$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: 8vbaqev8wNRHf4UoayZSIw1UuqxfnJ4wgB1zbOV9rRU= Subject key identifier: 9B:94:B3:36:86:4E:1F:E9:49:A1:CB:EF:1D:38:2C:8F:2B:C9:44:06 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 4436825D10240EC807BD3D1192541AE26FE13B3D Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa Signing time: Sat 28 Jun 2025 11:21:21 +0000 ROA not before: Sat 28 Jun 2025 11:16:21 +0000 ROA not after: Sat 27 Jun 2026 11:21:21 +0000 asID: 834 IP address blocks: 104.234.3.0/24 maxlen: 24 104.234.136.0/24 maxlen: 24 104.234.172.0/24 maxlen: 24 104.234.174.0/24 maxlen: 24 104.234.192.0/24 maxlen: 24 104.234.194.0/24 maxlen: 24 104.234.202.0/23 maxlen: 24 104.234.206.0/23 maxlen: 24 104.234.209.0/24 maxlen: 24 104.234.215.0/24 maxlen: 24 104.234.247.0/24 maxlen: 24 206.53.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 29 Jun 2025 15:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:36:82:5d:10:24:0e:c8:07:bd:3d:11:92:54:1a:e2:6f:e1:3b:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Jun 28 11:16:21 2025 GMT Not After : Jun 27 11:21:21 2026 GMT Subject: CN=9B94B336864E1FE949A1CBEF1D382C8F2BC94406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ee:dc:2c:1f:62:9c:5c:40:17:b9:24:1d:03: 55:13:d6:15:c5:b6:54:33:4f:fc:07:5c:fd:21:eb: e5:36:ec:67:cf:fe:0f:c7:03:22:0c:20:99:d0:54: 08:2a:02:c4:3c:14:2d:d4:9b:3e:a5:f7:e4:5c:d0: 76:7c:58:21:bd:23:cd:7a:f0:5a:c1:54:3d:dc:0f: 2f:e9:ec:48:a9:04:1b:09:0e:42:35:6c:b5:2a:43: ec:c1:2f:b4:f5:c3:8d:83:db:d5:4d:98:9e:57:9e: 73:02:35:3a:8c:4b:a8:b5:98:30:60:68:47:e2:14: 6e:ff:f0:8d:cc:4f:ae:93:cf:ea:a7:0f:c0:b3:40: 04:1a:95:de:99:2f:c4:1f:32:6a:de:33:85:38:f6: 9c:4c:37:d6:ff:bd:a6:d4:66:20:94:ad:c1:53:e8: cc:f9:1a:cb:81:66:07:1f:98:c0:bc:80:0e:09:8d: 00:f0:72:f0:19:e1:4c:92:df:b7:07:c2:cf:cc:92: 17:9e:df:ac:c2:6b:cc:e3:ff:96:e1:c8:24:e7:ca: 62:88:45:1d:98:cd:ea:83:fc:47:c0:c2:04:17:0b: ca:28:73:f6:25:bc:89:96:7c:ab:86:29:b6:0c:93: 82:cc:17:fa:36:f9:b1:40:dc:9c:03:c4:3d:f8:7b: 23:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:94:B3:36:86:4E:1F:E9:49:A1:CB:EF:1D:38:2C:8F:2B:C9:44:06 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.3.0/24 104.234.136.0/24 104.234.172.0/24 104.234.174.0/24 104.234.192.0/24 104.234.194.0/24 104.234.202.0/23 104.234.206.0/23 104.234.209.0/24 104.234.215.0/24 104.234.247.0/24 206.53.63.0/24 Signature Algorithm: sha256WithRSAEncryption 37:c7:38:05:34:f2:0c:3c:55:c5:7b:e3:1b:b3:95:cd:63:b5: 1c:d9:3e:49:e4:fb:44:11:2d:e2:d2:0d:e0:92:25:75:10:cf: bd:74:d9:56:60:1a:76:17:55:b3:88:d0:06:bd:db:bc:bd:7f: 59:d9:d5:8e:e2:91:63:9f:5b:bf:c1:7c:dd:73:6a:42:28:c8: fc:0c:36:5b:f1:1c:42:fa:0a:84:05:92:fa:c6:93:94:fd:be: 7d:72:d2:9a:ed:60:24:29:e3:70:4e:d7:13:dd:8b:6d:97:b9: ac:1d:7e:02:88:52:24:b1:40:ce:b3:c4:50:5e:05:3d:63:69: 22:31:3d:8b:0c:bc:d2:f7:b6:36:0a:23:60:82:86:22:a4:39: d4:43:15:48:c7:95:cf:ed:a9:3a:a1:49:60:f3:44:d1:c1:83: 16:2d:bd:9e:25:69:6a:76:50:f0:23:90:e5:0e:94:83:c3:47: fe:f3:de:0c:4e:27:97:1e:d1:b4:5b:e6:99:4d:b9:e0:0a:71: 19:6e:19:da:f5:ca:ef:80:38:2b:a0:8d:cf:ed:33:28:e4:df: 58:8b:12:c0:2d:96:83:b2:e6:c2:03:66:13:b9:fc:63:94:b3: ac:0a:c6:fc:25:4e:dd:70:71:06:c8:84:22:c1:c7:57:4b:3d: d4:8f:95:af -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIURDaCXRAkDsgHvT0RklQa4m/hOz0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjUwNjI4MTExNjIxWhcNMjYwNjI3MTEyMTIx WjAzMTEwLwYDVQQDEyg5Qjk0QjMzNjg2NEUxRkU5NDlBMUNCRUYxRDM4MkM4RjJC Qzk0NDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4e7cLB9inFxA F7kkHQNVE9YVxbZUM0/8B1z9IevlNuxnz/4PxwMiDCCZ0FQIKgLEPBQt1Js+pffk XNB2fFghvSPNevBawVQ93A8v6exIqQQbCQ5CNWy1KkPswS+09cONg9vVTZieV55z AjU6jEuotZgwYGhH4hRu//CNzE+uk8/qpw/As0AEGpXemS/EHzJq3jOFOPacTDfW /72m1GYglK3BU+jM+RrLgWYHH5jAvIAOCY0A8HLwGeFMkt+3B8LPzJIXnt+swmvM 4/+W4cgk58piiEUdmM3qg/xHwMIEFwvKKHP2JbyJlnyrhim2DJOCzBf6NvmxQNyc A8Q9+HsjlQIDAQABo4ICvjCCArowHQYDVR0OBBYEFJuUszaGTh/pSaHL7x04LI8r yUQGMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbQYIKwYBBQUHAQsEYTBfMF0GCCsGAQUFBzALhlFyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBhBggr BgEFBQcBBwEB/wRSMFAwTgQCAAEwSAMEAGjqAwMEAGjqiAMEAGjqrAMEAGjqrgME AGjqwAMEAGjqwgMEAWjqygMEAWjqzgMEAGjq0QMEAGjq1wMEAGjq9wMEAM41PzAN BgkqhkiG9w0BAQsFAAOCAQEAN8c4BTTyDDxVxXvjG7OVzWO1HNk+SeT7RBEt4tIN 4JIldRDPvXTZVmAadhdVs4jQBr3bvL1/WdnVjuKRY59bv8F83XNqQijI/Aw2W/Ec QvoKhAWS+saTlP2+fXLSmu1gJCnjcE7XE92LbZe5rB1+AohSJLFAzrPEUF4FPWNp IjE9iwy80ve2NgojYIKGIqQ51EMVSMeVz+2pOqFJYPNE0cGDFi29niVpanZQ8COQ 5Q6Ug8NH/vPeDE4nlx7RtFvmmU254ApxGW4Z2vXK74A4K6CNz+0zKOTfWIsSwC2W g7LmwgNmE7n8Y5SzrArG/CVO3XBxBsiEIsHHV0s91I+Vrw== -----END CERTIFICATE-----Generated at Sun Jun 29 00:30:35 2025 by rpki-client