af:31:a5: fa:26:42:66:30:ca:f7:16:9d:05:2d:6f:38:c5:4c:0d:66:c5: 93:5f:ec:f2:06:f4:f5:de:37:ad:6f:ec:22:d4:46:84:f2:81: 55:18:9f:86:bd:80:85:a9:ed:9b:1f:1c:40:df:90:c6:6a:5d: e6:fe:d1:65:ba:f6:d6:23:d2:84:22:62:01:61:28:5a:7e:02: c5:b5:c5:e1:5a:d3:fa:c0:43:86:b9:7a:fc:52:b1:fb:a8:fc: e3:d5:fd:48:69:d8:5e:fc:18:ee:60:8f:f1:89:85:45:12:f9: 86:9d:06:d2:5f:6a:05:2f:0a:87:6b:89:fd:86:ea:aa:19:b2: bb:e4:f1:4e:f7:54:09:5e:e6:df:a0:f1:6f:f5:95:2a:09:eb: 6e:36:a7:6e:da:b8:f5:9c:c6:ec:19:ff:b7:40:d0:77:db:0f: 22:c5:cb:af -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgIUfnf76xEqvaVqD2nuOjemX26DgAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFNzZFOTZDRjA0QTdBMEI5MkIyMTlFNkVDM0JCMUVG RjlGMTc5ODAeFw0yNjAyMjMwMDAwNDFaFw0yNjA1MjQyMzU5NTlaMHoxSTBHBgNV BAUTQDJmY2NlMjY3ZjVlZTYzOTE5NjE0NTEyZDBkNWQ2MjNmMTdmYzUzMjdlNGJk MGZiNjNmYTk5NWI3YmQ3MTgyODgxLTArBgNVBAMTJDdiN2U4MWU0LWM5ODEtNGNj YS1iZTM1LWVjNjFmNzMyNDE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANy4Pd+Vnx2W2i8OHFuTUwumvd+gFPiYoanZf4ZhmPxU8FO8wZUHlC6c5uEg 1Eb+FPSekOt83lDiVBJ+d6sHz8ls218a8zKOKFxdqbTVwN3TMO7SFiwltHeXjGFw ugiczcWdTGDr0eLz+J+1vZMQDqFbMws2C/U6rnq8CTgh1dohkkBLzhmo/2mRCQ6e voLQfHyLNghWNqeO//kgGIFeZCGzPOhcqGVMzbYBEq9KYFSdrHirV0Jyyox5XQ+K q5zbE2XMIzQJ4BeqTkmrj7lPB8YzPwz15MnRnOWJjvKbH79yC7xfMEq66tyiyKB6 PXihzgsuMqHxhLbfZtZCPM3qbG0CAwEAAaOCAnYwggJyMB0GA1UdDgQWBBRiPlRG 8IQQQoSqsI+y3gGPl1Sa7zAfBgNVHSMEGDAWgBSi526WzwSnoLkrIZ5uw7se/58X mDAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwEBBIGsMIGpMIGmBggrBgEFBQcw AoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0Ex NTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFBQTEwMDc1RjY3 MTY1Qjk4QzRGNEVGQzMvMC9BMkU3NkU5NkNGMDRBN0EwQjkyQjIxOUU2RUMzQkIx RUZGOUYxNzk4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9y c3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vdm9sdW1l L2M0NzRkNzc4LTQzY2ItNGMzMC1hZDZhLTM5OTY4Y2JjOTRiYy81NmNlN2NkMC0w ODRlLTRlZDYtYWFlNy0wNzNhNTZmNzRmMjgucm9hMIGIBgNVHR8EgYAwfjB8oHqg eIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29tL3Zv bHVtZS9jNDc0ZDc3OC00M2NiLTRjMzAtYWQ2YS0zOTk2OGNiYzk0YmMvY1d5M0xP WHNQcGp5Ni1wNGpsVlFSUkRNZC1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAv6YwDQYJKoZIhvcNAQEL BQADggEBAHhifzgPCmkhchybW+DL6B79vwDuOSKZdtbmUXCxv5ByNdDwrHWoVtjp FC9WCh6ZVdYKFp5g+V1zpFCoB4cRmSP1QgKcp52eFFrLCXqQOCee1WO3N9jaua8x pfomQmYwyvcWnQUtbzjFTA1mxZNf7PIG9PXeN61v7CLURoTygVUYn4a9gIWp7Zsf HEDfkMZqXeb+0WW69tYj0oQiYgFhKFp+AsW1xeFa0/rAQ4a5evxSsfuo/OPV/Uhp 2F78GO5gj/GJhUUS+YadBtJfagUvCodrif2G6qoZsrvk8U73VAle5t+g8W/1lSoJ 6242p27auPWcxuwZ/7dA0HfbDyLFy68= -----END CERTIFICATE-----Generated at Sun Mar 1 21:50:47 2026 by rpki-client