$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: tr1pBYB4xSKBsWLF/u3A4NCo47tCRXZhj61HnY5Sej4= Subject key identifier: 8C:A9:2A:EB:93:DC:DB:C6:68:87:47:C1:AB:B9:BE:49:21:C2:04:4B Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Certificate serial: 6EEE5D7146920CF6CE1FD8023BADEB37B243FB10 Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa Signing time: Fri 09 May 2025 07:24:44 +0000 ROA not before: Fri 09 May 2025 07:19:44 +0000 ROA not after: Fri 08 May 2026 07:24:44 +0000 asID: 834 IP address blocks: 104.234.104.0/24 maxlen: 24 104.234.136.0/24 maxlen: 24 104.234.192.0/24 maxlen: 24 104.234.202.0/23 maxlen: 24 104.234.206.0/23 maxlen: 24 104.234.209.0/24 maxlen: 24 206.53.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 15:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ee:5d:71:46:92:0c:f6:ce:1f:d8:02:3b:ad:eb:37:b2:43:fb:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9 Validity Not Before: May 9 07:19:44 2025 GMT Not After : May 8 07:24:44 2026 GMT Subject: CN=8CA92AEB93DCDBC6688747C1ABB9BE4921C2044B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:da:ce:e9:4b:38:87:b2:83:af:74:e9:c6: 6b:a1:5f:a6:fa:89:b6:31:13:dd:c0:02:d6:07:2a: 46:21:7f:e0:94:74:f4:5e:ea:d5:a0:01:f3:8f:8f: d6:e0:2f:92:6d:46:3b:93:a5:a1:af:22:4b:04:35: 97:61:84:d3:b0:63:d3:d6:4f:d0:08:fe:99:2b:f2: 23:f5:02:0f:33:82:51:eb:b2:ef:9b:72:b6:75:16: 40:30:9d:1a:77:e4:9a:04:db:d5:a4:ed:3a:2a:f9: 94:be:6f:70:3f:51:68:b8:8e:74:17:bf:05:65:dc: 2e:3a:4b:86:31:cf:07:c6:12:ab:e6:24:56:e7:1b: cc:0c:0e:cb:8b:32:75:25:ae:1b:97:11:b4:e7:0a: 4d:22:3c:5c:c2:4b:3d:83:ed:e2:5f:61:4f:b5:ff: b5:41:99:7e:8e:8e:0e:ed:8b:ac:53:f6:6f:15:62: db:fd:b7:18:6f:c6:1f:4e:e1:37:3a:17:5f:fa:65: 99:e3:6e:b1:bc:e2:22:4e:07:35:ed:c7:c2:e0:bf: 4e:b3:fe:41:d3:8f:6b:68:a7:58:2b:d4:89:f0:ca: e5:27:73:ce:28:91:c6:2b:00:4f:2d:54:f2:a3:53: 8b:02:64:9c:ce:71:99:81:8c:d7:4b:6e:a6:f2:c3: 50:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A9:2A:EB:93:DC:DB:C6:68:87:47:C1:AB:B9:BE:49:21:C2:04:4B X509v3 Authority Key Identifier: keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.234.104.0/24 104.234.136.0/24 104.234.192.0/24 104.234.202.0/23 104.234.206.0/23 104.234.209.0/24 206.53.63.0/24 Signature Algorithm: sha256WithRSAEncryption 71:72:3f:18:8e:73:6d:0a:4c:f0:52:87:89:90:db:9f:39:ad: 17:32:08:a0:43:c5:95:e2:ec:47:a9:c3:ca:5f:05:53:f2:ca: 47:17:1f:bb:a8:3b:9d:42:8f:31:3d:7d:43:2e:ca:cf:a1:84: d2:ad:ec:67:ab:8a:bd:02:ed:30:61:ef:df:9d:1d:95:19:7f: f6:4f:8b:09:90:1c:22:6b:97:e2:86:87:59:12:fc:09:b8:6b: 0d:80:1f:9f:2a:2a:b2:5b:cf:93:6f:56:06:3a:06:9d:43:cc: 3d:75:2f:ff:75:af:6f:93:7f:f4:80:a3:34:2e:5f:3d:c0:fe: 35:4b:50:e0:a8:82:02:51:64:36:a3:c3:f9:15:5a:05:52:90: 61:f2:28:9e:07:54:7b:1e:e2:c5:2a:39:74:d7:0f:4e:30:e0: 58:cb:e4:34:3d:41:3b:6b:23:92:a9:4b:40:50:f7:ed:ab:6e: 34:bd:74:c4:b3:ac:21:98:2a:f9:a6:01:66:b1:c6:e1:75:cd: b4:b3:1a:cc:b7:72:90:d7:f4:30:6a:f8:01:af:0b:41:01:91: d9:91:2b:9a:f2:80:34:bb:43:5c:98:e3:b8:e9:96:60:b9:bd: d9:96:0d:a3:93:e6:ae:78:f8:ad:80:7d:a6:0e:d8:f3:f6:ae: 90:48:2a:05 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgIUbu5dcUaSDPbOH9gCO63rN7JD+xAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNzJjYzFmZDI4ZDRhMDRjODQ3M2MzYWMwYjE5OTQwMjcw Y2JiZjEyM2YzYzBiMWY3ZjkwHhcNMjUwNTA5MDcxOTQ0WhcNMjYwNTA4MDcyNDQ0 WjAzMTEwLwYDVQQDEyg4Q0E5MkFFQjkzRENEQkM2Njg4NzQ3QzFBQkI5QkU0OTIx QzIwNDRCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphbazulLOIey g6906cZroV+m+om2MRPdwALWBypGIX/glHT0XurVoAHzj4/W4C+SbUY7k6WhryJL BDWXYYTTsGPT1k/QCP6ZK/Ij9QIPM4JR67Lvm3K2dRZAMJ0ad+SaBNvVpO06KvmU vm9wP1FouI50F78FZdwuOkuGMc8HxhKr5iRW5xvMDA7LizJ1Ja4blxG05wpNIjxc wks9g+3iX2FPtf+1QZl+jo4O7YusU/ZvFWLb/bcYb8YfTuE3Ohdf+mWZ426xvOIi Tgc17cfC4L9Os/5B049raKdYK9SJ8MrlJ3POKJHGKwBPLVTyo1OLAmScznGZgYzX S26m8sNQ4QIDAQABo4ICoDCCApwwHQYDVR0OBBYEFIypKuuT3NvGaIdHwau5vkkh wgRLMB8GA1UdIwQYMBaAFKtcr6lXBjNzOJPZHuSwWh8OzNBrMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzhhODQ4YWRlODU4N2ZhMjAwMTg1YzVjYjliY2IyYmFjLzAv QUI1Q0FGQTk1NzA2MzM3MzM4OTNEOTFFRTRCMDVBMUYwRUNDRDA2Qi5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvNzZmZTExZDQtZDM1Mi00OTk0LThmNmMtZDZjOTFi MGI4NDE1LzNmNWUyZTViLWM3MzEtNGRiOC05Yjg3LWFmOWY4ZTU4YTFjNi83MmNj MWZkMjhkNGEwNGM4NDczYzNhYzBiMTk5NDAyNzBjYmJmMTIzZjNjMGIxZjdmOS5j ZXIwbQYIKwYBBQUHAQsEYTBfMF0GCCsGAQUFBzALhlFyc3luYzovL3Jwa2ktcnBz LmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4NTg3ZmEyMDAxODVjNWNiOWJj YjJiYWMvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBDBggr BgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEAGjqaAMEAGjqiAMEAGjqwAMEAWjqygME AWjqzgMEAGjq0QMEAM41PzANBgkqhkiG9w0BAQsFAAOCAQEAcXI/GI5zbQpM8FKH iZDbnzmtFzIIoEPFleLsR6nDyl8FU/LKRxcfu6g7nUKPMT19Qy7Kz6GE0q3sZ6uK vQLtMGHv350dlRl/9k+LCZAcImuX4oaHWRL8CbhrDYAfnyoqslvPk29WBjoGnUPM PXUv/3Wvb5N/9ICjNC5fPcD+NUtQ4KiCAlFkNqPD+RVaBVKQYfIongdUex7ixSo5 dNcPTjDgWMvkND1BO2sjkqlLQFD37atuNL10xLOsIZgq+aYBZrHG4XXNtLMazLdy kNf0MGr4Aa8LQQGR2ZErmvKANLtDXJjjuOmWYLm92ZYNo5Pmrnj4rYB9pg7Y8/au kEgqBQ== -----END CERTIFICATE-----Generated at Sun May 11 19:29:22 2025 by rpki-client