$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: nYNn8+UBzQ9dDf00tXlAqjCx/7DYH7kkeWejz3rySk0= Subject key identifier: 93:10:17:F8:BF:6C:6B:4E:6A:54:C6:80:03:7A:4A:12:21:2B:B3:34 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 50EF83B341B609B0F3EDA0FFA356FEF2371110F7 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa Signing time: Fri 05 Jun 2026 08:18:05 +0000 ROA not before: Fri 05 Jun 2026 08:13:05 +0000 ROA not after: Fri 04 Jun 2027 08:18:05 +0000 asID: 21859 IP address blocks: 104.234.11.0/24 maxlen: 24 104.234.86.0/24 maxlen: 24 104.234.161.0/24 maxlen: 24 104.234.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 06 Jun 2026 15:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ef:83:b3:41:b6:09:b0:f3:ed:a0:ff:a3:56:fe:f2:37:11:10:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Jun 5 08:13:05 2026 GMT Not After : Jun 4 08:18:05 2027 GMT Subject: CN=931017F8BF6C6B4E6A54C680037A4A12212BB334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:dc:41:ed:e1:bb:bb:cf:2e:99:e2:56:0b:00: 14:5d:a0:ad:c2:74:1f:ff:3b:49:d3:8d:07:47:ce: 65:9e:d7:cb:e4:2b:a5:7a:ee:d8:5c:a0:a5:6c:66: 1d:bc:e7:3f:f9:a9:7d:8b:ee:2c:11:37:55:5c:32: 6b:65:07:2a:c6:c3:fb:84:e3:03:2b:eb:97:36:dc: 47:a8:5a:36:64:a1:44:5f:bb:c3:3a:78:f4:ab:6f: 80:42:07:b9:9b:41:8d:b3:b1:99:41:dd:ee:09:81: 05:be:3d:ef:3d:f0:01:d4:b0:df:83:2d:f7:f5:e6: 8a:26:e3:9c:70:f9:b2:eb:6f:ff:86:e0:bb:4d:2d: 09:91:4a:7f:2a:87:2e:df:85:50:d1:e1:f6:4f:a8: 90:20:8e:2d:dc:83:26:d0:9e:7d:f8:47:dd:f0:aa: f3:a6:81:06:ca:15:2d:8e:8c:e8:2d:fc:43:85:fd: a3:1f:8e:66:e3:6a:c9:20:8d:63:79:91:2b:1a:04: 59:95:b7:69:6b:5d:b7:f7:be:a5:f3:7f:3d:d2:e4: 9f:ba:ad:e0:d7:8e:a7:18:ed:67:6d:13:ce:34:ba: 10:50:95:44:3e:13:db:32:7c:f1:dc:4a:c2:c4:45: 85:cf:c6:55:38:12:96:d4:01:e6:72:b5:a7:4b:9c: 00:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:10:17:F8:BF:6C:6B:4E:6A:54:C6:80:03:7A:4A:12:21:2B:B3:34 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.11.0/24 104.234.86.0/24 104.234.161.0/24 104.234.211.0/24 Signature Algorithm: sha256WithRSAEncryption 17:1f:79:e6:f9:fe:15:bb:a2:95:e5:64:a0:85:96:2e:3d:b7: a8:45:22:c5:0a:80:e8:95:a5:3d:a4:9c:e6:86:90:fd:30:63: d0:63:9c:98:80:99:9b:f3:30:e8:c4:84:5e:c1:85:6f:a9:98: 89:c1:bd:04:19:d6:de:22:d7:85:4b:ff:0c:4d:b1:73:86:0c: e4:0d:ef:72:ea:96:7b:0e:f2:2f:33:ea:c7:e8:0a:bd:9b:f6: e9:11:ac:75:ac:22:a4:a9:14:d8:6c:a0:86:a6:e8:47:98:18: bf:9e:9d:73:6c:c2:47:ac:9b:54:b7:9b:60:39:97:e4:7a:aa: 9b:14:a4:52:13:0c:f9:7f:c5:61:4e:00:bd:1e:86:88:e6:e3: 7d:27:13:73:34:2e:de:6e:5b:fb:53:f8:d0:de:70:d9:30:e6: 1d:1e:18:95:4c:1b:34:df:4b:20:0e:88:8d:37:ab:44:c5:db: 79:d5:34:49:0f:3f:57:9c:bf:a3:fb:9f:fa:77:0c:90:b7:c2: 00:c1:70:7c:7e:ad:06:ef:f0:8b:51:7f:bc:fe:bc:23:7c:f2: db:db:61:e8:f7:4d:9d:82:ec:7a:29:d2:e1:e4:78:ec:3b:95: 0b:75:c1:ac:06:fc:9b:47:11:df:8b:f4:eb:13:41:77:93:75: db:82:96:2b -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIUUO+Ds0G2CbDz7aD/o1b+8jcREPcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjYwNjA1MDgxMzA1WhcNMjcwNjA0MDgxODA1 WjAzMTEwLwYDVQQDEyg5MzEwMTdGOEJGNkM2QjRFNkE1NEM2ODAwMzdBNEExMjIx MkJCMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7txB7eG7u88u meJWCwAUXaCtwnQf/ztJ040HR85lntfL5Culeu7YXKClbGYdvOc/+al9i+4sETdV XDJrZQcqxsP7hOMDK+uXNtxHqFo2ZKFEX7vDOnj0q2+AQge5m0GNs7GZQd3uCYEF vj3vPfAB1LDfgy339eaKJuOccPmy62//huC7TS0JkUp/Kocu34VQ0eH2T6iQII4t 3IMm0J59+Efd8KrzpoEGyhUtjozoLfxDhf2jH45m42rJII1jeZErGgRZlbdpa123 976l83890uSfuq3g146nGO1nbRPONLoQUJVEPhPbMnzx3ErCxEWFz8ZVOBKW1AHm crWnS5wABwIDAQABo4ICkDCCAowwHQYDVR0OBBYEFJMQF/i/bGtOalTGgAN6ShIh K7M0MB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzIxODU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEG CCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAaOoLAwQAaOpWAwQAaOqhAwQAaOrT MA0GCSqGSIb3DQEBCwUAA4IBAQAXH3nm+f4Vu6KV5WSghZYuPbeoRSLFCoDolaU9 pJzmhpD9MGPQY5yYgJmb8zDoxIRewYVvqZiJwb0EGdbeIteFS/8MTbFzhgzkDe9y 6pZ7DvIvM+rH6Aq9m/bpEax1rCKkqRTYbKCGpuhHmBi/np1zbMJHrJtUt5tgOZfk eqqbFKRSEwz5f8VhTgC9HoaI5uN9JxNzNC7eblv7U/jQ3nDZMOYdHhiVTBs030sg DoiNN6tExdt51TRJDz9XnL+j+5/6dwyQt8IAwXB8fq0G7/CLUX+8/rwjfPLb22Ho 902dgux6KdLh5HjsO5ULdcGsBvybRxHfi/TrE0F3k3XbgpYr -----END CERTIFICATE-----Generated at Fri Jun 5 21:16:19 2026 by rpki-client