Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS200241.roa
File: AS200241.roa (raw, json)
Hash identifier: hoq0Lv3aUMR8cRrRLDZiw9VxCr0ZOmolbeOGdjHujoA=
Subject key identifier: 2F:79:7D:5D:96:21:99:31:4C:45:42:6F:F7:76:E8:13:D0:EE:D6:C3
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 03ED8F64AB83546EE4C7AF14ACD0ED6294D74B11
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS200241.roa
Signing time: Tue 14 Jan 2025 14:00:55 +0000
ROA not before: Tue 14 Jan 2025 13:55:55 +0000
ROA not after: Tue 13 Jan 2026 14:00:55 +0000
asID: 200241
IP address blocks: 2a0f:9400:6300::/40 maxlen: 48
2a0f:9400:6300::/44 maxlen: 48
2a0f:9400:6310::/44 maxlen: 48
2a0f:9400:6550::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ed:8f:64:ab:83:54:6e:e4:c7:af:14:ac:d0:ed:62:94:d7:4b:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Jan 14 13:55:55 2025 GMT
Not After : Jan 13 14:00:55 2026 GMT
Subject: CN=2F797D5D962199314C45426FF776E813D0EED6C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5e:f0:7f:26:79:4e:f1:b1:41:46:b3:be:ac:
78:c1:fe:0a:12:ce:17:22:b0:aa:e2:d0:e0:6f:be:
39:9e:21:6a:4d:ad:3f:48:eb:68:ca:c1:e6:1c:2b:
74:84:a8:78:f6:00:20:58:01:4a:65:6a:39:a3:28:
c5:61:e0:ad:1d:b0:a5:f7:49:20:41:f0:c3:d6:7c:
cc:6b:1f:43:54:18:fe:e1:7a:bd:d4:d4:9a:83:6b:
21:a1:a9:8a:bc:4d:f5:38:c6:0d:91:d7:eb:b5:fb:
93:31:7f:55:6f:cc:00:16:79:67:b8:36:68:2a:64:
a4:27:91:43:76:a4:5f:f5:e0:6f:74:77:d5:ca:ea:
69:84:9b:b7:1f:ba:30:cf:c0:59:bc:1c:fa:6e:91:
de:fb:99:06:ad:71:2b:e1:02:8b:4d:43:7f:4b:34:
ea:8d:00:19:b8:34:d6:75:03:0e:80:1b:da:58:14:
06:12:6b:8d:cc:94:b6:3d:e8:43:9f:7e:2d:db:93:
e7:64:b2:b7:13:fd:f6:ea:c3:25:3d:14:47:83:ee:
1f:15:91:54:51:2e:2b:71:87:53:91:2e:ca:08:e0:
46:4b:5e:78:e1:27:de:0f:6b:00:5d:00:2c:0f:b0:
95:82:6e:8e:3e:a9:bc:63:56:37:8a:fe:08:dc:dc:
ce:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:79:7D:5D:96:21:99:31:4C:45:42:6F:F7:76:E8:13:D0:EE:D6:C3
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS200241.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6300::/40
2a0f:9400:6550::/44
Signature Algorithm: sha256WithRSAEncryption
31:9e:fb:44:f3:03:97:fd:c0:66:ce:71:0e:55:b5:a7:bc:bd:
9e:3c:51:72:0e:43:89:b5:58:7f:e9:c0:27:d1:5d:7a:0a:55:
2c:e0:62:0e:80:db:71:bc:f9:f7:ed:b5:ca:41:50:12:6f:0c:
55:60:9f:7f:eb:41:31:65:67:88:e4:4a:0e:f8:20:e8:b8:14:
fa:9a:89:2c:86:52:a3:98:cc:d9:d0:15:9d:88:00:78:fa:d6:
ad:04:e4:d0:dc:ba:e6:6a:5c:85:ac:e2:53:87:ac:be:c7:f6:
58:5f:23:66:fc:0c:65:f0:b3:76:c0:57:28:d1:55:7a:34:41:
55:04:b5:9d:87:08:f4:a5:95:b9:9f:ca:90:bb:15:3b:1a:68:
26:25:34:4b:1a:9d:ea:a8:cb:91:fb:82:3e:4d:11:19:f0:7c:
81:37:95:78:a7:a0:77:ae:be:92:08:61:98:2d:cb:32:f7:0b:
14:fb:9d:72:fc:83:64:26:02:78:86:49:fc:88:c0:ba:5c:7e:
3c:20:be:88:bb:d0:5e:55:43:6e:ab:db:62:9c:1e:2b:d1:4b:
39:d2:5a:0d:47:4f:0d:8d:6c:86:a7:27:4d:67:62:4c:9b:91:
5d:5a:29:7c:c7:33:3a:c1:37:d4:f5:dd:bf:64:1b:00:71:c9:
56:3f:b3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:09:55 2025 by rpki-client