Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
File: AS147001.roa (raw, json)
Hash identifier: 9xOITfMOG4hOIa0JrTmu60mpbNCxZnDF7SOV+Py9jd4=
Subject key identifier: 41:0F:00:D4:BA:A1:E6:7C:8D:77:04:3B:CD:53:23:34:08:99:B0:3D
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 993A42EBF822E956447A2E7CE7B0DE28BF800A
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
Signing time: Tue 15 Aug 2023 02:00:23 +0000
ROA not before: Tue 15 Aug 2023 01:55:23 +0000
ROA not after: Tue 13 Aug 2024 02:00:23 +0000
asID: 147001
IP address blocks: 2a0f:9400:787c::/48 maxlen: 48
2a0f:9400:787d::/48 maxlen: 48
2a0f:9400:787e::/48 maxlen: 48
2a0f:9400:787f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
99:3a:42:eb:f8:22:e9:56:44:7a:2e:7c:e7:b0:de:28:bf:80:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Aug 15 01:55:23 2023 GMT
Not After : Aug 13 02:00:23 2024 GMT
Subject: CN=410F00D4BAA1E67C8D77043BCD5323340899B03D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:b3:f0:67:ef:08:d6:41:a4:a2:91:f8:3f:
ea:1f:7c:39:27:7a:89:d9:24:be:4a:d0:f0:d4:59:
d1:43:cf:27:83:a3:4c:3f:15:c5:fd:7d:e1:b0:64:
e1:a8:ce:f0:0b:b0:b9:91:c2:ca:a2:50:05:a5:d9:
30:ba:d4:53:c3:d0:a8:d2:c8:ea:ea:da:bf:e5:ba:
3c:a8:70:5c:5f:e7:e1:fc:83:37:c0:71:55:29:97:
ed:fa:68:91:e6:66:93:4d:2e:d6:f0:e7:4b:4d:63:
17:f6:a0:bb:2e:24:4d:30:f8:3f:1e:86:be:8d:76:
b8:06:ce:19:ab:61:1a:34:91:31:75:cf:9a:bc:af:
c2:89:48:18:c5:eb:d3:a1:8a:10:d9:cc:ae:53:18:
68:5c:47:54:98:03:95:e1:6c:42:0a:0f:73:69:43:
98:1e:93:86:3f:ef:76:33:42:61:df:09:23:3a:4c:
6a:34:cb:ac:66:fb:39:9a:28:d8:f0:29:82:97:25:
f6:a4:4b:7d:21:d6:48:4d:52:b0:e2:fd:54:74:58:
da:b0:21:93:a8:6f:7f:f4:2d:b9:2d:d3:f0:a4:c0:
ec:a9:b6:2d:34:d9:fe:0d:83:f3:d3:e5:08:bd:c8:
38:d6:44:b7:32:9d:fd:17:79:64:5a:89:7e:a9:d0:
73:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0F:00:D4:BA:A1:E6:7C:8D:77:04:3B:CD:53:23:34:08:99:B0:3D
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:787c::/46
Signature Algorithm: sha256WithRSAEncryption
cf:cc:62:4f:53:3e:80:86:9c:6c:8a:90:51:7c:ae:cf:c1:4e:
fe:c3:b2:10:0e:c0:a7:88:17:7c:dd:db:ca:29:95:28:53:1f:
8b:0e:33:98:a9:6e:e1:44:5f:4e:06:b5:39:91:c0:c6:aa:6c:
9b:8b:ad:03:38:56:e5:56:a8:a4:16:1a:03:fd:0a:23:fb:10:
43:eb:21:47:00:74:18:34:10:02:e2:21:eb:f0:23:31:29:a1:
0b:a2:c9:eb:be:25:08:48:6c:b8:06:6c:38:a9:60:b8:96:ae:
f1:20:0f:5d:c5:4d:85:45:f6:17:a3:4c:b5:ac:65:44:cb:ee:
4e:5c:09:c4:a9:4e:c9:2e:34:52:19:99:e0:76:e4:73:df:00:
f0:f9:44:02:0a:e1:75:96:e1:f3:71:75:27:2e:55:89:c5:ea:
1f:27:01:2b:02:69:53:f9:fd:b9:75:92:f2:ff:2f:93:c9:f4:
b0:e0:22:6a:d7:61:b0:ab:71:a6:ca:73:7a:30:b3:01:85:6d:
5c:03:eb:ec:e3:55:d2:72:a9:7a:4e:9e:32:c8:2e:f1:fd:fc:
1a:3e:aa:9e:85:f9:e4:79:0e:3a:f2:9a:ca:11:34:57:43:8a:
ae:78:27:9f:48:50:72:9a:af:45:5f:c3:27:8c:08:6d:73:1f:
11:70:97:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:07:17 2024 by rpki-client on console-fra.rpki-client.org