Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147028.roa
File: AS147028.roa (raw, json)
Hash identifier: 7uuau6gMdK+ThwMjhC6TdhK0FDZ++u8bfEb9Yn8jsMM=
Subject key identifier: 9E:D6:66:0F:DD:DC:68:95:0F:04:E4:A8:F7:C1:A0:4C:CA:F5:6B:03
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 33CB4C1F518F674CD350E36AE318CDB2B40EE854
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147028.roa
Signing time: Tue 15 Aug 2023 02:00:23 +0000
ROA not before: Tue 15 Aug 2023 01:55:23 +0000
ROA not after: Tue 13 Aug 2024 02:00:23 +0000
asID: 147028
IP address blocks: 2a0f:9400:7810::/44 maxlen: 48
2a0f:9400:7814::/47 maxlen: 48
2a0f:9400:7820::/44 maxlen: 48
2a0f:9400:7834::/47 maxlen: 47
2a0f:9400:7844::/47 maxlen: 47
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:cb:4c:1f:51:8f:67:4c:d3:50:e3:6a:e3:18:cd:b2:b4:0e:e8:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Aug 15 01:55:23 2023 GMT
Not After : Aug 13 02:00:23 2024 GMT
Subject: CN=9ED6660FDDDC68950F04E4A8F7C1A04CCAF56B03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3c:81:65:42:4f:6e:4a:f2:46:d0:bb:91:3b:
24:4b:31:13:77:96:e0:9b:e7:c1:fc:b2:05:f2:36:
97:f4:32:40:2a:c8:18:f9:c2:d0:e9:9f:51:1b:82:
e6:50:ca:60:a4:83:9c:6a:a8:df:aa:eb:99:d4:6e:
31:79:b3:83:1a:ea:c5:27:e9:a7:88:5e:1b:0b:66:
f3:50:c1:01:28:30:c2:a3:f2:39:c8:38:e5:6e:69:
69:d8:b4:75:b2:bb:05:ba:22:90:40:f5:61:f1:5b:
97:04:50:b2:87:fe:1a:e0:b7:56:19:7e:68:c4:97:
86:84:6d:ed:41:c9:08:91:7c:fe:8b:e3:88:d4:7b:
e4:1d:ef:e0:48:85:a3:ec:58:ef:63:68:13:33:19:
3c:fc:89:f7:c4:ff:55:fa:c3:a7:65:ab:a4:86:1a:
d4:38:90:5b:56:70:ad:3a:9e:16:22:a7:ba:bb:9d:
bf:c9:2d:0c:d4:3c:39:3e:83:6b:e2:6c:ef:4d:ec:
7d:ac:d3:f3:c0:2b:a1:f4:42:af:70:8a:46:88:f7:
96:32:d2:7d:5c:fa:5f:89:b9:b2:d3:32:d6:4e:ee:
49:3f:92:5f:8f:21:e8:bd:18:7b:ab:c4:24:e9:2e:
65:36:d1:76:f4:98:e6:eb:33:23:54:e0:95:4c:e7:
55:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D6:66:0F:DD:DC:68:95:0F:04:E4:A8:F7:C1:A0:4C:CA:F5:6B:03
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS147028.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:7810::-2a0f:9400:782f:ffff:ffff:ffff:ffff:ffff
2a0f:9400:7834::/47
2a0f:9400:7844::/47
Signature Algorithm: sha256WithRSAEncryption
4e:61:b4:ed:3a:d7:35:52:6d:1d:bc:91:da:63:d2:31:4e:b1:
52:9a:4c:58:69:a3:7c:8a:f7:a8:4f:8f:36:66:cf:36:5c:af:
9b:64:4c:46:28:dc:76:67:5b:8f:6a:f7:98:e2:f6:7e:c5:ee:
1f:62:59:1e:44:be:25:b6:65:36:b6:38:cb:37:c6:d3:ec:36:
b2:00:a9:82:3b:45:aa:04:11:ae:1f:f9:22:46:17:8b:5a:a4:
c5:07:55:26:b9:61:e0:d3:27:27:b4:fd:97:2b:a9:ce:6b:b4:
6c:f8:67:e8:54:7e:d7:d7:c3:1d:f5:2a:a7:c6:8b:98:da:e0:
e0:7b:06:17:16:ff:b4:b1:2c:c3:4c:b2:02:ba:ee:6f:46:eb:
38:13:16:0f:af:0a:31:de:01:b1:e1:05:f8:94:2d:67:f1:f1:
68:a1:f7:cb:5a:f5:38:21:f7:6d:8c:57:a9:f0:25:04:7b:b2:
a8:31:1c:9d:0b:cb:9c:d6:e9:ab:3b:2e:66:5f:37:4f:b8:cf:
44:df:37:28:54:c8:96:7b:b6:46:f2:02:63:48:4a:a1:6c:db:
5f:b3:eb:a9:89:00:4b:58:71:e9:45:c1:31:dd:cf:c9:55:fe:
bb:32:0f:30:5c:24:35:86:77:80:0a:6d:8e:c4:4f:b7:ea:d4:
19:6d:a5:0f
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgIUM8tMH1GPZ0zTUONq4xjNsrQO6FQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2VhNTMxNmRiZGFjMDFjZDA1ZDBlYWEwNWE4OWMwNGRh
M2U3Mzk4ZjAeFw0yMzA4MTUwMTU1MjNaFw0yNDA4MTMwMjAwMjNaMDMxMTAvBgNV
BAMTKDlFRDY2NjBGREREQzY4OTUwRjA0RTRBOEY3QzFBMDRDQ0FGNTZCMDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdPIFlQk9uSvJG0LuROyRLMRN3
luCb58H8sgXyNpf0MkAqyBj5wtDpn1EbguZQymCkg5xqqN+q65nUbjF5s4Ma6sUn
6aeIXhsLZvNQwQEoMMKj8jnIOOVuaWnYtHWyuwW6IpBA9WHxW5cEULKH/hrgt1YZ
fmjEl4aEbe1ByQiRfP6L44jUe+Qd7+BIhaPsWO9jaBMzGTz8iffE/1X6w6dlq6SG
GtQ4kFtWcK06nhYip7q7nb/JLQzUPDk+g2vibO9N7H2s0/PAK6H0Qq9wikaI95Yy
0n1c+l+JubLTMtZO7kk/kl+PIei9GHurxCTpLmU20Xb0mObrMyNU4JVM51WlAgMB
AAGjggHmMIIB4jAdBgNVHQ4EFgQUntZmD93caJUPBOSo98GgTMr1awMwHwYDVR0j
BBgwFoAUfqUxbb2sAc0F0OqgWonATaPnOY8wDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5j
b20vcmVwby9GUkMtQ0EvNS83RUE1MzE2REJEQUMwMUNEMDVEMEVBQTA1QTg5QzA0
REEzRTczOThGLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZnFVeGJiMnNBYzBG
ME9xZ1dvbkFUYVBuT1k4LmNlcjBcBggrBgEFBQcBCwRQME4wTAYIKwYBBQUHMAuG
QHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5jb20vcmVwby9GUkMt
Q0EvNS9BUzE0NzAyOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA/Bggr
BgEFBQcBBwEB/wQwMC4wLAQCAAIwJjASAwcEKg+UAHgQAwcEKg+UAHggAwcBKg+U
AHg0AwcBKg+UAHhEMA0GCSqGSIb3DQEBCwUAA4IBAQBOYbTtOtc1Um0dvJHaY9Ix
TrFSmkxYaaN8iveoT482Zs82XK+bZExGKNx2Z1uPaveY4vZ+xe4fYlkeRL4ltmU2
tjjLN8bT7DayAKmCO0WqBBGuH/kiRheLWqTFB1UmuWHg0ycntP2XK6nOa7Rs+Gfo
VH7X18Md9SqnxouY2uDgewYXFv+0sSzDTLICuu5vRus4ExYPrwox3gGx4QX4lC1n
8fFooffLWvU4IfdtjFep8CUEe7KoMRydC8uc1umrOy5mXzdPuM9E3zcoVMiWe7ZG
8gJjSEqhbNtfs+upiQBLWHHpRcEx3c/JVf67Mg8wXCQ1hneACm2OxE+36tQZbaUP
-----END CERTIFICATE-----
Generated at Sat May 4 11:05:08 2024 by rpki-client on console-ams.rpki-client.org