Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
File: AS147001.roa (raw, json)
Hash identifier: hW9Lj10/yHIWp5RU9cwrL2R0NX1upQwIAJNfE/czIEc=
Subject key identifier: B8:46:DA:30:94:52:D9:AE:75:A6:91:83:2D:4F:BA:44:24:25:03:98
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 637D3B195B345AF51888205476B3A0B3C5E8EE39
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
Signing time: Tue 19 May 2026 04:03:24 +0000
ROA not before: Tue 19 May 2026 03:58:24 +0000
ROA not after: Tue 18 May 2027 04:03:24 +0000
asID: 147001
IP address blocks: 2a0f:9400:787c::/48 maxlen: 48
2a0f:9400:787d::/48 maxlen: 48
2a0f:9400:787e::/48 maxlen: 48
2a0f:9400:787f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:7d:3b:19:5b:34:5a:f5:18:88:20:54:76:b3:a0:b3:c5:e8:ee:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: May 19 03:58:24 2026 GMT
Not After : May 18 04:03:24 2027 GMT
Subject: CN=B846DA309452D9AE75A691832D4FBA4424250398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:30:07:44:87:6d:aa:20:33:d2:04:c9:b3:1b:
3b:5c:2d:17:d3:9e:ed:53:89:c9:f0:68:ed:87:26:
a1:c2:4d:a6:42:56:25:ea:36:89:4d:f6:8f:f4:e8:
41:d8:cb:6c:3b:c3:ab:60:bb:17:63:c6:5e:4c:12:
bf:2d:0c:0e:ca:94:fc:33:8e:0f:df:d5:99:54:79:
ae:36:c4:51:21:af:e4:db:5a:f7:95:18:25:44:96:
42:84:d0:29:5e:b4:65:34:61:85:4a:56:32:d7:bc:
9c:21:1a:c6:5c:5f:47:c2:2c:f9:19:5e:ea:a6:8f:
46:dd:83:a8:e8:16:44:d5:80:fe:64:8a:1b:04:44:
ee:56:26:9b:81:5a:69:c6:f3:ef:d5:77:db:22:69:
04:24:7f:80:cc:05:d9:32:c0:9e:42:17:dd:30:a1:
18:a8:8e:20:cb:63:08:d9:f9:ec:58:6e:4d:71:6a:
a7:cc:c2:47:ce:ae:ec:08:2b:e7:f1:bb:e0:a6:b4:
c8:a5:e6:7a:bb:14:f4:a9:ee:34:cd:06:0d:2c:07:
7c:1a:55:33:83:90:8c:08:6a:ec:27:dd:1a:63:3d:
2e:91:e2:31:68:05:05:b1:ad:8a:5e:47:d1:49:fc:
75:b4:54:08:96:2b:a9:ce:a4:e1:57:32:4d:47:62:
5c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:46:DA:30:94:52:D9:AE:75:A6:91:83:2D:4F:BA:44:24:25:03:98
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:787c::/46
Signature Algorithm: sha256WithRSAEncryption
8e:8b:11:43:bc:cc:3c:83:83:c7:12:11:87:d4:a7:d7:4a:2c:
70:e0:3a:05:38:5f:9a:39:fa:7f:ed:cb:5e:04:77:87:69:99:
3d:75:b8:2d:ad:bd:1b:92:6e:dc:c2:22:26:bb:df:a1:b4:0d:
ad:39:d8:e9:0b:0c:81:44:44:e8:15:cd:ba:ff:07:23:4a:aa:
3c:26:ad:20:0d:3e:e4:3c:ea:5e:3f:62:ab:aa:aa:5c:1f:b8:
d6:a5:87:d1:f3:c9:39:92:27:41:db:05:76:13:5b:b3:84:2e:
bf:2e:b6:db:94:08:12:a6:3a:2d:01:4d:2c:fd:fa:ef:e2:b8:
8e:0c:27:0f:d5:56:9a:c6:f2:9c:a2:a3:50:e5:6a:c3:a0:64:
13:66:43:e0:99:69:4a:f0:41:bf:29:d5:c6:d5:95:c2:bc:8d:
96:b3:f1:65:8d:d8:03:e9:05:1c:13:ea:3c:32:93:f7:85:77:
27:ff:83:d0:7b:18:a7:ed:9e:a0:b7:a3:a7:54:10:0f:af:ea:
ee:21:37:eb:67:5f:8a:ac:5b:70:26:89:3c:f4:74:7d:2f:ea:
90:53:52:15:74:36:08:3c:bc:e2:0a:7e:fa:a5:3c:f1:63:ec:
43:54:c6:b8:a7:26:5a:f6:cf:4d:0f:d1:dd:3e:ec:6e:f6:f9:
15:6f:31:86
-----BEGIN CERTIFICATE-----
MIIEvzCCA6egAwIBAgIUY307GVs0WvUYiCBUdrOgs8Xo7jkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2VhNTMxNmRiZGFjMDFjZDA1ZDBlYWEwNWE4OWMwNGRh
M2U3Mzk4ZjAeFw0yNjA1MTkwMzU4MjRaFw0yNzA1MTgwNDAzMjRaMDMxMTAvBgNV
BAMTKEI4NDZEQTMwOTQ1MkQ5QUU3NUE2OTE4MzJENEZCQTQ0MjQyNTAzOTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfMAdEh22qIDPSBMmzGztcLRfT
nu1TicnwaO2HJqHCTaZCViXqNolN9o/06EHYy2w7w6tguxdjxl5MEr8tDA7KlPwz
jg/f1ZlUea42xFEhr+TbWveVGCVElkKE0CletGU0YYVKVjLXvJwhGsZcX0fCLPkZ
Xuqmj0bdg6joFkTVgP5kihsERO5WJpuBWmnG8+/Vd9siaQQkf4DMBdkywJ5CF90w
oRiojiDLYwjZ+exYbk1xaqfMwkfOruwIK+fxu+CmtMil5nq7FPSp7jTNBg0sB3wa
VTODkIwIauwn3RpjPS6R4jFoBQWxrYpeR9FJ/HW0VAiWK6nOpOFXMk1HYlzTAgMB
AAGjggHJMIIBxTAdBgNVHQ4EFgQUuEbaMJRS2a51ppGDLU+6RCQlA5gwHwYDVR0j
BBgwFoAUfqUxbb2sAc0F0OqgWonATaPnOY8wDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5j
b20vcmVwby9GUkMtQ0EvNS83RUE1MzE2REJEQUMwMUNEMDVEMEVBQTA1QTg5QzA0
REEzRTczOThGLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZnFVeGJiMnNBYzBG
ME9xZ1dvbkFUYVBuT1k4LmNlcjBcBggrBgEFBQcBCwRQME4wTAYIKwYBBQUHMAuG
QHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5jb20vcmVwby9GUkMt
Q0EvNS9BUzE0NzAwMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggr
BgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioPlAB4fDANBgkqhkiG9w0BAQsFAAOC
AQEAjosRQ7zMPIODxxIRh9Sn10oscOA6BThfmjn6f+3LXgR3h2mZPXW4La29G5Ju
3MIiJrvfobQNrTnY6QsMgURE6BXNuv8HI0qqPCatIA0+5DzqXj9iq6qqXB+41qWH
0fPJOZInQdsFdhNbs4Quvy6225QIEqY6LQFNLP367+K4jgwnD9VWmsbynKKjUOVq
w6BkE2ZD4JlpSvBBvynVxtWVwryNlrPxZY3YA+kFHBPqPDKT94V3J/+D0HsYp+2e
oLejp1QQD6/q7iE362dfiqxbcCaJPPR0fS/qkFNSFXQ2CDy84gp++qU88WPsQ1TG
uKcmWvbPTQ/R3T7sbvb5FW8xhg==
-----END CERTIFICATE-----
Generated at Sat Jun 6 09:24:25 2026 by rpki-client