Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS142586.roa
File: AS142586.roa (raw, json)
Hash identifier: quynMayKKWk78hwWzYAu1NZsJj806swGoF04zdohi5w=
Subject key identifier: B2:6B:F5:22:F5:22:50:07:24:47:EC:F1:B4:02:8C:87:7B:3A:C2:67
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 41054883BF74294C277C715D1AE21115B0E8FACE
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS142586.roa
Signing time: Tue 16 Jul 2024 02:42:24 +0000
ROA not before: Tue 16 Jul 2024 02:37:24 +0000
ROA not after: Tue 15 Jul 2025 02:42:24 +0000
asID: 142586
IP address blocks: 2a0f:9400:7870::/48 maxlen: 48
2a0f:9400:7871::/48 maxlen: 48
2a0f:9400:7872::/48 maxlen: 48
2a0f:9400:7873::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:05:48:83:bf:74:29:4c:27:7c:71:5d:1a:e2:11:15:b0:e8:fa:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Jul 16 02:37:24 2024 GMT
Not After : Jul 15 02:42:24 2025 GMT
Subject: CN=B26BF522F52250072447ECF1B4028C877B3AC267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e6:c5:81:8b:1d:f1:d3:39:70:e9:83:a7:ad:
9f:10:26:d6:e9:c7:e5:4e:12:65:23:07:ed:02:22:
3a:66:92:f7:ec:ec:60:0c:96:c2:9a:7b:6c:61:ab:
14:33:0c:5a:1a:67:7e:7e:12:ac:3a:ab:96:2b:93:
a4:7a:d8:ff:2e:7c:3d:49:b0:23:81:53:de:0b:93:
16:8a:92:44:b0:f9:73:ae:13:26:65:11:84:1c:14:
9b:52:49:66:05:49:5a:78:08:b2:d3:14:2b:a7:66:
ee:f8:0a:b3:55:8b:3a:74:15:bd:e5:d3:06:64:02:
0d:43:5a:01:2f:9f:12:e7:55:24:a1:6c:94:ff:f7:
dd:b3:30:fc:f3:d4:61:16:e8:32:2b:18:0f:35:f8:
49:81:fa:58:d4:6e:b1:ac:d2:ff:78:f8:f4:b6:a2:
5a:69:32:f1:c1:64:c1:9d:ff:7c:21:b9:55:68:88:
ec:c9:17:0f:46:81:70:f5:04:60:06:c7:a9:37:b3:
2a:c8:b6:02:d3:cd:d7:81:da:50:77:90:80:ce:b1:
f3:50:bd:fc:3f:60:81:b9:65:56:57:a0:b8:f2:6d:
55:12:31:b4:17:f1:4e:f4:b3:9f:d5:ea:de:72:a7:
a6:a2:55:d5:3a:3b:a8:72:2e:b3:ac:3f:0b:56:cb:
4e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6B:F5:22:F5:22:50:07:24:47:EC:F1:B4:02:8C:87:7B:3A:C2:67
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS142586.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:7870::/46
Signature Algorithm: sha256WithRSAEncryption
1e:a0:61:cb:11:e6:73:49:48:20:ad:aa:e6:ef:74:b4:46:0d:
e4:1d:68:20:66:ef:48:63:c0:3e:a2:ea:f3:80:c7:2c:95:bf:
c7:5a:4b:34:05:04:ab:8d:de:41:56:a2:a3:e8:88:31:7c:e6:
0c:c6:82:fc:c6:a4:72:cc:8c:0c:4b:d5:3c:8a:ab:26:28:14:
14:b2:a1:5a:2d:02:f1:89:85:45:e1:6f:cd:2c:46:47:69:00:
ca:cc:d3:14:63:1b:b3:d2:81:83:09:93:f4:01:c5:63:8d:6b:
dc:81:aa:1c:84:20:4b:c0:c3:6f:4d:9c:cf:92:97:ce:7f:b5:
ac:dd:f6:a4:7b:82:12:62:ea:dd:3e:c0:91:90:9d:b4:34:9f:
c1:cb:84:47:14:d4:d8:5b:01:3a:c0:0e:8a:b4:7f:16:ca:37:
e4:d2:07:fa:f9:d5:43:46:20:67:e8:db:24:d2:3a:99:b1:a1:
fd:93:e1:c1:46:d2:d2:fa:da:bb:12:a5:7a:b4:3d:a3:62:2e:
0c:0e:d5:ef:e4:56:e3:2c:e4:34:c3:e8:a9:a8:94:74:a2:0e:
01:b1:fb:0a:28:de:d6:e4:11:4c:73:7e:02:b7:c8:09:0f:14:
c0:50:9e:f5:cd:87:00:ae:09:e9:55:4f:e5:de:28:1b:61:1d:
44:54:a2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:03 2025 by rpki-client