$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa File: 79de1a10-540a-49e4-92f2-b8e81488ffd1.roa (raw, json) Hash identifier: oSrKaHVc+6/kMDiCkA6si1KnY0UXaFGE2fBdm/mO8kE= Subject key identifier: 16:45:98:F2:F8:C6:A8:4A:7F:46:E2:8C:CB:E0:7F:55:18:CD:20:E4 Certificate issuer: /CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Certificate serial: 7AF802C80472EA4CB2D7379B143392531752F84C Authority key identifier: A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa Signing time: Sat 25 Oct 2025 00:00:06 +0000 ROA not before: Sat 25 Oct 2025 00:00:06 +0000 ROA not after: Sat 29 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2803:4ed0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 08 Nov 2025 00:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f8:02:c8:04:72:ea:4c:b2:d7:37:9b:14:33:92:53:17:52:f8:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798 Validity Not Before: Oct 25 00:00:06 2025 GMT Not After : Nov 29 23:59:59 2025 GMT Subject: serialNumber=bc1a862f261ef050f93f8ad2c04ea93ede4429f2f7f1faea3e53e9109b57b357, CN=7b7e81e4-c981-4cca-be35-ec61f732415c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9c:7e:cc:67:c9:25:17:e4:63:09:35:da:5f: 37:49:02:ad:b4:8b:51:27:ea:b0:8b:54:ea:46:b3: ae:2c:17:f3:63:4a:e8:e0:bc:c0:ca:8a:ed:99:1b: 61:a6:fd:9e:9c:88:5a:66:32:b0:aa:45:6d:71:8e: 03:58:d7:79:08:2d:c6:ca:77:d0:00:07:1e:de:18: d1:0c:3c:42:21:22:cf:57:12:26:b6:3f:7a:b7:d6: 9d:83:24:a9:8c:d2:f4:e5:4b:c3:ba:c6:80:1a:9e: 44:34:59:28:21:0e:4e:0f:29:8b:c4:c4:c4:3e:20: 89:84:39:55:b3:dd:ca:36:71:89:db:b5:bd:9b:46: cb:51:45:92:24:b7:aa:b4:7f:da:b1:89:d6:a1:3e: 81:a8:89:0c:21:e3:75:61:64:67:dc:e7:71:ca:04: db:35:d4:bd:8d:a6:80:8f:de:41:cd:a0:9d:d4:5a: c0:50:2b:01:c3:5c:da:e9:2e:d6:d6:10:b9:23:bc: a0:e2:39:41:18:e5:66:5d:c0:3d:f0:b5:36:02:1f: 37:73:5d:b2:f5:85:0e:16:97:12:96:37:dd:05:93: e4:c7:f9:26:ae:89:3d:77:32:1b:57:0d:9f:e4:48: 77:aa:de:53:c6:23:86:ec:f7:c7:3c:07:6c:e3:44: 6b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:45:98:F2:F8:C6:A8:4A:7F:46:E2:8C:CB:E0:7F:55:18:CD:20:E4 X509v3 Authority Key Identifier: keyid:A2:E7:6E:96:CF:04:A7:A0:B9:2B:21:9E:6E:C3:BB:1E:FF:9F:17:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/A2E76E96CF04A7A0B92B219E6EC3BB1EFF9F1798.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/79de1a10-540a-49e4-92f2-b8e81488ffd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c474d778-43cb-4c30-ad6a-39968cbc94bc/cWy3LOXsPpjy6-p4jlVQRRDMd-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2803:4ed0::/32 Signature Algorithm: sha256WithRSAEncryption 40:63:60:90:7f:02:ea:57:21:e3:51:e7:8d:ba:70:5c:db:2e: 51:a3:02:80:4c:7f:0d:80:d7:d3:10:ad:82:0c:da:84:3a:59: 4a:8d:7c:2c:7b:77:6e:4d:1f:35:81:44:ae:3a:84:01:f8:df: 51:1c:5c:9f:4b:bd:cf:ae:b5:af:20:02:a6:1d:90:0b:e7:64: df:6a:19:42:74:5b:e8:65:63:b3:d1:ef:e8:b5:26:a7:f1:33: bd:62:e2:33:d0:c4:63:d1:27:b5:a6:2f:56:2c:06:57:33:fc: de:0c:5a:66:88:b8:0c:d5:56:ac:2b:2c:86:83:5a:f0:cc:c2: 25:72:c4:c2:6c:c3:2c:9e:f7:48:65:e7:c8:8a:7a:75:ad:5f: 8b:ab:0a:d4:0c:b7:41:fa:36:21:ed:4f:ba:3a:ad:e1:bb:a2: c3:f4:2a:b1:f6:1a:3f:e3:f9:b5:08:3f:9d:34:50:0f:d3:ae: 68:1e:f6:fa:68:1d:6c:ea:bd:25:ae:52:f7:a8:d9:03:a9:09: 57:52:2c:04:c8:71:46:03:25:13:a5:07:f3:a0:f9:5f:34:16: 3a:98:4e:23:f0:1e:c5:d7:31:cd:51:1b:35:78:bc:e3:4e:b6: ea:a4:34:a4:f1:cd:66:be:1f:4f:70:c2:3f:b4:b1:89:a2:82: 89:8a:80:ab -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgIUevgCyARy6kyy1zebFDOSUxdS+EwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJFNzZFOTZDRjA0QTdBMEI5MkIyMTlFNkVDM0JCMUVG RjlGMTc5ODAeFw0yNTEwMjUwMDAwMDZaFw0yNTExMjkyMzU5NTlaMHoxSTBHBgNV BAUTQGJjMWE4NjJmMjYxZWYwNTBmOTNmOGFkMmMwNGVhOTNlZGU0NDI5ZjJmN2Yx ZmFlYTNlNTNlOTEwOWI1N2IzNTcxLTArBgNVBAMTJDdiN2U4MWU0LWM5ODEtNGNj YS1iZTM1LWVjNjFmNzMyNDE1YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALOcfsxnySUX5GMJNdpfN0kCrbSLUSfqsItU6kazriwX82NK6OC8wMqK7Zkb Yab9npyIWmYysKpFbXGOA1jXeQgtxsp30AAHHt4Y0Qw8QiEiz1cSJrY/erfWnYMk qYzS9OVLw7rGgBqeRDRZKCEOTg8pi8TExD4giYQ5VbPdyjZxidu1vZtGy1FFkiS3 qrR/2rGJ1qE+gaiJDCHjdWFkZ9znccoE2zXUvY2mgI/eQc2gndRawFArAcNc2uku 1tYQuSO8oOI5QRjlZl3APfC1NgIfN3NdsvWFDhaXEpY33QWT5Mf5Jq6JPXcyG1cN n+RId6reU8Yjhuz3xzwHbONEa9ECAwEAAaOCAngwggJ0MB0GA1UdDgQWBBQWRZjy +MaoSn9G4ozL4H9VGM0g5DAfBgNVHSMEGDAWgBSi526WzwSnoLkrIZ5uw7se/58X mDAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwEBBIGsMIGpMIGmBggrBgEFBQcw AoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0Ex NTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFBQTEwMDc1RjY3 MTY1Qjk4QzRGNEVGQzMvMC9BMkU3NkU5NkNGMDRBN0EwQjkyQjIxOUU2RUMzQkIx RUZGOUYxNzk4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9y c3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vdm9sdW1l L2M0NzRkNzc4LTQzY2ItNGMzMC1hZDZhLTM5OTY4Y2JjOTRiYy83OWRlMWExMC01 NDBhLTQ5ZTQtOTJmMi1iOGU4MTQ4OGZmZDEucm9hMIGIBgNVHR8EgYAwfjB8oHqg eIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3MuY29tL3Zv bHVtZS9jNDc0ZDc3OC00M2NiLTRjMzAtYWQ2YS0zOTk2OGNiYzk0YmMvY1d5M0xP WHNQcGp5Ni1wNGpsVlFSUkRNZC1jLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKANO0DANBgkqhkiG9w0B AQsFAAOCAQEAQGNgkH8C6lch41HnjbpwXNsuUaMCgEx/DYDX0xCtggzahDpZSo18 LHt3bk0fNYFErjqEAfjfURxcn0u9z661ryACph2QC+dk32oZQnRb6GVjs9Hv6LUm p/EzvWLiM9DEY9EntaYvViwGVzP83gxaZoi4DNVWrCsshoNa8MzCJXLEwmzDLJ73 SGXnyIp6da1fi6sK1Ay3Qfo2Ie1Pujqt4buiw/QqsfYaP+P5tQg/nTRQD9OuaB72 +mgdbOq9Ja5S96jZA6kJV1IsBMhxRgMlE6UH86D5XzQWOphOI/AexdcxzVEbNXi8 40626qQ0pPHNZr4fT3DCP7SxiaKCiYqAqw== -----END CERTIFICATE-----Generated at Wed Nov 5 01:20:31 2025 by rpki-client