$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS61977.roa File: AS61977.roa (raw, json) Hash identifier: Y80MSvQtuxWB0CrKaOdLy5VGCfNX+yScleGuKos0QRc= Subject key identifier: D9:E3:DF:0F:E0:56:67:06:76:D8:C9:12:65:DC:B2:3D:27:EC:EF:D2 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2BC464099038E2334E8C6DE204B58DE93F1DDC1A Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS61977.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 61977 IP address blocks: 2a07:54c4:1752::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c4:64:09:90:38:e2:33:4e:8c:6d:e2:04:b5:8d:e9:3f:1d:dc:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=D9E3DF0FE056670676D8C91265DCB23D27ECEFD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c3:51:5c:fb:73:06:be:55:d2:34:cd:f6:2a: b5:00:10:92:e6:01:dd:16:9e:d8:4a:ce:1d:40:29: a8:89:c7:c2:62:e8:0b:4b:68:41:fa:98:4b:79:3a: be:0c:de:3e:43:85:fd:3d:13:82:99:e4:a8:dc:f7: ac:34:12:ca:96:c3:19:0c:aa:34:25:0a:f9:db:74: 24:b8:c6:af:02:89:dd:1d:c3:01:80:9d:b4:4f:a6: 7a:92:56:b5:53:c4:20:b5:52:b7:ff:9c:2b:a8:76: 62:ff:8f:7d:37:d4:25:bf:9e:9a:07:89:57:d4:10: c8:ff:3a:ab:fd:95:e6:ae:66:5f:34:6d:6f:16:80: 99:7e:bd:20:37:6e:b0:8d:2e:31:ae:72:cb:60:c8: d7:f0:ef:d7:0a:c8:8f:22:3d:65:2e:2c:8c:04:18: db:45:ad:bf:3b:b6:9f:46:c0:65:20:5e:67:00:16: b4:22:84:3d:86:9f:e3:20:dc:75:5c:b9:c2:ab:a0: c9:20:b0:e3:7c:9e:31:56:bd:f5:25:0a:e0:b2:28: 71:3a:95:14:77:e2:fa:d7:81:a1:87:87:b0:da:69: d4:5d:7a:62:ec:28:c1:de:5c:6a:8a:21:35:7e:ce: c2:11:31:ef:10:01:8d:f1:af:0a:6a:d5:3d:26:c7: cf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E3:DF:0F:E0:56:67:06:76:D8:C9:12:65:DC:B2:3D:27:EC:EF:D2 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS61977.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1752::/48 Signature Algorithm: sha256WithRSAEncryption a1:03:78:46:81:cb:61:f8:ee:58:44:b9:d7:eb:55:48:cb:d3: 24:43:e2:a7:2f:2b:79:4e:7d:a7:16:69:83:03:c9:d0:c4:c4: e8:be:54:ce:40:e1:bf:76:77:4c:59:28:6e:8c:a6:d1:c3:34: ff:af:bd:6c:d6:8f:76:f7:e2:e2:f5:c2:42:84:65:47:bd:5e: 36:40:58:2f:b4:5a:59:2f:14:31:39:7d:85:eb:86:5c:8b:1e: 34:ae:f7:a9:5f:99:83:5e:36:6d:a4:15:8f:aa:ae:12:83:0e: c8:2b:8c:3e:80:10:80:e2:8f:55:7a:58:c1:40:92:8c:7d:75: 02:02:5d:b2:df:1d:90:ed:51:a5:07:8f:9f:29:50:b2:70:09: 21:53:ac:c8:32:b2:45:9f:0e:9a:38:d1:30:49:13:d7:e4:83: df:81:b6:e8:37:8d:98:33:5b:46:b0:06:db:32:6d:18:89:11: 21:c4:03:52:55:03:3a:af:9f:27:b7:e2:d5:a7:b4:4d:09:ff: 0b:e6:f0:0f:e5:a2:22:39:b1:a2:c1:08:f1:a9:0d:52:5b:60: 4d:e0:ed:0d:23:02:38:72:01:2e:4a:2f:50:3d:d0:0d:6c:7c: db:85:76:66:0f:8b:ef:1d:d9:b0:ce:ce:df:ba:1f:da:63:2c: 70:5a:43:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK8RkCZA44jNOjG3iBLWN6T8d3BowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKEQ5RTNERjBGRTA1NjY3MDY3NkQ4QzkxMjY1RENCMjNEMjdFQ0VGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKw1Fc+3MGvlXSNM32KrUAEJLm Ad0WnthKzh1AKaiJx8Ji6AtLaEH6mEt5Or4M3j5Dhf09E4KZ5Kjc96w0EsqWwxkM qjQlCvnbdCS4xq8Cid0dwwGAnbRPpnqSVrVTxCC1Urf/nCuodmL/j3031CW/npoH iVfUEMj/Oqv9leauZl80bW8WgJl+vSA3brCNLjGucstgyNfw79cKyI8iPWUuLIwE GNtFrb87tp9GwGUgXmcAFrQihD2Gn+Mg3HVcucKroMkgsON8njFWvfUlCuCyKHE6 lRR34vrXgaGHh7DaadRdemLsKMHeXGqKITV+zsIRMe8QAY3xrwpq1T0mx88HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2ePfD+BWZwZ22MkSZdyyPSfs79IwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjE5Nzcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F1IwDQYJKoZIhvcNAQELBQADggEBAKEDeEaBy2H47lhEudfrVUjL0yRD4qcvK3lO facWaYMDydDExOi+VM5A4b92d0xZKG6MptHDNP+vvWzWj3b34uL1wkKEZUe9XjZA WC+0WlkvFDE5fYXrhlyLHjSu96lfmYNeNm2kFY+qrhKDDsgrjD6AEIDij1V6WMFA kox9dQICXbLfHZDtUaUHj58pULJwCSFTrMgyskWfDpo40TBJE9fkg9+Btug3jZgz W0awBtsybRiJESHEA1JVAzqvnye34tWntE0J/wvm8A/loiI5saLBCPGpDVJbYE3g 7Q0jAjhyAS5KL1A90A1sfNuFdmYPi+8d2bDOzt+6H9pjLHBaQ+M= -----END CERTIFICATE-----Generated at Wed Nov 5 04:51:44 2025 by rpki-client