$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: HbEplObFQtjLxYKZaRoOCd7SSk6jCTB9gncE/vpqseE= Subject key identifier: F5:02:4F:BC:F3:EB:56:9F:86:E7:D7:5E:5A:39:B2:C5:FD:8A:E7:CE Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 16BA07FDAD6B6F279F0A776BF421C3D151810F0A Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa Signing time: Mon 20 Apr 2026 10:35:21 +0000 ROA not before: Mon 20 Apr 2026 10:30:21 +0000 ROA not after: Mon 19 Apr 2027 10:35:21 +0000 asID: 834 IP address blocks: 104.234.2.0/24 maxlen: 24 104.234.28.0/23 maxlen: 24 104.234.40.0/24 maxlen: 24 104.234.56.0/24 maxlen: 24 104.234.77.0/24 maxlen: 24 104.234.86.0/24 maxlen: 24 104.234.95.0/24 maxlen: 24 104.234.98.0/24 maxlen: 24 104.234.102.0/24 maxlen: 24 104.234.112.0/24 maxlen: 24 104.234.114.0/24 maxlen: 24 104.234.136.0/24 maxlen: 24 104.234.157.0/24 maxlen: 24 104.234.161.0/24 maxlen: 24 104.234.192.0/23 maxlen: 24 104.234.194.0/24 maxlen: 24 104.234.196.0/24 maxlen: 24 104.234.198.0/23 maxlen: 24 104.234.201.0/24 maxlen: 24 104.234.202.0/23 maxlen: 24 104.234.206.0/23 maxlen: 24 104.234.211.0/24 maxlen: 24 104.234.229.0/24 maxlen: 24 104.234.232.0/24 maxlen: 24 104.234.238.0/24 maxlen: 24 206.53.56.0/24 maxlen: 24 206.53.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Apr 2026 11:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ba:07:fd:ad:6b:6f:27:9f:0a:77:6b:f4:21:c3:d1:51:81:0f:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: Apr 20 10:30:21 2026 GMT Not After : Apr 19 10:35:21 2027 GMT Subject: CN=F5024FBCF3EB569F86E7D75E5A39B2C5FD8AE7CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:84:73:48:51:9b:99:22:c4:66:7c:d8:66:ff: 59:fc:cf:4f:e9:60:b0:1a:e2:54:7d:f0:91:d4:cf: 9b:84:91:39:94:82:04:33:31:2a:91:4f:79:8a:55: 43:6c:55:3d:6b:d3:c2:bb:f0:1c:92:ab:1c:da:d6: 31:5c:66:34:89:1d:fd:51:09:35:05:f5:c8:01:ee: 64:cb:40:9a:98:0f:7f:45:82:95:fa:a7:b7:e7:c8: cb:61:ce:fc:59:69:82:22:9f:57:3d:74:19:70:1a: d8:4b:ec:f5:78:14:b4:64:d4:ff:92:a8:53:f5:a3: ab:3f:1b:97:70:74:1c:45:5b:dc:a4:ef:89:a5:fc: d0:27:44:fa:4d:0b:d3:05:4b:26:e8:2c:e6:b8:0d: ca:f8:05:48:c0:68:aa:15:19:dc:49:93:9f:d9:74: b2:72:c5:3b:c4:c2:53:fc:db:26:33:9c:e1:17:75: 5d:24:52:cb:bd:87:db:e6:1d:17:d2:c4:bb:a9:a6: c5:f8:6c:62:84:80:00:25:4e:6a:07:4b:94:dc:81: 1f:39:a2:ff:28:5a:bf:60:8b:75:39:15:ad:d0:b8: d4:48:43:6d:88:68:16:24:02:46:0f:07:43:27:9b: dc:c8:2e:a9:c7:28:ef:ba:a1:ca:fd:fe:34:d7:ed: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:02:4F:BC:F3:EB:56:9F:86:E7:D7:5E:5A:39:B2:C5:FD:8A:E7:CE X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.2.0/24 104.234.28.0/23 104.234.40.0/24 104.234.56.0/24 104.234.77.0/24 104.234.86.0/24 104.234.95.0/24 104.234.98.0/24 104.234.102.0/24 104.234.112.0/24 104.234.114.0/24 104.234.136.0/24 104.234.157.0/24 104.234.161.0/24 104.234.192.0-104.234.194.255 104.234.196.0/24 104.234.198.0/23 104.234.201.0-104.234.203.255 104.234.206.0/23 104.234.211.0/24 104.234.229.0/24 104.234.232.0/24 104.234.238.0/24 206.53.56.0/24 206.53.63.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:f1:31:54:de:58:27:2f:a6:6d:9d:bf:19:7a:d8:49:43:6c: f7:9b:a1:36:56:0d:57:9a:5c:c2:14:70:00:7f:24:55:79:38: 52:45:ed:b3:7c:c1:5f:d9:b1:83:c6:58:60:e2:be:2e:03:de: 3e:93:ef:ce:e1:6e:00:ce:0b:7b:dc:bd:04:8e:1c:c1:42:88: b8:fc:ee:50:b1:27:bf:c2:2c:d0:da:ed:94:57:b1:2e:b5:39: 9a:09:6d:c1:46:2a:2b:11:03:1e:19:a8:f2:cf:0b:f1:ed:43: fb:33:65:a6:a8:b5:c1:46:ab:5d:c7:e2:f6:45:aa:2e:73:eb: a0:8d:c8:7a:23:1d:c8:56:48:0a:dc:99:9b:a9:d3:30:45:61: 84:3c:a9:0a:1e:16:37:00:e7:ef:3b:e3:07:10:92:6c:68:ac: 10:fe:62:5b:24:14:80:41:81:69:e6:94:c4:ec:6d:2b:a0:ad: fd:54:d8:ad:98:7a:b1:a0:33:ea:f1:2c:0d:b2:10:39:68:b1: 90:94:f5:e6:dc:75:e8:c2:31:64:a3:ba:9e:5f:e1:23:de:93: 3a:97:00:49:9f:85:58:8f:fb:ac:6d:de:d2:35:a0:36:ef:36: b7:a8:bd:9b:85:bc:92:c2:8a:67:fc:7d:38:10:65:3e:db:4e: 90:0d:b0:d3 -----BEGIN CERTIFICATE----- MIIGITCCBQmgAwIBAgIUFroH/a1rbyefCndr9CHD0VGBDwowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjYwNDIwMTAzMDIxWhcNMjcwNDE5MTAzNTIx WjAzMTEwLwYDVQQDEyhGNTAyNEZCQ0YzRUI1NjlGODZFN0Q3NUU1QTM5QjJDNUZE OEFFN0NFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYRzSFGbmSLE ZnzYZv9Z/M9P6WCwGuJUffCR1M+bhJE5lIIEMzEqkU95ilVDbFU9a9PCu/Ackqsc 2tYxXGY0iR39UQk1BfXIAe5ky0CamA9/RYKV+qe358jLYc78WWmCIp9XPXQZcBrY S+z1eBS0ZNT/kqhT9aOrPxuXcHQcRVvcpO+JpfzQJ0T6TQvTBUsm6CzmuA3K+AVI wGiqFRncSZOf2XSycsU7xMJT/NsmM5zhF3VdJFLLvYfb5h0X0sS7qabF+GxihIAA JU5qB0uU3IEfOaL/KFq/YIt1ORWt0LjUSENtiGgWJAJGDwdDJ5vcyC6pxyjvuqHK /f401+2FMwIDAQABo4IDITCCAx0wHQYDVR0OBBYEFPUCT7zz61afhufXXlo5ssX9 iufOMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbQYIKwYBBQUHAQsEYTBfMF0GCCsGAQUFBzALhlFyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBwwYI KwYBBQUHAQcBAf8EgbMwgbAwga0EAgABMIGmAwQAaOoCAwQBaOocAwQAaOooAwQA aOo4AwQAaOpNAwQAaOpWAwQAaOpfAwQAaOpiAwQAaOpmAwQAaOpwAwQAaOpyAwQA aOqIAwQAaOqdAwQAaOqhMAwDBAZo6sADBABo6sIDBABo6sQDBAFo6sYwDAMEAGjq yQMEAmjqyAMEAWjqzgMEAGjq0wMEAGjq5QMEAGjq6AMEAGjq7gMEAM41OAMEAM41 PzANBgkqhkiG9w0BAQsFAAOCAQEAjfExVN5YJy+mbZ2/GXrYSUNs95uhNlYNV5pc whRwAH8kVXk4UkXts3zBX9mxg8ZYYOK+LgPePpPvzuFuAM4Le9y9BI4cwUKIuPzu ULEnv8Is0NrtlFexLrU5mgltwUYqKxEDHhmo8s8L8e1D+zNlpqi1wUarXcfi9kWq LnProI3IeiMdyFZICtyZm6nTMEVhhDypCh4WNwDn7zvjBxCSbGisEP5iWyQUgEGB aeaUxOxtK6Ct/VTYrZh6saAz6vEsDbIQOWixkJT15tx16MIxZKO6nl/hI96TOpcA SZ+FWI/7rG3e0jWgNu82t6i9m4W8ksKKZ/x9OBBlPttOkA2w0w== -----END CERTIFICATE-----Generated at Mon Apr 20 22:13:02 2026 by rpki-client