$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS61977.roa File: AS61977.roa (raw, json) Hash identifier: TwKSlk9yQjrniSX8lw7gVYi6aAeoVn9ENvIC/V8Oiv0= Subject key identifier: A6:7B:3F:0F:E1:CF:C9:A2:57:97:49:E4:EF:FA:52:0D:7A:E7:EA:FC Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7B58D846F3B7AC6A4DBC50036239BA1DDE3ACCE4 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS61977.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 61977 IP address blocks: 2a07:54c4:1752::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:58:d8:46:f3:b7:ac:6a:4d:bc:50:03:62:39:ba:1d:de:3a:cc:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=A67B3F0FE1CFC9A2579749E4EFFA520D7AE7EAFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bb:c4:f2:bf:1c:a3:f1:06:26:de:e9:42:40: 14:47:a5:d5:80:66:89:db:b0:37:c6:19:d3:a2:7d: 19:59:49:ba:d7:9b:e4:29:05:d3:a7:a9:98:1c:e4: 18:46:3a:da:61:bd:50:93:13:75:d5:bb:5b:fb:8f: 54:5b:72:38:c4:5a:ca:02:1e:72:50:a3:8e:f2:f3: 96:de:7a:3a:ff:00:55:7e:76:e1:04:84:ac:10:c6: c7:c6:06:40:3a:87:71:eb:2c:79:e0:db:38:29:20: 3e:0a:cd:e4:9a:5f:e2:34:df:1b:a3:ef:6f:4d:ee: 8c:b3:65:b5:84:02:9e:b8:e8:2a:8c:08:ac:e0:de: 6f:d5:75:06:e9:42:b9:c6:12:dc:fd:7f:68:62:cb: 48:37:00:29:ec:b2:9d:a8:31:5e:6c:f5:dc:32:f9: 40:fe:36:ed:99:16:54:80:bf:95:72:66:82:49:a4: a7:07:e4:c8:06:27:68:20:ba:8b:e1:fd:63:7a:9a: 1c:d5:bd:a5:58:13:f2:5a:54:5b:73:1c:38:f9:04: 1e:74:40:c8:4a:49:99:20:aa:7b:1f:52:9b:6d:e3: 84:33:8d:91:02:ca:5c:19:55:d3:6a:f1:33:bd:c8: 01:c0:ca:dd:0b:de:11:5c:1e:64:ba:82:68:f1:86: f6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7B:3F:0F:E1:CF:C9:A2:57:97:49:E4:EF:FA:52:0D:7A:E7:EA:FC X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS61977.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1752::/48 Signature Algorithm: sha256WithRSAEncryption 16:ab:c6:bf:ca:f0:3b:8f:82:48:b8:0e:84:59:b6:87:e1:2a: 0b:c5:0b:05:ba:21:ce:b1:b5:7d:17:6a:42:73:37:9c:db:aa: db:15:9c:79:6a:c2:24:cd:5b:f2:8d:b5:90:16:d6:d8:d6:4d: 4f:9d:24:13:76:7e:a3:61:be:6e:ad:f9:89:6a:41:30:70:c6: f0:a5:b4:78:29:aa:f0:f3:3f:98:ce:67:55:d5:7c:bc:6e:ae: 8b:b3:9f:62:6a:27:48:71:60:e4:23:33:49:a1:06:50:28:e7: 94:1e:c9:d4:27:e8:94:5a:59:de:0a:38:1d:27:8b:08:4a:53: e7:8b:fa:f0:6d:b4:a0:6f:59:cc:f1:f8:e0:09:5c:60:93:59: 3f:a5:1d:d6:b3:81:c3:9b:fc:b1:26:a8:22:73:6f:c5:57:0a: 68:20:d0:43:38:9e:f0:cd:06:a7:4a:04:58:3b:cf:df:37:4c: 3c:bc:60:c2:c0:7c:5d:22:c0:72:f4:b7:59:72:ce:84:aa:c2: 5f:11:b7:51:69:c8:ad:fc:70:15:e7:bd:7d:5c:1f:8d:5d:36: 58:19:f3:04:23:bc:91:08:8f:e7:ae:b1:c1:de:18:a8:a2:fb: cf:3e:f8:13:cc:84:d5:5f:0e:91:d4:14:65:27:21:5d:a7:41: f4:eb:5c:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe1jYRvO3rGpNvFADYjm6Hd46zOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKEE2N0IzRjBGRTFDRkM5QTI1Nzk3NDlFNEVGRkE1MjBEN0FFN0VBRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1u8Tyvxyj8QYm3ulCQBRHpdWA ZonbsDfGGdOifRlZSbrXm+QpBdOnqZgc5BhGOtphvVCTE3XVu1v7j1RbcjjEWsoC HnJQo47y85beejr/AFV+duEEhKwQxsfGBkA6h3HrLHng2zgpID4KzeSaX+I03xuj 729N7oyzZbWEAp646CqMCKzg3m/VdQbpQrnGEtz9f2hiy0g3ACnssp2oMV5s9dwy +UD+Nu2ZFlSAv5VyZoJJpKcH5MgGJ2gguovh/WN6mhzVvaVYE/JaVFtzHDj5BB50 QMhKSZkgqnsfUptt44QzjZECylwZVdNq8TO9yAHAyt0L3hFcHmS6gmjxhvZrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpns/D+HPyaJXl0nk7/pSDXrn6vwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjE5Nzcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F1IwDQYJKoZIhvcNAQELBQADggEBABarxr/K8DuPgki4DoRZtofhKgvFCwW6Ic6x tX0XakJzN5zbqtsVnHlqwiTNW/KNtZAW1tjWTU+dJBN2fqNhvm6t+YlqQTBwxvCl tHgpqvDzP5jOZ1XVfLxurouzn2JqJ0hxYOQjM0mhBlAo55QeydQn6JRaWd4KOB0n iwhKU+eL+vBttKBvWczx+OAJXGCTWT+lHdazgcOb/LEmqCJzb8VXCmgg0EM4nvDN BqdKBFg7z983TDy8YMLAfF0iwHL0t1lyzoSqwl8Rt1FpyK38cBXnvX1cH41dNlgZ 8wQjvJEIj+euscHeGKii+88++BPMhNVfDpHUFGUnIV2nQfTrXI4= -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:17 2026 by rpki-client