$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: NnPHpc51f5B//mlxEGwcGlwOjo/P44pNlukk13wT2kk= Subject key identifier: 57:BF:B4:7E:CA:FD:94:5B:F5:B8:EC:7E:CC:9A:D5:59:42:20:2D:E1 Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 174E814C305334762E783582F772A7634B925E01 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa Signing time: Fri 14 Feb 2025 15:28:07 +0000 ROA not before: Fri 14 Feb 2025 15:23:07 +0000 ROA not after: Fri 13 Feb 2026 15:28:07 +0000 asID: 834 IP address blocks: 104.234.133.0/24 maxlen: 24 104.234.136.0/24 maxlen: 24 104.234.186.0/24 maxlen: 24 104.234.206.0/23 maxlen: 24 206.53.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 06:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:4e:81:4c:30:53:34:76:2e:78:35:82:f7:72:a7:63:4b:92:5e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Feb 14 15:23:07 2025 GMT Not After : Feb 13 15:28:07 2026 GMT Subject: CN=57BFB47ECAFD945BF5B8EC7ECC9AD55942202DE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ab:2f:ef:6d:2f:61:ab:35:37:cf:24:bb:ef: 87:86:93:12:bf:9a:d3:36:20:b8:eb:ec:54:de:98: c1:72:ce:cb:d0:69:3d:65:3c:ad:f4:26:69:10:3e: 5c:b0:aa:a0:1f:70:5e:00:4c:52:56:48:a1:95:d0: a3:ec:79:7f:ab:af:d2:7d:4f:2b:91:aa:b6:2f:9c: 07:4d:35:74:07:88:a7:95:0c:a9:3f:c0:69:e6:91: ef:2b:e8:61:27:c1:11:57:f0:c0:82:3f:25:1e:46: 69:a5:9b:a8:d9:69:85:dc:36:9c:7e:0a:02:4a:89: b1:30:73:a2:8f:48:95:b5:7e:cd:5b:fe:61:48:d0: 00:e4:37:3f:b1:2f:21:c0:5a:0f:ed:a7:f0:3b:79: 19:7e:f2:2d:c8:19:e9:e7:52:0b:51:74:f9:8a:b9: 75:e5:3d:d9:e8:ef:7a:d5:3c:f4:5e:83:c4:05:f6: 36:d2:a1:14:11:f7:9a:67:d7:9e:2e:04:d8:49:cc: 62:7b:e0:f0:5b:2f:87:ca:26:a7:41:8c:a1:d6:bc: cd:3a:b6:14:b4:91:07:e5:26:b9:4b:64:c2:1d:c7: a2:74:e0:15:8e:61:f9:5d:53:65:f3:67:a3:df:ca: bb:78:d3:5d:64:77:71:22:bc:4e:64:1e:ca:f1:b2: 5d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:BF:B4:7E:CA:FD:94:5B:F5:B8:EC:7E:CC:9A:D5:59:42:20:2D:E1 X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.133.0/24 104.234.136.0/24 104.234.186.0/24 104.234.206.0/23 206.53.63.0/24 Signature Algorithm: sha256WithRSAEncryption b6:ca:4b:61:62:00:f0:5f:52:63:1e:fa:93:61:5b:cf:4a:de: ac:7c:aa:29:c0:fb:62:ff:0f:96:6a:60:f5:7b:6b:7d:f8:c8: cf:bc:60:0b:41:a1:06:c3:bc:1d:df:2c:58:9e:83:2f:23:3d: 88:0e:df:74:d2:fd:da:bd:4b:ac:42:68:dc:85:87:51:96:ab: e1:d1:7a:c1:e9:24:50:72:29:af:f8:4f:5d:57:86:62:f3:43: ed:31:87:07:e6:cd:14:87:c4:96:1e:06:59:71:ae:12:89:82: f1:41:52:65:d7:2c:e3:54:82:bd:14:a1:69:be:e3:c5:fa:4a: a8:bb:e8:ad:74:be:80:1f:16:87:2e:e7:cc:2f:72:9b:db:3b: 4f:f5:1b:e1:89:91:c1:4b:90:de:cc:c2:be:83:e0:18:2c:da: c2:c3:4e:83:be:9b:a9:88:e2:7e:00:17:9b:d1:08:17:8c:5e: bb:6b:45:b6:72:b2:3a:ba:2a:e9:fa:4f:aa:f8:c9:21:f3:87: d0:f3:a0:d0:db:77:0e:1a:81:38:03:c9:0a:f6:79:b7:29:26: 30:99:9c:eb:34:f1:2b:6f:07:5f:8f:c7:4f:03:d2:ea:81:f0: 42:5a:d8:b2:9d:9b:c7:54:4d:9c:86:5c:f1:46:5d:f4:c3:45: 8f:ad:2f:0f -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIUF06BTDBTNHYueDWC93KnY0uSXgEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjUwMjE0MTUyMzA3WhcNMjYwMjEzMTUyODA3 WjAzMTEwLwYDVQQDEyg1N0JGQjQ3RUNBRkQ5NDVCRjVCOEVDN0VDQzlBRDU1OTQy MjAyREUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqsv720vYas1 N88ku++HhpMSv5rTNiC46+xU3pjBcs7L0Gk9ZTyt9CZpED5csKqgH3BeAExSVkih ldCj7Hl/q6/SfU8rkaq2L5wHTTV0B4inlQypP8Bp5pHvK+hhJ8ERV/DAgj8lHkZp pZuo2WmF3DacfgoCSomxMHOij0iVtX7NW/5hSNAA5Dc/sS8hwFoP7afwO3kZfvIt yBnp51ILUXT5irl15T3Z6O961Tz0XoPEBfY20qEUEfeaZ9eeLgTYScxie+DwWy+H yianQYyh1rzNOrYUtJEH5Sa5S2TCHceidOAVjmH5XVNl82ej38q7eNNdZHdxIrxO ZB7K8bJd1QIDAQABo4IClDCCApAwHQYDVR0OBBYEFFe/tH7K/ZRb9bjsfsya1VlC IC3hMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbQYIKwYBBQUHAQsEYTBfMF0GCCsGAQUFBzALhlFyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3Bggr BgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAGjqhQMEAGjqiAMEAGjqugMEAWjqzgME AM41PzANBgkqhkiG9w0BAQsFAAOCAQEAtspLYWIA8F9SYx76k2Fbz0rerHyqKcD7 Yv8Plmpg9XtrffjIz7xgC0GhBsO8Hd8sWJ6DLyM9iA7fdNL92r1LrEJo3IWHUZar 4dF6wekkUHIpr/hPXVeGYvND7TGHB+bNFIfElh4GWXGuEomC8UFSZdcs41SCvRSh ab7jxfpKqLvorXS+gB8Why7nzC9ym9s7T/Ub4YmRwUuQ3szCvoPgGCzawsNOg76b qYjifgAXm9EIF4xeu2tFtnKyOroq6fpPqvjJIfOH0POg0Nt3DhqBOAPJCvZ5tykm MJmc6zTxK28HX4/HTwPS6oHwQlrYsp2bx1RNnIZc8UZd9MNFj60vDw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:39 2025 by rpki-client