Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS139686.roa
File: AS139686.roa (raw, json)
Hash identifier: ujBs3+5H8TwjtiWOg5Doy1MwR+tF8RhC9nQzrdWZiAs=
Subject key identifier: 03:D8:CC:8C:E3:25:47:6E:F3:DE:0C:14:F6:2A:59:79:9D:97:86:B2
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 21D6AD0F62297FC08B3A873E3715C4278EE7FB00
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS139686.roa
Signing time: Tue 12 Mar 2024 03:48:04 +0000
ROA not before: Tue 12 Mar 2024 03:43:04 +0000
ROA not after: Tue 11 Mar 2025 03:48:04 +0000
asID: 139686
IP address blocks: 2a0f:9400::/48 maxlen: 48
2a0f:9400:1::/48 maxlen: 48
2a0f:9400:2::/48 maxlen: 48
2a0f:9400:3::/48 maxlen: 48
2a0f:9400:4::/48 maxlen: 48
2a0f:9400:6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:d6:ad:0f:62:29:7f:c0:8b:3a:87:3e:37:15:c4:27:8e:e7:fb:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Mar 12 03:43:04 2024 GMT
Not After : Mar 11 03:48:04 2025 GMT
Subject: CN=03D8CC8CE325476EF3DE0C14F62A59799D9786B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:89:66:bb:c6:51:1c:3e:90:27:83:69:d7:28:
c4:bd:a8:37:2b:4b:7c:71:ad:45:e2:81:95:3b:7d:
c0:be:c4:2c:0a:75:4f:22:0d:02:a8:40:a0:41:51:
08:54:6c:ec:af:a8:a4:98:e2:14:a1:6e:0c:db:c4:
8f:a3:79:b3:10:f1:ba:ad:af:60:b8:ea:4e:2e:3d:
29:ec:b7:1d:f9:83:20:64:62:8f:66:bc:5f:1c:b1:
b0:73:75:15:dd:4f:57:a3:12:a9:34:30:90:4c:97:
d4:da:a8:5d:9c:ac:4f:61:19:d8:0b:de:76:56:e6:
91:5c:22:58:df:05:87:17:92:6c:c5:b2:85:01:ba:
99:fd:ee:01:ef:72:0b:34:80:94:c1:2e:52:f9:b5:
29:6c:b4:be:b4:54:00:52:7f:1d:c8:ee:04:c4:19:
bf:a6:42:8e:08:e4:e9:98:a6:3d:5e:92:54:60:e5:
02:41:5b:1c:3e:36:81:86:88:f6:cd:b6:a6:8b:f5:
01:00:2a:a9:45:29:cc:dc:88:a1:60:9b:1a:c6:5d:
3c:69:cc:a8:a1:47:c7:8a:9f:cd:45:0d:c3:88:82:
00:49:23:ee:e2:bd:be:66:df:05:5b:d3:93:7d:3f:
74:73:b9:4c:a0:f7:2a:f6:61:c8:a0:aa:a7:6f:fc:
7f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D8:CC:8C:E3:25:47:6E:F3:DE:0C:14:F6:2A:59:79:9D:97:86:B2
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS139686.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400::-2a0f:9400:4:ffff:ffff:ffff:ffff:ffff
2a0f:9400:6::/48
Signature Algorithm: sha256WithRSAEncryption
52:d4:01:6b:5c:00:77:b4:4c:c3:e5:e6:44:59:dd:92:7e:28:
b0:f1:f4:80:01:59:73:7e:54:26:ab:fc:3f:ed:71:eb:e4:23:
35:f2:ad:08:12:ee:47:96:73:94:8d:c5:b2:dd:dd:8b:f4:31:
f5:74:9c:41:82:ff:24:4d:9c:3a:96:d6:4e:29:4a:73:30:74:
00:83:ab:1d:12:97:82:32:32:65:60:01:40:d0:3c:a0:b3:67:
4a:12:db:15:02:a5:3b:14:ef:63:ee:b1:f3:fb:56:5a:ea:f3:
80:a1:4e:7f:1b:d4:4c:4b:aa:03:b4:1a:b3:1e:fc:c9:31:3f:
36:31:48:7a:27:04:20:a4:aa:9c:35:16:8d:b3:94:2c:fb:d8:
a5:6a:e2:99:16:8c:33:d6:9b:70:cd:82:2a:50:a7:a2:62:2a:
c9:13:45:31:78:b2:ad:e6:35:68:df:8e:6c:b0:62:93:2e:3d:
ae:73:ec:f1:c6:30:a1:f8:97:cc:ff:01:54:77:c0:7f:6e:38:
9b:b7:f0:33:5d:d9:f6:86:ac:a2:cf:49:8f:a9:5e:25:16:0e:
9e:88:fa:94:78:39:a1:62:d2:25:98:ff:81:ca:8b:b0:f6:e7:
53:c6:84:4b:9a:5b:5a:58:1d:20:89:63:fe:b6:1d:26:ff:e3:
c0:13:d1:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:56:05 2024 by rpki-client on console-fra.rpki-client.org