Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
File: AS147001.roa (raw, json)
Hash identifier: eV65O2rBZUptcWsYRLdSdTLeM8RPoZxQoNP7Gg2/oxo=
Subject key identifier: B6:23:57:C6:7A:8A:9B:D4:CD:B4:34:54:1F:49:E7:80:1B:C1:C9:4C
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 47DC38DCD274DAF3DE05177C32BC0486C4F7907B
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
Signing time: Tue 16 Jul 2024 02:42:23 +0000
ROA not before: Tue 16 Jul 2024 02:37:23 +0000
ROA not after: Tue 15 Jul 2025 02:42:23 +0000
asID: 147001
IP address blocks: 2a0f:9400:787c::/48 maxlen: 48
2a0f:9400:787d::/48 maxlen: 48
2a0f:9400:787e::/48 maxlen: 48
2a0f:9400:787f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:dc:38:dc:d2:74:da:f3:de:05:17:7c:32:bc:04:86:c4:f7:90:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Jul 16 02:37:23 2024 GMT
Not After : Jul 15 02:42:23 2025 GMT
Subject: CN=B62357C67A8A9BD4CDB434541F49E7801BC1C94C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c7:c2:f6:b5:3a:e6:cd:2b:e0:e8:6f:43:2e:
1b:12:00:e7:ec:29:39:1e:a7:1b:44:b8:f6:71:d3:
be:07:62:51:04:2b:98:7c:35:c2:13:bb:aa:d5:56:
76:86:8e:7f:ad:26:05:e9:ce:4d:b7:e2:db:06:4b:
60:98:ff:f8:00:a4:2c:4e:88:bd:51:30:d9:0a:a6:
ac:7b:56:a1:82:ae:a4:1a:b2:82:98:cd:6e:58:f3:
d9:4b:d2:27:fe:ef:e5:e1:fc:e4:2f:44:d9:bf:3e:
c7:f3:95:69:5a:80:76:b1:92:ee:a8:d9:25:ac:4e:
86:50:f8:60:e4:90:0a:a2:1f:f7:c1:c6:47:59:70:
18:b6:84:d1:da:18:40:db:9c:9e:6b:a2:94:9a:d2:
82:30:56:43:c4:51:90:bd:25:32:91:69:06:32:9a:
3f:f7:5b:32:9c:db:7a:73:45:78:1f:64:8a:6d:d0:
31:97:fa:fc:62:9f:27:c2:f6:bc:5a:b4:d8:fb:df:
9d:5e:fd:82:76:79:a1:5a:86:ae:98:cd:64:e1:99:
96:bf:ac:b0:cb:3f:69:f0:d0:e3:27:88:c2:80:e9:
69:50:43:7f:c8:9d:4e:54:5f:6d:ea:4a:0a:fe:26:
61:c2:68:a4:0d:2d:f0:85:92:d0:0f:62:66:45:08:
7e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:23:57:C6:7A:8A:9B:D4:CD:B4:34:54:1F:49:E7:80:1B:C1:C9:4C
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147001.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:787c::/46
Signature Algorithm: sha256WithRSAEncryption
0b:7e:68:b8:79:7f:32:f5:95:6d:07:59:28:7d:5a:86:ea:30:
da:39:fa:f0:34:4e:ea:5d:df:11:d0:55:32:90:8e:bd:4f:7e:
33:ef:c4:07:d5:11:e8:a0:3b:c3:1b:5c:24:07:0b:19:20:e1:
54:97:cf:cf:11:26:1d:51:5d:6f:e0:8a:00:e7:f8:b2:31:63:
2d:00:57:ef:56:4e:fe:79:af:e4:3c:a4:fc:0a:6e:fe:6b:0f:
3a:94:5a:3b:a1:a1:4b:0a:a2:23:cf:ff:7a:47:18:61:5e:65:
24:26:ba:ac:ce:9c:22:d9:4e:40:c3:61:b9:f9:07:82:9b:e9:
b5:2e:34:31:77:e8:8a:98:4d:6f:9e:2a:18:5f:41:e4:45:a2:
69:51:df:f1:f0:46:e2:e5:b4:07:71:31:30:b1:2e:14:3c:ba:
96:c6:27:5c:8b:57:18:40:d3:61:f2:0b:06:cd:1b:8b:e6:f1:
92:9c:11:65:74:ef:46:92:3d:de:fb:22:cf:65:e2:e4:56:ed:
1b:28:0a:b2:1d:f9:d2:86:05:06:4f:cd:98:3a:63:04:3b:b2:
38:3d:00:55:29:57:73:3d:34:cf:71:9f:e7:98:ed:c0:b8:cb:
bf:08:15:ef:e0:c3:4c:9d:c7:12:77:f0:a5:30:3a:d5:9f:f0:
b4:7e:73:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 23:35:04 2024 by rpki-client on console-ams.rpki-client.org