$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: crALscTEHNFgTTdfd+u2QvurN9jMdrxen22mRD3Hqoc= Subject key identifier: 92:E1:70:39:9C:23:CB:55:77:AD:ED:D3:E1:B4:1C:9F:E3:5B:80:C1 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 1DF4A5DFF2162554498D246D4DF971D573708D7C Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa Signing time: Wed 25 Mar 2026 12:35:41 +0000 ROA not before: Wed 25 Mar 2026 12:30:41 +0000 ROA not after: Wed 24 Mar 2027 12:35:41 +0000 asID: 834 IP address blocks: 104.234.1.0/24 maxlen: 24 104.234.40.0/24 maxlen: 24 104.234.46.0/24 maxlen: 24 104.234.56.0/24 maxlen: 24 104.234.58.0/24 maxlen: 24 104.234.62.0/24 maxlen: 24 104.234.70.0/23 maxlen: 24 104.234.77.0/24 maxlen: 24 104.234.98.0/24 maxlen: 24 104.234.102.0/24 maxlen: 24 104.234.104.0/24 maxlen: 24 104.234.107.0/24 maxlen: 24 104.234.112.0/24 maxlen: 24 104.234.114.0/24 maxlen: 24 104.234.136.0/24 maxlen: 24 104.234.157.0/24 maxlen: 24 104.234.161.0/24 maxlen: 24 104.234.184.0/24 maxlen: 24 104.234.192.0/23 maxlen: 24 104.234.194.0/24 maxlen: 24 104.234.198.0/23 maxlen: 24 104.234.201.0/24 maxlen: 24 104.234.202.0/23 maxlen: 24 104.234.206.0/23 maxlen: 24 104.234.208.0/24 maxlen: 24 104.234.211.0/24 maxlen: 24 206.53.56.0/24 maxlen: 24 206.53.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Mar 2026 01:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f4:a5:df:f2:16:25:54:49:8d:24:6d:4d:f9:71:d5:73:70:8d:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Mar 25 12:30:41 2026 GMT Not After : Mar 24 12:35:41 2027 GMT Subject: CN=92E170399C23CB5577ADEDD3E1B41C9FE35B80C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:08:0e:d4:b8:1c:a5:02:05:cb:51:6e:7e:bf: 89:a2:e4:d5:21:ea:89:05:50:25:34:84:ff:72:80: e0:9c:b9:52:25:89:34:1f:12:f7:d1:22:9b:bb:05: 3f:6f:05:7d:1e:77:b5:dd:72:75:48:e3:1a:59:c1: 23:de:98:e3:2e:2d:01:a1:e0:cb:21:cc:ed:7d:73: a3:51:6b:ec:e5:35:ca:4f:d3:b4:7a:57:d5:3c:b7: 7e:6d:ef:62:13:ac:ec:bb:e6:bf:67:aa:03:4d:39: 6a:b9:de:61:aa:29:d8:05:e0:b4:9b:e7:d4:28:7e: 04:d4:9a:5f:c8:e8:9a:b1:c6:b6:4b:0d:5c:09:cb: 1e:2a:05:4c:2c:c1:1d:f7:95:37:88:d8:95:7a:fa: bd:38:46:4a:85:83:21:24:6b:de:a9:de:c4:c9:ad: 3a:82:6a:88:ad:0a:38:16:c6:ad:17:6e:4d:bc:64: 84:4d:ff:1d:ef:2e:7d:38:d1:5c:0a:c8:41:f3:3b: ab:26:d2:ef:38:70:18:95:19:2a:e1:0e:ab:2c:6c: 51:53:14:84:f3:38:34:48:28:0d:da:39:eb:c5:55: 12:c3:95:03:08:08:c1:95:ea:43:98:9f:7f:67:cd: e0:b8:5b:05:a2:db:0b:b0:94:40:1c:17:34:a9:00: 99:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E1:70:39:9C:23:CB:55:77:AD:ED:D3:E1:B4:1C:9F:E3:5B:80:C1 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.1.0/24 104.234.40.0/24 104.234.46.0/24 104.234.56.0/24 104.234.58.0/24 104.234.62.0/24 104.234.70.0/23 104.234.77.0/24 104.234.98.0/24 104.234.102.0/24 104.234.104.0/24 104.234.107.0/24 104.234.112.0/24 104.234.114.0/24 104.234.136.0/24 104.234.157.0/24 104.234.161.0/24 104.234.184.0/24 104.234.192.0-104.234.194.255 104.234.198.0/23 104.234.201.0-104.234.203.255 104.234.206.0-104.234.208.255 104.234.211.0/24 206.53.56.0/24 206.53.63.0/24 Signature Algorithm: sha256WithRSAEncryption bb:6e:d1:ea:0e:62:71:84:a8:7d:3d:02:0d:bc:9c:84:2b:20: 69:5c:48:2c:19:82:0e:be:18:15:c8:bb:7e:4e:dd:b9:50:72: 3a:8e:5a:16:4c:75:ee:52:25:1a:25:2b:45:f3:26:bd:a4:96: 3b:dc:75:bc:9d:b9:25:50:27:f2:f3:7a:19:3e:cc:cc:ad:b9: 55:7e:62:55:8e:aa:e0:b3:09:fe:88:ae:61:cd:d2:e0:58:0a: 9e:71:5c:56:3b:66:fd:6e:4f:53:97:88:43:a4:2d:3e:04:3e: ec:f1:b6:21:4c:af:03:ad:c4:e2:2e:47:3b:b7:6b:97:d0:16: b8:8e:15:e7:55:57:6b:d9:fc:07:20:aa:b0:74:c4:7d:ec:c8: 5c:44:2d:f3:be:e0:5e:f3:ce:8a:3d:d2:b9:58:6b:c3:04:61: 8e:67:42:3c:36:55:70:a5:67:51:95:78:ed:6e:04:ab:b5:d6: 43:75:7b:39:3a:b3:84:f2:9a:16:0a:59:9c:c0:58:cc:7f:1d: c9:28:d8:1e:7e:0b:55:8a:8c:14:8f:3c:81:da:6f:3c:48:1c: a4:c8:3c:40:d0:3f:2f:4c:50:b3:89:f2:54:a4:8e:9a:63:4e: a5:51:92:d2:82:b5:f0:28:71:2c:3f:34:4b:e7:a6:ba:09:14: c6:e4:e7:0f -----BEGIN CERTIFICATE----- MIIGKTCCBRGgAwIBAgIUHfSl3/IWJVRJjSRtTflx1XNwjXwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjYwMzI1MTIzMDQxWhcNMjcwMzI0MTIzNTQx WjAzMTEwLwYDVQQDEyg5MkUxNzAzOTlDMjNDQjU1NzdBREVERDNFMUI0MUM5RkUz NUI4MEMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQgO1LgcpQIF y1Fufr+JouTVIeqJBVAlNIT/coDgnLlSJYk0HxL30SKbuwU/bwV9Hne13XJ1SOMa WcEj3pjjLi0BoeDLIcztfXOjUWvs5TXKT9O0elfVPLd+be9iE6zsu+a/Z6oDTTlq ud5hqinYBeC0m+fUKH4E1JpfyOiasca2Sw1cCcseKgVMLMEd95U3iNiVevq9OEZK hYMhJGveqd7Eya06gmqIrQo4FsatF25NvGSETf8d7y59ONFcCshB8zurJtLvOHAY lRkq4Q6rLGxRUxSE8zg0SCgN2jnrxVUSw5UDCAjBlepDmJ9/Z83guFsFotsLsJRA HBc0qQCZ1wIDAQABo4IDKTCCAyUwHQYDVR0OBBYEFJLhcDmcI8tVd63t0+G0HJ/j W4DBMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbQYIKwYBBQUHAQsEYTBfMF0GCCsGAQUFBzALhlFyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBywYI KwYBBQUHAQcBAf8EgbswgbgwgbUEAgABMIGuAwQAaOoBAwQAaOooAwQAaOouAwQA aOo4AwQAaOo6AwQAaOo+AwQBaOpGAwQAaOpNAwQAaOpiAwQAaOpmAwQAaOpoAwQA aOprAwQAaOpwAwQAaOpyAwQAaOqIAwQAaOqdAwQAaOqhAwQAaOq4MAwDBAZo6sAD BABo6sIDBAFo6sYwDAMEAGjqyQMEAmjqyDAMAwQBaOrOAwQAaOrQAwQAaOrTAwQA zjU4AwQAzjU/MA0GCSqGSIb3DQEBCwUAA4IBAQC7btHqDmJxhKh9PQINvJyEKyBp XEgsGYIOvhgVyLt+Tt25UHI6jloWTHXuUiUaJStF8ya9pJY73HW8nbklUCfy83oZ PszMrblVfmJVjqrgswn+iK5hzdLgWAqecVxWO2b9bk9Tl4hDpC0+BD7s8bYhTK8D rcTiLkc7t2uX0Ba4jhXnVVdr2fwHIKqwdMR97MhcRC3zvuBe886KPdK5WGvDBGGO Z0I8NlVwpWdRlXjtbgSrtdZDdXs5OrOE8poWClmcwFjMfx3JKNgefgtViowUjzyB 2m88SBykyDxA0D8vTFCzifJUpI6aY06lUZLSgrXwKHEsPzRL56a6CRTG5OcP -----END CERTIFICATE-----Generated at Thu Mar 26 07:57:40 2026 by rpki-client