This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS139686.roa File: AS139686.roa (raw, json) Hash identifier: ncS3f9AcXBKBxQ2dXs2esadPXP5yRzt8yckMzpYH4hA= Subject key identifier: 33:37:F9:6D:B1:7D:CB:44:1C:9D:9B:28:B2:5E:52:C6:93:EF:D8:4C Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f Certificate serial: 71EB0CA3966AFD09EFE1D96D803DAC650359F51E Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS139686.roa Signing time: Tue 13 Jan 2026 05:00:03 +0000 ROA not before: Tue 13 Jan 2026 04:55:03 +0000 ROA not after: Tue 12 Jan 2027 05:00:03 +0000 asID: 139686 IP address blocks: 2a0f:9400::/48 maxlen: 48 2a0f:9400:1::/48 maxlen: 48 2a0f:9400:2::/48 maxlen: 48 2a0f:9400:3::/48 maxlen: 48 2a0f:9400:4::/48 maxlen: 48 2a0f:9400:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 21:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:eb:0c:a3:96:6a:fd:09:ef:e1:d9:6d:80:3d:ac:65:03:59:f5:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f Validity Not Before: Jan 13 04:55:03 2026 GMT Not After : Jan 12 05:00:03 2027 GMT Subject: CN=3337F96DB17DCB441C9D9B28B25E52C693EFD84C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3a:a0:eb:16:d0:f2:31:63:21:c9:fb:28:ae: 99:06:7d:9a:94:c9:67:fb:90:f8:df:15:0d:30:d9: cf:bb:89:05:2e:ee:54:0d:8f:5f:d7:6d:4f:2f:15: f6:07:91:71:e8:42:36:16:64:69:fd:c1:3e:ea:12: 97:ce:d7:b8:0f:34:87:25:d9:ca:7a:4c:05:6c:d4: 57:76:3f:db:25:cd:6e:aa:55:68:23:be:93:6f:fe: 41:5f:c6:55:cd:b2:f9:61:de:87:6e:c8:88:e3:8a: c5:67:13:72:64:40:34:ae:f9:fa:a1:e2:dd:c5:35: e2:c0:d1:c1:af:01:50:ae:b2:ec:61:9e:2e:6d:8b: 61:05:e2:76:f9:53:80:cb:da:fe:2a:de:1f:84:8e: f7:ce:4b:71:ec:03:5c:d1:fa:75:5f:64:d1:46:97: f6:4d:b3:b4:37:bf:86:da:01:05:a1:6a:b5:12:23: 8d:be:6b:01:aa:ed:f9:a3:7f:94:3a:91:aa:ce:9a: b0:fd:69:22:fa:03:bb:40:90:a6:d5:cf:80:16:f5: 19:a4:a1:0a:36:9c:d6:88:0a:2e:eb:33:fb:00:a4: 79:f3:10:0d:de:52:e0:a1:4f:dc:58:8a:19:85:d6: 6a:d5:3d:2f:a0:eb:91:07:4c:f3:d3:7a:86:0e:25: f4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:37:F9:6D:B1:7D:CB:44:1C:9D:9B:28:B2:5E:52:C6:93:EF:D8:4C X509v3 Authority Key Identifier: keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS139686.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:9400::-2a0f:9400:4:ffff:ffff:ffff:ffff:ffff 2a0f:9400:6::/48 Signature Algorithm: sha256WithRSAEncryption 19:ef:60:94:c2:e6:95:9c:4e:a3:40:ea:e0:60:2d:e7:10:ee: c0:20:85:39:ac:95:f3:40:72:3f:8a:99:b8:db:64:99:22:f6: 6b:c9:5e:ed:9b:e6:63:f2:36:55:51:65:26:47:46:5f:ac:21: a3:e8:16:28:63:61:48:e9:36:62:6d:f9:b3:31:2c:e2:34:b5: 24:ce:47:e1:0b:fb:e7:53:2e:a4:de:d6:dd:25:c5:93:a1:f4: 7a:ba:9f:27:c7:2b:f1:ea:c0:b6:fb:1a:01:da:eb:92:26:90: 3b:ae:9e:f7:29:9d:30:b7:32:9a:f3:35:f7:5d:a1:9a:39:c5: 60:0b:39:7d:1f:07:d5:7c:8c:8b:42:2f:f0:ab:6c:31:a1:37: 74:67:48:96:a4:dd:62:5b:46:d0:79:5b:6a:04:ff:06:43:55: b5:a3:ee:a5:2c:8e:e7:c0:c6:db:17:4d:37:a7:7d:4b:f1:39: f8:56:54:21:af:1d:03:73:d8:74:78:ea:3e:64:4f:33:72:b6: c3:68:f8:57:fc:3a:09:e1:29:e3:99:bb:16:bb:d3:22:30:ba: 3c:4b:88:37:0f:70:af:cc:54:c3:79:3b:5f:86:f7:fc:8f:03: e9:92:cf:0c:2d:75:f3:86:ff:1c:8c:43:40:bd:3f:06:4b:cf: 72:65:64:33 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIUcesMo5Zq/Qnv4dltgD2sZQNZ9R4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2VhNTMxNmRiZGFjMDFjZDA1ZDBlYWEwNWE4OWMwNGRh M2U3Mzk4ZjAeFw0yNjAxMTMwNDU1MDNaFw0yNzAxMTIwNTAwMDNaMDMxMTAvBgNV BAMTKDMzMzdGOTZEQjE3RENCNDQxQzlEOUIyOEIyNUU1MkM2OTNFRkQ4NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHOqDrFtDyMWMhyfsorpkGfZqU yWf7kPjfFQ0w2c+7iQUu7lQNj1/XbU8vFfYHkXHoQjYWZGn9wT7qEpfO17gPNIcl 2cp6TAVs1Fd2P9slzW6qVWgjvpNv/kFfxlXNsvlh3oduyIjjisVnE3JkQDSu+fqh 4t3FNeLA0cGvAVCusuxhni5ti2EF4nb5U4DL2v4q3h+EjvfOS3HsA1zR+nVfZNFG l/ZNs7Q3v4baAQWharUSI42+awGq7fmjf5Q6karOmrD9aSL6A7tAkKbVz4AW9Rmk oQo2nNaICi7rM/sApHnzEA3eUuChT9xYihmF1mrVPS+g65EHTPPTeoYOJfStAgMB AAGjggHaMIIB1jAdBgNVHQ4EFgQUMzf5bbF9y0QcnZsosl5SxpPv2EwwHwYDVR0j BBgwFoAUfqUxbb2sAc0F0OqgWonATaPnOY8wDgYDVR0PAQH/BAQDAgeAMHEGA1Ud HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5j b20vcmVwby9GUkMtQ0EvNS83RUE1MzE2REJEQUMwMUNEMDVEMEVBQTA1QTg5QzA0 REEzRTczOThGLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZnFVeGJiMnNBYzBG ME9xZ1dvbkFUYVBuT1k4LmNlcjBcBggrBgEFBQcBCwRQME4wTAYIKwYBBQUHMAuG QHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5jb20vcmVwby9GUkMt Q0EvNS9BUzEzOTY4Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAzBggr BgEFBQcBBwEB/wQkMCIwIAQCAAIwGjAPAwQCKg+UAwcAKg+UAAAEAwcAKg+UAAAG MA0GCSqGSIb3DQEBCwUAA4IBAQAZ72CUwuaVnE6jQOrgYC3nEO7AIIU5rJXzQHI/ ipm422SZIvZryV7tm+Zj8jZVUWUmR0ZfrCGj6BYoY2FI6TZibfmzMSziNLUkzkfh C/vnUy6k3tbdJcWTofR6up8nxyvx6sC2+xoB2uuSJpA7rp73KZ0wtzKa8zX3XaGa OcVgCzl9HwfVfIyLQi/wq2wxoTd0Z0iWpN1iW0bQeVtqBP8GQ1W1o+6lLI7nwMbb F003p31L8Tn4VlQhrx0Dc9h0eOo+ZE8zcrbDaPhX/DoJ4SnjmbsWu9MiMLo8S4g3 D3CvzFTDeTtfhvf8jwPpks8MLXXzhv8cjENAvT8GS89yZWQz -----END CERTIFICATE-----Generated at Wed Jan 21 03:50:09 2026 by rpki-client