$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: kPsLTeS5tRNqyEtnYzJGTIgN+ObCGh/ApI4o0aVl0H0= Subject key identifier: 36:56:E5:80:1D:17:A4:16:9C:6A:61:FA:E5:DB:97:EF:21:9D:DE:76 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 4D623B68BBD6CE322E6F23285480E6793B5F1C5D Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa Signing time: Sun 17 Aug 2025 17:37:24 +0000 ROA not before: Sun 17 Aug 2025 17:32:24 +0000 ROA not after: Sun 16 Aug 2026 17:37:24 +0000 asID: 834 IP address blocks: 104.234.3.0/24 maxlen: 24 104.234.136.0/24 maxlen: 24 104.234.192.0/24 maxlen: 24 104.234.194.0/24 maxlen: 24 104.234.201.0/24 maxlen: 24 104.234.202.0/23 maxlen: 24 104.234.206.0/23 maxlen: 24 104.234.209.0/24 maxlen: 24 206.53.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 06:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:62:3b:68:bb:d6:ce:32:2e:6f:23:28:54:80:e6:79:3b:5f:1c:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Aug 17 17:32:24 2025 GMT Not After : Aug 16 17:37:24 2026 GMT Subject: CN=3656E5801D17A4169C6A61FAE5DB97EF219DDE76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:6d:91:61:f9:ef:a0:78:b7:04:7e:b0:8b: 1e:c6:48:0b:74:4f:39:a2:e5:14:6e:cd:cd:42:7e: a9:84:30:8c:31:f2:01:d3:2e:90:f5:a6:24:b5:71: 5c:cd:b7:3c:d3:8d:fa:cc:cd:41:c3:1a:61:5e:7c: ee:cc:e9:4f:c8:95:b7:a8:c3:94:7e:0c:15:ff:ba: 94:66:4f:81:d2:c1:dd:76:14:8a:0e:02:1a:81:c1: 62:6a:c7:98:d7:9c:ee:c8:26:db:c9:8f:87:86:cb: fd:df:b5:3c:ab:9d:ae:73:c1:dc:f6:0b:71:9d:82: 64:9a:e7:1e:06:8c:34:aa:aa:36:91:cc:2e:41:9b: e4:ad:d6:d3:c7:cd:f1:f9:d1:3a:29:de:08:0d:e5: d9:9d:28:b5:31:4d:0f:5f:07:f0:64:56:c7:da:37: aa:06:78:08:04:c7:0c:a5:55:4d:b7:1c:a1:43:e5: b4:ce:5d:ea:1c:61:c5:64:54:af:f3:b5:2f:63:07: 16:e2:ef:15:76:50:22:ac:75:cf:07:a5:ec:68:1d: cb:c8:35:06:f0:3e:b4:f2:68:54:3a:db:28:92:5a: 42:cf:99:e8:ed:74:52:ac:7d:1c:1a:14:ec:d9:4a: 02:59:59:82:bb:30:0b:a9:57:4e:c9:9f:4a:bb:cc: 30:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:56:E5:80:1D:17:A4:16:9C:6A:61:FA:E5:DB:97:EF:21:9D:DE:76 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.3.0/24 104.234.136.0/24 104.234.192.0/24 104.234.194.0/24 104.234.201.0-104.234.203.255 104.234.206.0/23 104.234.209.0/24 206.53.63.0/24 Signature Algorithm: sha256WithRSAEncryption a2:0f:c3:f8:13:3f:6d:f1:09:b9:8c:8f:ea:d1:e7:03:6f:59: 48:e2:f9:45:4a:77:d1:b0:e7:e4:c3:70:a3:2d:44:d9:f9:d5: eb:fe:e5:35:df:75:c0:99:24:2d:bb:dd:c0:5f:6a:ea:79:26: c1:08:cc:01:4a:b0:d9:c3:fb:e6:da:c7:7c:02:23:21:f6:df: 58:72:95:18:02:92:d5:41:1f:e3:0e:c3:9b:d8:f7:39:80:43: d7:af:f7:d9:44:7c:63:15:cd:23:49:ca:c9:2a:df:d8:a6:b4: ff:bf:ac:23:fb:77:f3:f4:64:1b:25:84:db:51:d8:01:02:ae: 3a:6b:a8:fd:cb:89:60:9d:25:e2:db:de:f6:c3:00:c0:0a:d9: 23:7c:e8:79:53:20:d4:1d:8b:f6:29:24:b2:78:54:90:93:3e: a7:ec:3d:f0:18:52:e9:bf:6f:7f:72:84:ed:b1:61:c8:de:a7: 24:27:63:46:73:ba:48:c5:c5:91:b4:e6:47:48:36:25:d8:6c: 39:b2:2a:fd:0c:eb:40:4b:92:4c:4d:89:53:e3:1c:95:84:ee: 08:d9:88:e7:2a:7e:09:6b:8a:c9:de:a2:9d:94:60:5b:ce:39: b7:e4:33:36:d4:e9:3e:e5:5e:60:0d:8f:39:cd:7c:fe:1e:80: 3e:5f:a9:b5 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgIUTWI7aLvWzjIubyMoVIDmeTtfHF0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjUwODE3MTczMjI0WhcNMjYwODE2MTczNzI0 WjAzMTEwLwYDVQQDEygzNjU2RTU4MDFEMTdBNDE2OUM2QTYxRkFFNURCOTdFRjIx OURERTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVNtkWH576B4 twR+sIsexkgLdE85ouUUbs3NQn6phDCMMfIB0y6Q9aYktXFczbc80436zM1Bwxph XnzuzOlPyJW3qMOUfgwV/7qUZk+B0sHddhSKDgIagcFiaseY15zuyCbbyY+Hhsv9 37U8q52uc8Hc9gtxnYJkmuceBow0qqo2kcwuQZvkrdbTx83x+dE6Kd4IDeXZnSi1 MU0PXwfwZFbH2jeqBngIBMcMpVVNtxyhQ+W0zl3qHGHFZFSv87UvYwcW4u8VdlAi rHXPB6XsaB3LyDUG8D608mhUOtsoklpCz5no7XRSrH0cGhTs2UoCWVmCuzALqVdO yZ9Ku8wwfwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFDZW5YAdF6QWnGph+uXbl+8h nd52MB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbQYIKwYBBQUHAQsEYTBfMF0GCCsGAQUFBzALhlFyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBRBggr BgEFBQcBBwEB/wRCMEAwPgQCAAEwOAMEAGjqAwMEAGjqiAMEAGjqwAMEAGjqwjAM AwQAaOrJAwQCaOrIAwQBaOrOAwQAaOrRAwQAzjU/MA0GCSqGSIb3DQEBCwUAA4IB AQCiD8P4Ez9t8Qm5jI/q0ecDb1lI4vlFSnfRsOfkw3CjLUTZ+dXr/uU133XAmSQt u93AX2rqeSbBCMwBSrDZw/vm2sd8AiMh9t9YcpUYApLVQR/jDsOb2Pc5gEPXr/fZ RHxjFc0jScrJKt/YprT/v6wj+3fz9GQbJYTbUdgBAq46a6j9y4lgnSXi2972wwDA CtkjfOh5UyDUHYv2KSSyeFSQkz6n7D3wGFLpv29/coTtsWHI3qckJ2NGc7pIxcWR tOZHSDYl2Gw5sir9DOtAS5JMTYlT4xyVhO4I2YjnKn4Ja4rJ3qKdlGBbzjm35DM2 1Ok+5V5gDY85zXz+HoA+X6m1 -----END CERTIFICATE-----Generated at Wed Aug 20 23:01:03 2025 by rpki-client